Report - zicresources.ca/

Report Overview

Submitted URL
zicresources.ca/
IP
64.207.152.15
ASN
#398110 GO-DADDY-COM-LLC
Submitted
2023-01-27 00:49:52
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	382 B	717 B	142.250.74.40
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	374 B	24 kB	69.16.175.42
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	686 B	1.4 kB	142.250.74.131
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
zicresources.ca	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	14 kB	1.6 MB	64.207.152.15
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	412 B	3.8 kB	104.17.25.14
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.38.227.80
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	687 B	445 B	216.239.34.36
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	4.4 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-27 00:49:43	medium	Client IP	64.207.152.15	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	zicresources.ca/js/modernizr.custom.js	9.0 kB	2023-03-07	2024-03-12
Pretty URL zicresources.ca/js/modernizr.custom.js IP 64.207.152.15 ASN #398110 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:59 Last Seen2024-03-12 09:54:32 Times Seen256 Hash 7a9ad736fcbd8d99ac7cb282e48f492d bc9582612f11bf96bc56f75347cf54138339778a 8bf0280a5588514ef4978f8099d859364ba6d44dcfb9ee8c59d90486e3ec1267 Loading...

	zicresources.ca/	152 B	2023-03-09	2023-03-29
Pretty URL zicresources.ca/ IP 64.207.152.15 ASN #398110 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:59:24 Last Seen2023-03-29 23:09:46 Times Seen2 Hash 1e9a342386bb0f90366c762ca3bfc2fb 6a9476a1170a6c41b0e49e4b51bb64a0049a062c d867ba95e47699e0dcdef5dbd9d70a0b5812e3914611f8312fcacc9e42d2e12e Loading...

	zicresources.ca/	41 B	2023-03-07	2024-04-26
Pretty URL zicresources.ca/ IP 64.207.152.15 ASN #398110 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:03 Last Seen2024-04-26 02:04:17 Times Seen7152 Hash 2ec370ca0eaf3069dce13df24243d863 64c1919bbb18a6d851d1b7772f830320b8ab5cc1 6a31a3a39783d09cc53dd9e9baeb4a4fa49be602eef90f6bbb9f78af02688064 Loading...

	zicresources.ca/js/classie.js	1.8 kB	2023-03-07	2024-04-26
Pretty URL zicresources.ca/js/classie.js IP 64.207.152.15 ASN #398110 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-26 04:22:37 Times Seen4946 Hash a9df1cfb76ce492afd9d13f3320272fd 782b9564f015a2ec7bdf9c89e238fab9b44bd587 717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144 Loading...

	zicresources.ca/js/modalEffects.js	1.4 kB	2023-03-08	2024-02-26
Pretty URL zicresources.ca/js/modalEffects.js IP 64.207.152.15 ASN #398110 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 07:22:07 Last Seen2024-02-26 05:34:07 Times Seen45 Hash c501996f333d0b2f3187207475b0f4d7 8c046ec7983e047b7f3e1598e640bd1a98d0557d 838244bd20d4af32b8901a073f55737e01702f808ea4ab641a4aef0bd05fe68b Loading...

	zicresources.ca/js/urso-menu.js	2.5 kB	2023-03-09	2023-03-29
Pretty URL zicresources.ca/js/urso-menu.js IP 64.207.152.15 ASN #398110 GO-DADDY-COM-LLC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 23:59:24 Last Seen2023-03-29 23:09:46 Times Seen2 Hash b34eb55919ba0ebeaa40e7283cfb4fca 0b96e4c72ed3500894f6de1547efd020f5dfed01 4444cc7dac425f1fd85aa0efa65bcbf91ae44ff2766b7d8d5ad22d743008a009 Loading...

	www.googletagmanager.com/gtag/js?id=G-EKJXR036QF	220 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-EKJXR036QF IP 142.250.74.40 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:55:22 Last Seen2023-03-13 07:55:22 Times Seen1 Hash 52079625d9433eb7f34e64f698639efa 003cb30108e136fadcfcecdd88dc5cb527665fa3 7af405a4d1e9d620eabe33a7d0dc3e9b09fed479caa1b2eb0d76fa51c7278074 Loading...

	code.jquery.com/jquery-3.3.1.slim.min.js	70 kB	2023-03-07	2024-04-26
Pretty URL code.jquery.com/jquery-3.3.1.slim.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-26 07:35:43 Times Seen8376 Hash 99b0a83cf1b0b1e2cb16041520e87641 bc5836992c0b260496ba520fe1336d499bf06eb7 dde76b9b2b90d30eb97fc81f06caa8c338c97b688cea7d2729c88f529f32fbb1 Loading...

		Size	First Seen	Last Seen
	#1 Write - 5531a5834816222280f20d1ef9e95f69	4 B	2023-03-12	2024-01-28
Pretty Observations First Seen2023-03-12 12:17:15 Last Seen2024-01-28 13:22:54 Times Seen21116 Hash 5531a5834816222280f20d1ef9e95f69 445cd2fd3273962bdf09425109a2d09f7170e837 d398b29d3dbbb9bf201d4c7e1c19ff9d43c15fd45a0cec46fbe9885ec3f6e97f Loading...

HTTP Transactions (63)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10016
Expires: Fri, 27 Jan 2023 03:36:36 GMT
Date: Fri, 27 Jan 2023 00:49:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5fe582397f3003b225cb9058e02c2190
68174a54a8f6c4de9247ccea2dcae3c9b76bdb9f
238a2ef5b61d56353d0a5e97ec3092b8f2792cde7cecf40e1a858f8c129d3a9d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "238A2EF5B61D56353D0A5E97EC3092B8F2792CDE7CECF40E1A858F8C129D3A9D"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10688
Expires: Fri, 27 Jan 2023 03:47:48 GMT
Date: Fri, 27 Jan 2023 00:49:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 27 Jan 2023 00:35:18 GMT
content-type: application/json
age: 863
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2818
Expires: Fri, 27 Jan 2023 01:36:39 GMT
Date: Fri, 27 Jan 2023 00:49:41 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: PAjwusuYBccL0Kes5k8go6I5FHOpN/3eucoCGfnpDp6RB1uBK4L45aAIEgBTx9CXO0SpVifD1KY=
x-amz-request-id: TQ12KSYHE59R8W2V
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 27 Jan 2023 00:49:12 GMT
age: 29
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

zicresources.ca/

64.207.152.15

200 OK

14 kB

URL HTTP/1.1
zicresources.ca/
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (354)
Size
14 kB (14341 bytes)
Hash
7936d61663f40ac883199088f7c05dba
bfb856a6f4d35010bef91cebe866139641dc2bfe
00860205f52d10677862720f98a0b37cb2c4384b44b8ffbe251c0cdc61ad1daa

HTTP Headers

GET / HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:40 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Frame-Options: deny
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Powered-By: PleskLin

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 27 Jan 2023 00:49:41 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/animate.css/3.1.0/animate.min.css

104.17.25.14

200 OK

2.7 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/animate.css/3.1.0/animate.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (41626), with no line terminators
Size
2.7 kB (2705 bytes)
Hash
cb309bcc420c261ddccd01c49ecae61a
c241807ee886c0a4c2a659d7c6a6df9fb6e5939b
da71083906bef6475337b910a9a412893f08d54b207fb75f084f4854d950be6b

HTTP Headers

GET /ajax/libs/animate.css/3.1.0/animate.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zicresources.ca/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 27 Jan 2023 00:49:41 GMT
content-type: text/css; charset=utf-8
content-length: 2705
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d2a-a29a"
last-modified: Mon, 04 May 2020 16:04:58 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 30348830
expires: Wed, 17 Jan 2024 00:49:41 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nTJpodPav08c32GTJ03hcwHWsaulVlLm6QbeTB3jCT38rbnZ2oGJI74Cp0%2BoqcGjznmBR9Qml0sUfwbHaLvciCJ1z%2FjK8ToJCyUbSfsyYETrg5g%2F7Oj2g%2Beyd7NrnKuHoOpY%2Fs%2FG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 78fd7d68bfcab4ed-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

code.jquery.com/jquery-3.3.1.slim.min.js

69.16.175.42

200 OK

24 kB

URL HTTP/2
code.jquery.com/jquery-3.3.1.slim.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65247)
Size
24 kB (24038 bytes)
Hash
0f2e7d37e730fdbb1d8a1e8638529ecb
c21d16978a858baa75be15cb7e799ff000929429
cc938c08b93e67c94c68995709f52133c62cac78991f42058503b9c3d9e4b0b0

HTTP Headers

GET /jquery-3.3.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zicresources.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 27 Jan 2023 00:49:41 GMT
content-encoding: gzip
content-length: 24038
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1111d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674780581.dop214.sk1.t,1674780581.cds017.sk1.hn,1674780581.cds230.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:49:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

zicresources.ca/css/normalize.css

64.207.152.15

200 OK

1.8 kB

URL HTTP/1.1
zicresources.ca/css/normalize.css
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
ASCII text, with very long lines (1825), with no line terminators
Size
1.8 kB (1825 bytes)
Hash
3bc2f546340fb700ab9a155ff6bf45ab
a0ff1e2feee0b1bb7e54a88fd6367ba3e7435aaf
2f8d2146bbcb6552c686ea04d4bc2bd5791c8d4c796c73d91241b01792620eda

HTTP Headers

GET /css/normalize.css HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: text/css
Content-Length: 1825
Last-Modified: Tue, 21 Dec 2021 18:14:41 GMT
Connection: keep-alive
ETag: "61c21991-721"
X-Powered-By: PleskLin
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
82e3abc4a7b17efedca67cf215f4bb60
e20e55d87591af7db3a4bcfc429048f85e389b85
df8901d4d87686fb11e17986f5d53cf513f675b4dd71f0a2e35c7ffbefa7fb9e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 27 Jan 2023 00:49:41 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

zicresources.ca/js/classie.js

64.207.152.15

200 OK

1.8 kB

URL HTTP/1.1
zicresources.ca/js/classie.js
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
ASCII text
Size
1.8 kB (1835 bytes)
Hash
a9df1cfb76ce492afd9d13f3320272fd
782b9564f015a2ec7bdf9c89e238fab9b44bd587
717ad22aa426d024f6c9942949b49d9a20f4239b94dfee34f94c96d8778f2144

HTTP Headers

GET /js/classie.js HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: application/javascript
Content-Length: 1835
Last-Modified: Tue, 21 Dec 2021 18:14:43 GMT
Connection: keep-alive
ETag: "61c21993-72b"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/js/urso-menu.js

64.207.152.15

200 OK

2.5 kB

URL HTTP/1.1
zicresources.ca/js/urso-menu.js
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
ASCII text
Size
2.5 kB (2483 bytes)
Hash
b34eb55919ba0ebeaa40e7283cfb4fca
0b96e4c72ed3500894f6de1547efd020f5dfed01
4444cc7dac425f1fd85aa0efa65bcbf91ae44ff2766b7d8d5ad22d743008a009

HTTP Headers

GET /js/urso-menu.js HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: application/javascript
Content-Length: 2483
Last-Modified: Tue, 21 Dec 2021 18:14:43 GMT
Connection: keep-alive
ETag: "61c21993-9b3"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/js/snap.svg-min.js

64.207.152.15

404 Not Found

1.0 kB

URL HTTP/1.1
zicresources.ca/js/snap.svg-min.js
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
1.0 kB (1025 bytes)
Hash
3f821074c6d96878d390184ed8e01e6d
e0edb974c7ce54aa09497627f8321e17c0624d22
e747f439c981b77d28e2a2493d4feec89c6fbfced7cc61cc74de94717be12f3a

HTTP Headers

GET /js/snap.svg-min.js HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 404 Not Found
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: text/html
Content-Length: 1025
Connection: keep-alive
Last-Modified: Thu, 02 Sep 2021 15:25:21 GMT
ETag: "401-5cb04ca7d56eb"
Accept-Ranges: bytes

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Last-Modified, Pragma, ETag, Retry-After, Content-Type, Content-Length, Expires, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 27 Jan 2023 00:49:01 GMT
age: 40
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

zicresources.ca/css/main.css

64.207.152.15

200 OK

52 kB

URL HTTP/1.1
zicresources.ca/css/main.css
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
ASCII text
Size
52 kB (52000 bytes)
Hash
6023bfdf82198c26d4390e242e6547da
e5a57f3c1280096f4da7a63cb92e30be8cfb6527
b9ac777297f16734cbc6c19e0f0a6cf41ba0a7cfb64abc454d288be23d0e78f5

HTTP Headers

GET /css/main.css HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: text/css
Content-Length: 52000
Last-Modified: Mon, 08 Aug 2022 14:16:59 GMT
Connection: keep-alive
ETag: "62f11adb-cb20"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/js/modalEffects.js

64.207.152.15

200 OK

1.4 kB

URL HTTP/1.1
zicresources.ca/js/modalEffects.js
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
ASCII text
Size
1.4 kB (1361 bytes)
Hash
c501996f333d0b2f3187207475b0f4d7
8c046ec7983e047b7f3e1598e640bd1a98d0557d
838244bd20d4af32b8901a073f55737e01702f808ea4ab641a4aef0bd05fe68b

HTTP Headers

GET /js/modalEffects.js HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: application/javascript
Content-Length: 1361
Last-Modified: Tue, 21 Dec 2021 18:14:43 GMT
Connection: keep-alive
ETag: "61c21993-551"
X-Powered-By: PleskLin
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c398b6b39d11d25b8ae9bc5cd94a1c98
640aa8c399ced71d0c2a9f5a90fbaf091b01d642
a6f07f7c6a4746acc25457c726701df33120628dfb578bc4982448d8efee5855

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A6F07F7C6A4746ACC25457C726701DF33120628DFB578BC4982448D8EFEE5855"
Last-Modified: Tue, 24 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4432
Expires: Fri, 27 Jan 2023 02:03:33 GMT
Date: Fri, 27 Jan 2023 00:49:41 GMT
Connection: keep-alive

zicresources.ca/js/modernizr.custom.js

64.207.152.15

200 OK

9.0 kB

URL HTTP/1.1
zicresources.ca/js/modernizr.custom.js
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
HTML document text\012- HTML document, ASCII text, with very long lines (8820)
Size
9.0 kB (9003 bytes)
Hash
7a9ad736fcbd8d99ac7cb282e48f492d
bc9582612f11bf96bc56f75347cf54138339778a
8bf0280a5588514ef4978f8099d859364ba6d44dcfb9ee8c59d90486e3ec1267

HTTP Headers

GET /js/modernizr.custom.js HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:41 GMT
Content-Type: application/javascript
Content-Length: 9003
Last-Modified: Tue, 21 Dec 2021 18:14:43 GMT
Connection: keep-alive
ETag: "61c21993-232b"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/logos/logo-colour.png

64.207.152.15

200 OK

19 kB

URL HTTP/1.1
zicresources.ca/gfx/logos/logo-colour.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 310 x 99, 8-bit/color RGBA, non-interlaced\012- data
Size
19 kB (18848 bytes)
Hash
fcb85e00f455f300c853abd7b22e23d8
9efb3a3dcfd332b82cc25a2333c1b438a3a9114a
a7208aae06f887c23ad9d370c0902d31c160b0de0830e1db35f0dab175e4c82b

HTTP Headers

GET /gfx/logos/logo-colour.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 18848
Last-Modified: Tue, 21 Dec 2021 18:14:55 GMT
Connection: keep-alive
ETag: "61c2199f-49a0"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/twitter.png

64.207.152.15

200 OK

11 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/twitter.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10556 bytes)
Hash
5d5df806f7f05be5dcab4bbc3a0e2194
5f8ec1cf4e8851c83473be2903bef25e880f0e46
f3e6a38e4f2903403639f96b62136ef6cf5a53a61bb532432007710a50389ea9

HTTP Headers

GET /gfx/icons/twitter.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 10556
Last-Modified: Tue, 21 Dec 2021 18:15:02 GMT
Connection: keep-alive
ETag: "61c219a6-293c"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/phone.png

64.207.152.15

200 OK

6.6 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/phone.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
6.6 kB (6625 bytes)
Hash
f45a533289805602220369d9e4a35b74
d1405c8c9b223211c088280a47a1b97c1588e176
533638a445e24cf5ae77b85be6a28d7d0ac95120d1dc15f8c96727e2e8c5de92

HTTP Headers

GET /gfx/icons/phone.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 6625
Last-Modified: Tue, 21 Dec 2021 18:15:03 GMT
Connection: keep-alive
ETag: "61c219a7-19e1"
X-Powered-By: PleskLin
Accept-Ranges: bytes

push.services.mozilla.com/

52.38.227.80

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.38.227.80:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tdy5DDjDzBe9uuGslGH6EA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: RyO8V8YidQsnHof5ZqrjbuZ05YQ=

zicresources.ca/gfx/icons/instagram.png

64.207.152.15

200 OK

14 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/instagram.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13791 bytes)
Hash
45b3c8835be36904858c7b6a4a5b7f6e
3ea0497e7f0154272a3285269a91312a2b5ccd69
b3c5cef13336de9374bbb969b4cc258fbcb6b350865cee362eaa101f16dff10a

HTTP Headers

GET /gfx/icons/instagram.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 13791
Last-Modified: Tue, 21 Dec 2021 18:14:59 GMT
Connection: keep-alive
ETag: "61c219a3-35df"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/fonts/frutiger-bold/FrutigerLTStd-Bold.woff2

64.207.152.15

200 OK

13 kB

URL HTTP/1.1
zicresources.ca/fonts/frutiger-bold/FrutigerLTStd-Bold.woff2
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 13356, version 1.0\012- data
Size
13 kB (13356 bytes)
Hash
364e1d0c6a44a5707a7032e07ec1391e
ffdc79985e5c1ccfbc53ef4d8be111f59f7e80ab
b2ab87a66e2da6a51f66182aa99b99290fa21e66c52c444d7fa4c35e85bc67bf

HTTP Headers

GET /fonts/frutiger-bold/FrutigerLTStd-Bold.woff2 HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: font/woff2
Content-Length: 13356
Last-Modified: Tue, 21 Dec 2021 18:14:51 GMT
Connection: keep-alive
ETag: "61c2199b-342c"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/facebook.png

64.207.152.15

200 OK

6.8 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/facebook.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
6.8 kB (6842 bytes)
Hash
3837f4be8d6e6c0d44986a4e9c5e3200
41d2f6be82dbe5fbfb622aa40c8bf974d49a54f9
5ee5403b52a81e9f5d9d183e8f3c757ad51e2685a91798ba694f2c9ff4c50eb1

HTTP Headers

GET /gfx/icons/facebook.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 6842
Last-Modified: Tue, 21 Dec 2021 18:15:04 GMT
Connection: keep-alive
ETag: "61c219a8-1aba"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/location.png

64.207.152.15

200 OK

7.2 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/location.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 240 x 240, 8-bit/color RGBA, non-interlaced\012- data
Size
7.2 kB (7173 bytes)
Hash
df0127be136a299b24464671f4fc8a75
7ac507ed11e0042dcb17e3679905e5a5a7c935ea
021eab8929e46d8fa27f51a2a57e557b04e2f885608ea6c4088e20d59eb53928

HTTP Headers

GET /gfx/icons/location.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 7173
Last-Modified: Tue, 21 Dec 2021 18:15:03 GMT
Connection: keep-alive
ETag: "61c219a7-1c05"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/fonts/frutiger-roman/FrutigerLTStd-Roman.woff2

64.207.152.15

200 OK

13 kB

URL HTTP/1.1
zicresources.ca/fonts/frutiger-roman/FrutigerLTStd-Roman.woff2
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 13128, version 1.0\012- data
Size
13 kB (13128 bytes)
Hash
5d05a16e5a9557643248b253537220f5
097921492276e0dc0ab606784170412512d01775
5c4d9e7b2ccdab5a6bd3e8e60f1f7a046b20797980d2cbb217834511cfd67e22

HTTP Headers

GET /fonts/frutiger-roman/FrutigerLTStd-Roman.woff2 HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: font/woff2
Content-Length: 13128
Last-Modified: Tue, 21 Dec 2021 18:14:47 GMT
Connection: keep-alive
ETag: "61c21997-3348"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/fonts/century-regular/CenturySchoolbook.woff2

64.207.152.15

200 OK

73 kB

URL HTTP/1.1
zicresources.ca/fonts/century-regular/CenturySchoolbook.woff2
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 72836, version 1.0\012- data
Size
73 kB (72836 bytes)
Hash
8ceeb2731484436dad78c7c31f9a2501
5bd12f757388c9f805688852e37531f08c25e727
8dbf90b9b6aac229e470b123bf52832097f4e41208665e51418da1c3cf1ed1fe

HTTP Headers

GET /fonts/century-regular/CenturySchoolbook.woff2 HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: font/woff2
Content-Length: 72836
Last-Modified: Tue, 21 Dec 2021 18:14:45 GMT
Connection: keep-alive
ETag: "61c21995-11c84"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/fonts/century-bold/CenturySchoolbook-Bold.woff2

64.207.152.15

200 OK

76 kB

URL HTTP/1.1
zicresources.ca/fonts/century-bold/CenturySchoolbook-Bold.woff2
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
Web Open Font Format (Version 2), TrueType, length 75948, version 1.0\012- data
Size
76 kB (75948 bytes)
Hash
c997d8800d3bb613ca818f08791df7fc
ef2e1782fb5fc9b4b82d9b62d32213e9d9025dfd
79c4191bf709a997aedca17c67c4f571f0827dd50e3ce461f288a6a515422e7e

HTTP Headers

GET /fonts/century-bold/CenturySchoolbook-Bold.woff2 HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: font/woff2
Content-Length: 75948
Last-Modified: Tue, 21 Dec 2021 18:14:48 GMT
Connection: keep-alive
ETag: "61c21998-128ac"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/library.png

64.207.152.15

200 OK

22 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/library.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (22397 bytes)
Hash
b5ef5cc0d4c6e8076a31672bff714b84
396439e76e1b204bf9168679f6984b287d05613b
8df3c2cf0e686dc3c38755a93675a516d6c7e694b1128f25310e80d4cf3ce3bc

HTTP Headers

GET /gfx/icons/library.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 22397
Last-Modified: Tue, 21 Dec 2021 18:15:00 GMT
Connection: keep-alive
ETag: "61c219a4-577d"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/publications.png

64.207.152.15

200 OK

42 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/publications.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
42 kB (41532 bytes)
Hash
f9c67179650a6cd03a8f08a81f4a2e32
06f55f932514ea86b4247b80a60a4c05748d706b
bee8c63d2a5bc48ee62468eca18230632d048a0fe13b59d5d4969aba4255bf1e

HTTP Headers

GET /gfx/icons/publications.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 41532
Last-Modified: Tue, 21 Dec 2021 18:15:04 GMT
Connection: keep-alive
ETag: "61c219a8-a23c"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/banner-wave.png

64.207.152.15

200 OK

13 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/banner-wave.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 2000 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
13 kB (12913 bytes)
Hash
0c16c749e035690b039caa6adb9f1011
c814e9466fd4760f8e6fb98ac0a922e2be88734c
bc41a20a12d5468f3c03845d02e044122c4528008fd68a033ee7ca3262d7522e

HTTP Headers

GET /gfx/graphics/banner-wave.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 12913
Last-Modified: Tue, 21 Dec 2021 18:15:06 GMT
Connection: keep-alive
ETag: "61c219aa-3271"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/banners/home.jpg

64.207.152.15

200 OK

194 kB

URL HTTP/1.1
zicresources.ca/gfx/banners/home.jpg
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 2000x1000, components 3\012- data
Size
194 kB (194028 bytes)
Hash
dd8f0e517f2c967cb83fb9aa1ed4869e
fc7c4bc85e53cc95ede8ae0bce830b2c87f3bb89
c0da12e262b9f43f9b230d5f9877119468e0e5112ee5df459b7a2f5ee88489e1

HTTP Headers

GET /gfx/banners/home.jpg HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/jpeg
Content-Length: 194028
Last-Modified: Tue, 21 Dec 2021 18:14:55 GMT
Connection: keep-alive
ETag: "61c2199f-2f5ec"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/icons/outreach.png

64.207.152.15

200 OK

34 kB

URL HTTP/1.1
zicresources.ca/gfx/icons/outreach.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
34 kB (33931 bytes)
Hash
926a07ad4e6522b9382f5715817dab6f
52f539e6480f24cf90f102ff4949af05e578a747
f38ea058d717ea97bccbeb53bb0d94eb1463f9e9faf02e9161d46c0d35a99ba3

HTTP Headers

GET /gfx/icons/outreach.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 33931
Last-Modified: Tue, 21 Dec 2021 18:15:04 GMT
Connection: keep-alive
ETag: "61c219a8-848b"
X-Powered-By: PleskLin
Accept-Ranges: bytes

region1.google-analytics.com/g/collect?v=2&tid=G-EKJXR036QF&gtm=2oe1p0&_p=586771613&cid=931965106.1674780582&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674780581&sct=1&seg=0&dl=http%3A%2F%2Fzicresources.ca%2F&dt=Welcome%20-%20Za-geh-do-win%20Information%20Clearinghouse&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-EKJXR036QF&gtm=2oe1p0&_p=586771613&cid=931965106.1674780582&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674780581&sct=1&seg=0&dl=http%3A%2F%2Fzicresources.ca%2F&dt=Welcome%20-%20Za-geh-do-win%20Information%20Clearinghouse&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-EKJXR036QF&gtm=2oe1p0&_p=586771613&cid=931965106.1674780582&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1674780581&sct=1&seg=0&dl=http%3A%2F%2Fzicresources.ca%2F&dt=Welcome%20-%20Za-geh-do-win%20Information%20Clearinghouse&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://zicresources.ca
Connection: keep-alive
Referer: http://zicresources.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://zicresources.ca
date: Fri, 27 Jan 2023 00:49:42 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

zicresources.ca/gfx/graphics/blue-waves-bottom.png

64.207.152.15

200 OK

17 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/blue-waves-bottom.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 2000 x 645, 8-bit/color RGBA, non-interlaced\012- data
Size
17 kB (17161 bytes)
Hash
f5f4477189bf17b5f7c260f75c42f9e7
e514e4c96bb405f222f2f2024226ebb0b96bac31
59d1acc26a8056a6cebe70c4d7e2e2ae3b85abcde72070dab0dbb39ebc2bee5b

HTTP Headers

GET /gfx/graphics/blue-waves-bottom.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 17161
Last-Modified: Tue, 21 Dec 2021 18:15:05 GMT
Connection: keep-alive
ETag: "61c219a9-4309"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/photos/the-key.jpg

64.207.152.15

200 OK

38 kB

URL HTTP/1.1
zicresources.ca/gfx/photos/the-key.jpg
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x819, components 3\012- data
Size
38 kB (37884 bytes)
Hash
5adbe26d15a4cc0af5d95b3383b93985
69c8773f202a4c4a41134bb0eb179b1a88a41af3
3a8628d1c1ff17220d250d6c68ad74337797a7db40c8e031ea25f7101b8b2413

HTTP Headers

GET /gfx/photos/the-key.jpg HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/jpeg
Content-Length: 37884
Last-Modified: Tue, 21 Dec 2021 18:15:08 GMT
Connection: keep-alive
ETag: "61c219ac-93fc"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/full-bird-bottom.png

64.207.152.15

200 OK

21 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/full-bird-bottom.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size
21 kB (20707 bytes)
Hash
165562956b9ea814e2ccbcf96ccfe71c
b9a969e861d8f9bf1edc0da5179e215999fb4ba2
3645b40f376d0551dc9de5a44504bd42af5f229230388fc128b45e06f0a50bc7

HTTP Headers

GET /gfx/graphics/full-bird-bottom.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 20707
Last-Modified: Tue, 21 Dec 2021 18:15:05 GMT
Connection: keep-alive
ETag: "61c219a9-50e3"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/yellow-waves-top.png

64.207.152.15

200 OK

26 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/yellow-waves-top.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 2000 x 382, 8-bit/color RGB, non-interlaced\012- data
Size
26 kB (25505 bytes)
Hash
5f5ae5ee4310b6be979fc1d0dfe2fc7d
b660d9b05eecbdcaf655565ee4469ed753f70a31
c39a09f05f67189eee694ef58a122c2cc2f566367881d059afa645f3585a3270

HTTP Headers

GET /gfx/graphics/yellow-waves-top.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 25505
Last-Modified: Tue, 21 Dec 2021 18:15:06 GMT
Connection: keep-alive
ETag: "61c219aa-63a1"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/bird-1.png

64.207.152.15

200 OK

11 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/bird-1.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10751 bytes)
Hash
f087cd7bd645e4156a7efdc46178cabe
d05050f3f783cdd3fe0e5d9a4b4154d6346100d3
e5990aaf5a8dd215a7ddda26c0f836c23c91a2f565c1b20b34ddee672d5984f4

HTTP Headers

GET /gfx/graphics/bird-1.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 10751
Last-Modified: Tue, 21 Dec 2021 18:15:07 GMT
Connection: keep-alive
ETag: "61c219ab-29ff"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/photos/callout-news.jpg

64.207.152.15

200 OK

120 kB

URL HTTP/1.1
zicresources.ca/gfx/photos/callout-news.jpg
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
120 kB (119673 bytes)
Hash
546b58c22934a9c98521f5f2eedf64e1
d6b94562f39462310c02e3a87279e32fe262c424
db9959c5823a7cd7be032b3e7ad33be7c891216aafe2cc32d40b1bdf541c6976

HTTP Headers

GET /gfx/photos/callout-news.jpg HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/jpeg
Content-Length: 119673
Last-Modified: Tue, 21 Dec 2021 18:15:09 GMT
Connection: keep-alive
ETag: "61c219ad-1d379"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/bird-2.png

64.207.152.15

200 OK

14 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/bird-2.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13476 bytes)
Hash
515365ca9d8696110a94a9d70952a029
d3a81ee3357e5b6e84cf75fdc33d90a465c2374c
38f1d30fc80aaf3c0231a452f9bb52eb8837f8308f8830def3575f8ce3e2868d

HTTP Headers

GET /gfx/graphics/bird-2.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 13476
Last-Modified: Tue, 21 Dec 2021 18:15:07 GMT
Connection: keep-alive
ETag: "61c219ab-34a4"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/bird-3.png

64.207.152.15

200 OK

12 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/bird-3.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
12 kB (11726 bytes)
Hash
21f3d9be1552e6d14e01434b1c707481
2adbc89d8eb3b76b68b86f78b8532fdea7fd7573
5e6c6c90483817aee90a82c4217aa60eba577c661a1a2536a3937534f893557f

HTTP Headers

GET /gfx/graphics/bird-3.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/png
Content-Length: 11726
Last-Modified: Tue, 21 Dec 2021 18:15:07 GMT
Connection: keep-alive
ETag: "61c219ab-2dce"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/photos/callout-bulletin.jpg

64.207.152.15

200 OK

117 kB

URL HTTP/1.1
zicresources.ca/gfx/photos/callout-bulletin.jpg
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
117 kB (117330 bytes)
Hash
d27c6b0bfe42fba49e60a287ec5b4ca8
629348453b445792961fa1eaafacaf5e6cc0f8ca
ffd3a8a6c4c94ed084a708e6bee36f11eee6b4d5480594b2cce81e9e719f9719

HTTP Headers

GET /gfx/photos/callout-bulletin.jpg HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/jpeg
Content-Length: 117330
Last-Modified: Tue, 21 Dec 2021 18:15:08 GMT
Connection: keep-alive
ETag: "61c219ac-1ca52"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/photos/callout-resources.jpg

64.207.152.15

200 OK

286 kB

URL HTTP/1.1
zicresources.ca/gfx/photos/callout-resources.jpg
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
286 kB (285606 bytes)
Hash
e7312b354ea11927427227f67a13e74c
c2f12740001cc80d3912e499be2373a5583284ba
41a7619b024d7a5f097091fbb82f84c54988ee276747239f271779f3b16a3b9b

HTTP Headers

GET /gfx/photos/callout-resources.jpg HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/jpeg
Content-Length: 285606
Last-Modified: Tue, 21 Dec 2021 18:15:10 GMT
Connection: keep-alive
ETag: "61c219ae-45ba6"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/full-bird-top.png

64.207.152.15

200 OK

22 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/full-bird-top.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 600 x 600, 8-bit/color RGBA, non-interlaced\012- data
Size
22 kB (21776 bytes)
Hash
77c5ec393cd0e84977ea2a07989d1135
b295b3fb4a7e62fa066030a274279025ac08fef9
ad5c45524abe2da83955d2ac9090104b2606dc4cb283f0ada9d62179f184ba2f

HTTP Headers

GET /gfx/graphics/full-bird-top.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 21776
Last-Modified: Tue, 21 Dec 2021 18:15:06 GMT
Connection: keep-alive
ETag: "61c219aa-5510"
X-Powered-By: PleskLin
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bd56ce22720c6e6072efdabae64669fd
29194390d12177fe0d88e1bd2fb4436509366a1c
c41996d83d942ca58a13e2d1adfd171cf26a84bc9b7fdbd1ca941eb0269b5404

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C41996D83D942CA58A13E2D1ADFD171CF26A84BC9B7FDBD1CA941EB0269B5404"
Last-Modified: Wed, 25 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4723
Expires: Fri, 27 Jan 2023 02:08:26 GMT
Date: Fri, 27 Jan 2023 00:49:43 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde58379f-114f-469a-b64a-4c60841b1a18.jpeg

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde58379f-114f-469a-b64a-4c60841b1a18.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5703 bytes)
Hash
f4b88ea6f29f683c4b46a7487fce35a5
fa64e1287967459f665d337865a2333b4fdc4c33
f0290a9132b343d91426385e31c61cad787b5e82878b5015c13d4c356e387787

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde58379f-114f-469a-b64a-4c60841b1a18.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5703
x-amzn-requestid: 39b3ba3a-d049-4555-a04a-e3d55b90478f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1d1F8nIAMFTEw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c58-2dc0f52e71e822f71fed1456;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:56 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Llt0BnmCEL0H6v4DHYktatbn7H8KeQhNW0AXkP_EOxOmjx8aQuMdiA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 06:07:43 GMT
age: 67320
etag: "fa64e1287967459f665d337865a2333b4fdc4c33"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.4 kB (6394 bytes)
Hash
1695371c247eedad65b4cac82f01215d
50510052f0e22e23f747c761d57cdf72910ac533
aadde426229f04f6a489b87d6949a485b19d4fd035cb244b6094549efc08013f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52a1f3b3-38ab-4f58-ad1a-ca4c9f82503e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6394
x-amzn-requestid: 215e6698-30e7-45b0-8f8f-96a05c5f6992
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fOirZG1doAMFW_g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf4b15-3e1bec6759816cf84467339b;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 03:05:57 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: tG3T0HguJWldw-LJ9SJSuuUT4ubLCWViwQFB-dZhNfEswMEexb7Tcw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 04:23:28 GMT
age: 73575
etag: "50510052f0e22e23f747c761d57cdf72910ac533"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11568 bytes)
Hash
b7a0759c043594fbe85af422b59b8227
a05cfaad16078f42218dae233da38f6f5dff8487
e898d6ef1b3998fb9322a8fc190069ec5f7b3582bfe8397a2367497d84a27549

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfb887e5-87fa-4855-b0ee-712d39779fa0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11568
x-amzn-requestid: 2e85f75e-ab9d-4d45-adad-7313950a9647
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fSWbxGwnoAMFejw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d0d117-68f1a9e71a07a0453311fd32;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 06:49:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: dbz3wXGNaetf6xvRE98rshyHy-FVfDo8co-4VDL0a4Qe3E4U8A82Og==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 18:35:59 GMT
etag: "a05cfaad16078f42218dae233da38f6f5dff8487"
content-type: image/jpeg
age: 22424
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.7 kB (5737 bytes)
Hash
5e7158416f60576804ccff03307319fe
a342f94625e913fa6b8d862a59979f1e3ad80dd1
5c525df7d169cc7e033d920c11f4a0163a781c025a22b70530882b56964a9a52

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F16430244-f45f-4aea-a8a8-2b1f37fa80ef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5737
x-amzn-requestid: 23239d1f-0228-4722-b826-40dc8c9a4af2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVzDbEacIAMFZtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d23215-1604c24e272fbb657b9925cc;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:56:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -_8PZoms7W6Lvw__KsoTwL_CzjfyWChzoSWDc9yCk9zCR8cTs87oNA==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 16:31:35 GMT
age: 29888
etag: "a342f94625e913fa6b8d862a59979f1e3ad80dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11689 bytes)
Hash
06130c82b0c12aabc0cc9f920114e1c5
c2137e969f6eb3790923e1bc30d4288105fd1296
70b50dc9f7e76372b557da8d5188e86b4307e3d855619c5974d7830ab187cec1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48b381df-c118-4c63-bd08-99ac7a51ae39.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11689
x-amzn-requestid: c72f71e2-e235-4611-826b-94b55c1a6a17
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1YDGl8oAMF2Lw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c33-3e8a69900c1267e102d2c2bc;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:04:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Nsm2GhqSll0LCoSNRA6KjKZbee7frV0mgbS4z0yO9-DGrXvdZIM_2A==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 03:04:53 GMT
age: 78290
etag: "c2137e969f6eb3790923e1bc30d4288105fd1296"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9482 bytes)
Hash
a85badd84c0542610b94f22c4f265511
5b490095b5e02d9fef4b762888353998b645dfc9
23d6d9848caf36f0556438c371f112b40dcbf9b08b8b27bd37d4d73960c701c1

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd33883a9-7857-4110-892f-73f67db692bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9482
x-amzn-requestid: 825c5e6b-8fda-445e-9ed3-f5d634943c00
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fIZd0HqkIAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ccd5f1-2b31fe3001a1b04a406ff7ff;Sampled=0
x-amzn-remapped-date: Sun, 22 Jan 2023 06:21:37 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: i5KrM3iFZQcfmxq0qPhIUYRIqfWbEF8k9qmZAq8Fq_MTRX34HKiU8w==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 26 Jan 2023 05:41:50 GMT
age: 68873
etag: "5b490095b5e02d9fef4b762888353998b645dfc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

zicresources.ca/gfx/graphics/bird-4.png

64.207.152.15

200 OK

14 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/bird-4.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 250 x 250, 8-bit/color RGBA, non-interlaced\012- data
Size
14 kB (13620 bytes)
Hash
b35a7a7057f9dbb15e0f77d833e0e21e
90f561e2a0a9505c035181bc7f7457f93d21b0ad
4c500bd446ac7419e823b029a921b5fd9f6e17cd9356ab5adf71aeaf2b361324

HTTP Headers

GET /gfx/graphics/bird-4.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/png
Content-Length: 13620
Last-Modified: Tue, 21 Dec 2021 18:15:07 GMT
Connection: keep-alive
ETag: "61c219ab-3534"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/photos/callout-covid.jpg

64.207.152.15

200 OK

168 kB

URL HTTP/1.1
zicresources.ca/gfx/photos/callout-covid.jpg
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1000x1000, components 3\012- data
Size
168 kB (167781 bytes)
Hash
6de28258b14ef01e99a8b4d941744d39
67359feda0b8d4f6c2b7e94545034546742081b0
3deba2ece190efc509f4814acd8c4fd265219cf08cdb31d5661d706badda5f03

Detections

NIDS	Severity	Alert
suricata	medium	ET HUNTING Suspicious GET Request with Possible COVID-19 URI M1

HTTP Headers

GET /gfx/photos/callout-covid.jpg HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/jpeg
Content-Length: 167781
Last-Modified: Tue, 21 Dec 2021 18:15:08 GMT
Connection: keep-alive
ETag: "61c219ac-28f65"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/yellow-waves-bottom.png

64.207.152.15

200 OK

26 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/yellow-waves-bottom.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 2000 x 386, 8-bit/color RGB, non-interlaced\012- data
Size
26 kB (25784 bytes)
Hash
e5603282eb35eb53cbe6396b47a84a82
32712c8e6a683621fe316ff3974910a621986eab
c2596f67711202e386c035c16f269004dcca46a8b97cfe736315c4887ebcf71f

HTTP Headers

GET /gfx/graphics/yellow-waves-bottom.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/png
Content-Length: 25784
Last-Modified: Tue, 21 Dec 2021 18:15:06 GMT
Connection: keep-alive
ETag: "61c219aa-64b8"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/logos/ota.png

64.207.152.15

200 OK

9.3 kB

URL HTTP/1.1
zicresources.ca/gfx/logos/ota.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 400 x 200, 8-bit/color RGBA, non-interlaced\012- data
Size
9.3 kB (9299 bytes)
Hash
91e5a9405d576d2e51f7477f92fe1e12
91b07649483788e08d732512a2909aeb21c36a1a
8048dd0a019a6eca9ca85c743b8be73cdb8998ec53e67d7cec2b60b016ab50a8

HTTP Headers

GET /gfx/logos/ota.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/png
Content-Length: 9299
Last-Modified: Tue, 21 Dec 2021 18:14:54 GMT
Connection: keep-alive
ETag: "61c2199e-2453"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/shortcut-icons/favicon.png

64.207.152.15

200 OK

2.4 kB

URL HTTP/1.1
zicresources.ca/gfx/shortcut-icons/favicon.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
2.4 kB (2437 bytes)
Hash
58cafae57650aadbcfd32589cf945737
452244f0e25142959289238ddf30b9af986c157c
269017bf95c3ef7a772df8faaad272f09f75c4d6f79caaae176a41da63331250

HTTP Headers

GET /gfx/shortcut-icons/favicon.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/
Cookie: _ga_EKJXR036QF=GS1.1.1674780581.1.0.1674780581.0.0.0; _ga=GA1.1.931965106.1674780582

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/png
Content-Length: 2437
Last-Modified: Tue, 21 Dec 2021 18:14:59 GMT
Connection: keep-alive
ETag: "61c219a3-985"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/shortcut-icons/apple-touch-152.png

64.207.152.15

200 OK

7.8 kB

URL HTTP/1.1
zicresources.ca/gfx/shortcut-icons/apple-touch-152.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 152 x 152, 8-bit/color RGBA, non-interlaced\012- data
Size
7.8 kB (7838 bytes)
Hash
c7758f997fce0be24552580aeed3ee59
cc5b668a95f7f2cf2780caeec16e9e0e0c1242f4
7a1824657f4f03f10cbc9b2414206b6a7ae6e67431ceaa8e14cfcf91b349adec

HTTP Headers

GET /gfx/shortcut-icons/apple-touch-152.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/
Cookie: _ga_EKJXR036QF=GS1.1.1674780581.1.0.1674780581.0.0.0; _ga=GA1.1.931965106.1674780582

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:43 GMT
Content-Type: image/png
Content-Length: 7838
Last-Modified: Tue, 21 Dec 2021 18:14:58 GMT
Connection: keep-alive
ETag: "61c219a2-1e9e"
X-Powered-By: PleskLin
Accept-Ranges: bytes

zicresources.ca/gfx/graphics/banner-birds.png

64.207.152.15

200 OK

57 kB

URL HTTP/1.1
zicresources.ca/gfx/graphics/banner-birds.png
IP
64.207.152.15:0
ASN
#398110 GO-DADDY-COM-LLC

File type
PNG image data, 600 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
57 kB (56746 bytes)
Hash
0956140f104f8c9aa1b8acbfef90aaae
94212054d068d44ff96f9024284fc4f368b39a1d
eefb36d00a89a1b438881a1e8df81ae2059f00344a6dc859036f9fedc3a40de5

HTTP Headers

GET /gfx/graphics/banner-birds.png HTTP/1.1
Host: zicresources.ca
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://zicresources.ca/css/main.css

HTTP/1.1 200 OK
Server: nginx
Date: Fri, 27 Jan 2023 00:49:42 GMT
Content-Type: image/png
Content-Length: 56746
Last-Modified: Tue, 21 Dec 2021 18:15:05 GMT
Connection: keep-alive
ETag: "61c219a9-ddaa"
X-Powered-By: PleskLin
Accept-Ranges: bytes

www.googletagmanager.com/gtag/js?id=G-EKJXR036QF

142.250.74.40

200 OK

0 B

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-EKJXR036QF
IP
142.250.74.40:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /gtag/js?id=G-EKJXR036QF HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://zicresources.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 27 Jan 2023 00:49:41 GMT
expires: Fri, 27 Jan 2023 00:49:41 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77225
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML