Report - www.fixbugsyt.com/2022/09/how...

Report Overview

Submitted URL
www.fixbugsyt.com/2022/09/how...
IP
142.250.74.179
ASN
#15169 GOOGLE
Submitted
2022-10-17 00:10:15
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
12

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-09T05:09:50Z	5.0 kB	12 kB	142.250.74.3
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-09T05:09:13Z	594 B	127 B	44.242.3.166
standardscaldexcessive.com	unknown	2022-10-06T23:00:37Z	2023-03-07T03:23:10Z	2.4 kB	5.7 kB	192.243.59.13
www.fixbugsyt.com	unknown	2021-06-17T13:44:20Z	2022-12-03T07:00:29Z	1.8 kB	4.9 kB	142.250.74.179
d2kpucccxrl97x.cloudfront.net	unknown			981 B	55 kB	54.230.245.143
eautifuleed.xyz	unknown	2022-10-12T22:37:42Z	2023-01-02T12:45:19Z	1.3 kB	2.4 kB	143.204.55.107
dsoodbye.xyz	unknown	2022-10-13T10:02:22Z	2022-12-11T09:17:36Z	507 B	569 B	104.21.16.22
harshlygiraffediscover.com	unknown	2022-09-29T03:54:10Z	2023-01-24T14:03:18Z	2.4 kB	5.9 kB	192.243.61.227
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-09T11:52:10Z	658 B	1.6 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-09T05:09:49Z	401 B	5.8 kB	34.160.144.191
yt3.ggpht.com	203	2014-01-15T17:55:17Z	2023-03-09T05:09:42Z	456 B	2.5 kB	142.250.74.161
pagead2.googlesyndication.com	101	2021-02-20T16:52:05Z	2023-03-09T13:41:04Z	379 B	799 B	142.250.74.66
cdn.cloudimagesb.com	23099	2021-02-12T17:15:41Z	2023-03-09T11:23:27Z	794 B	46 kB	45.133.44.9
pogothere.xyz	unknown	2022-09-04T21:11:25Z	2023-03-09T13:58:15Z	793 B	2.2 kB	172.64.198.35
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-09T05:09:18Z	758 B	2.8 kB	143.204.55.36
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-09T06:49:10Z	387 B	62 kB	151.101.85.229
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-09T13:41:05Z	513 B	5.2 kB	142.250.74.162
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-09T05:09:40Z	680 B	564 B	216.239.34.36
accounts.google.com	81	2016-03-20T13:44:49Z	2023-03-09T06:20:40Z	2.9 kB	14 kB	216.58.207.237
www.highperformancedisplayformat.com	unknown	2022-09-01T03:42:42Z	2023-03-08T15:48:23Z	404 B	11 kB	192.243.59.13
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-09T13:40:16Z	373 B	76 kB	142.250.74.168
apis.google.com	105	2013-05-06T22:20:21Z	2023-03-09T05:09:33Z	355 B	21 kB	142.250.74.174
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	338 B	1.0 kB	143.204.42.165
simplewebanalysis.com	unknown	2022-02-25T05:06:25Z	2023-03-09T11:23:24Z	383 B	410 B	3.66.118.16
e1.o.lencr.org	6159	2021-08-20T09:36:30Z	2023-03-09T05:14:34Z	1.3 kB	2.9 kB	23.36.77.32
kit-pro.fontawesome.com	21124	2019-05-02T14:15:01Z	2023-03-09T15:58:26Z	2.5 kB	84 kB	104.18.23.52
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-09T05:09:05Z	3.6 kB	9.8 kB	23.36.76.226
www.facebook.com	99	2012-05-21T02:23:41Z	2021-02-04T00:31:35Z	433 B	13 kB	31.13.72.36
tournamentdouble.com	unknown	2022-09-06T12:26:24Z	2023-01-24T19:14:56Z	388 B	11 kB	192.243.61.225
www.blogger.com	8975	2012-05-22T09:35:03Z	2023-03-09T05:11:45Z	380 B	58 kB	216.58.207.201
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-09T10:04:36Z	3.2 kB	100 kB	34.120.237.76
ssl.gstatic.com	unknown	2012-05-23T08:57:57Z	2023-03-09T13:58:14Z	1.2 kB	7.0 kB	142.250.74.99
blogger.googleusercontent.com	16485	2012-05-25T19:41:01Z	2023-03-09T05:19:00Z	1.2 kB	73 kB	142.250.74.33
ocsp.globalsign.com	2075	2012-07-20T19:46:16Z	2023-03-09T05:09:04Z	356 B	1.9 kB	104.18.20.226
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-09T05:09:48Z	321 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-17	medium	tournamentdouble.com	Sinkholed
2022-10-16	medium	highperformancedisplayformat.com	Sinkholed
2022-10-16	medium	harshlygiraffediscover.com	Sinkholed
2022-10-16	medium	harshlygiraffediscover.com	Sinkholed
2022-10-16	medium	standardscaldexcessive.com	Sinkholed
2022-10-16	medium	standardscaldexcessive.com	Sinkholed

JavaScript (41)

	URL	Size	First Seen	Last Seen
	www.blogger.com/static/v1/widgets/1583485740-widgets.js	158 kB	2023-03-08	2023-03-17
Pretty URL www.blogger.com/static/v1/widgets/1583485740-widgets.js IP 216.58.207.201 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 13:23:09 Last Seen2023-03-17 17:17:06 Times Seen1 Hash 1e95aad238993803536698b6c8e5eceb 3db705a193d52dec29d65610ab50971dfa54a82b 37512059e7516519ceed7ba00ca5d7523cc5d15ca922435b692ac3678bad5496 Loading...

	www.fixbugsyt.com/2022/09/how...	1.8 kB	2023-03-07	2024-02-17
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:23 Last Seen2024-02-17 06:29:21 Times Seen23 Hash fe5faef28152038a2ae9a0d4e1711f76 e2c865c85097be34b144264b5087cab93cfbcc79 3fe64c7a35e175fffb645c03df559542116b83ca3ba065ae2f6fab09f61ace98 Loading...

	googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html	9.8 kB	2023-03-07	2023-03-17
Pretty URL googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:29:04 Last Seen2023-03-17 17:17:05 Times Seen1 Hash c5a01b9bdfc392b3a440c04c25d912a0 9f741a618cc001a197f4fd39dda831059be42db5 e789ddac14d96021d2c048d3428317d12aa8f1a5c326ba957c3792e879982e6f Loading...

	www.fixbugsyt.com/2022/09/how...	396 B	2023-03-07	2024-02-26
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:04 Last Seen2024-02-26 10:48:11 Times Seen73 Hash 0a2eeea044774d403b7ca5a01441d884 c266d1836bcd05d4b24b77647f429cce0bfaa5bc c400ddfaedf3805ec2dc31532affcca0c4a34b4a7e35a36ba3c6eb924230a4b1 Loading...

	apis.google.com/js/platform.js	53 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/platform.js IP 142.250.74.174 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 15765e8758982081f08a222a54783683 6282653ca157f529d587b92c552f2f9db446ad96 0da425eaadbec3853cae0b85493ea7ad6934972097b4f59d2a05dbb130585444 Loading...

	www.fixbugsyt.com/js/cookienotice.js	6.5 kB	2023-03-07	2024-04-25
Pretty URL www.fixbugsyt.com/js/cookienotice.js IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-25 01:56:00 Times Seen113350 Hash a705132a2174f88e196ec3610d68faa8 3bad57a48d973a678fec600d45933010f6edc659 068ffe90977f2b5b2dc2ef18572166e85281bd0ecb31c4902464b23db54d2568 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	126 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:05 Last Seen2023-03-17 11:38:02 Times Seen1 Hash c68dba65a0809b3bbbcb55951de7236d 411143c1717cb70190acb60c3740ebbee5b2a45b 96aec8c9f7981a987d0bacb3de756545e59a163f7fc94c47eea050b2f06316dd Loading...

	apis.google.com/js/rpc:shindig_random.js?onload=init	14 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/js/rpc:shindig_random.js?onload=init IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:05 Times Seen1 Hash a5e64e272cfbb29d67a8908cf59f2965 d4697ea4bc7ec763e8d69cf52916f784f0b29085 ae8ca9667580cbfae698d922360d33e82dc3a0b93736bd3b41392e2036a50c17 Loading...

	pagead2.googlesyndication.com/pagead/js/adsbygoogle.js	170 kB	2023-03-10	2023-03-10
Pretty URL pagead2.googlesyndication.com/pagead/js/adsbygoogle.js IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 55ec17d9d88b17bd26c057d094cd5a4e 2b063513cfc48999bc4a5700bcc17c31c5b17139 adb2c033f816f47236156a93019b23de83a2c9803c63636422d44e289633b870 Loading...

	www.fixbugsyt.com/2022/09/how...	275 B	2023-03-07	2024-04-25
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-04-25 01:56:00 Times Seen57326 Hash 38ee2f6ddbe8a478e5795030e72ba35d d332319b04b273e3b9a93ffa22ba9036d59b8e99 97d98978d5864e77cd83bd79a0d31ced40631a6134a154e8f049bcc20f49a319 Loading...

	www.fixbugsyt.com/2022/09/how...	354 B	2023-03-10	2023-03-10
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 14:24:53 Times Seen1 Hash 4c4438cb03e94240aec95e8b6c79f220 a1370fd1291e1e283e4a0d5d4b1fb204c7ab666b c1c18041d170c54d9f85b606fee26ccbd52861ff6dd175b015dfe4edcc34ab5f Loading...

	www.highperformancedisplayformat.com/d51e1f162b6919d81fcf0111a978d9d0/invoke.js	27 kB	2023-03-10	2023-03-10
Pretty URL www.highperformancedisplayformat.com/d51e1f162b6919d81fcf0111a978d9d0/invoke.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 09:06:11 Last Seen2023-03-10 10:55:07 Times Seen1 Hash b2f46e6b22da3e1c98f81fa4cb8e9d9a dafc41723a343e13f473cd69a501951ffabfcc63 ff3e0689f7744977b01001a0a67cf4e8dac2d1acddcba0a6408f215cf16d716f Loading...

	ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js	10 kB	2023-03-07	2023-03-17
Pretty URL ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js IP 142.250.74.99 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:05 Times Seen1 Hash 69c93809ee794c3e963df5e9aa5fe99d 53e4fac1a579d5cb826100d4dbe9e890385649ec 0d173137e6d7fab67e8e696fea473731e28fed08d552de686256d0d9dfa21275 Loading...

	www.fixbugsyt.com/2022/09/how...	153 B	2023-03-10	2023-05-22
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-05-22 00:56:48 Times Seen3 Hash f9b855e24b3af5d88eef9ccb7bdb70e5 604b5f2ea3b24f9b2481ad551c4ee6de93cf1f22 b1b1d519cdbc1a6a91b4edac98f42d14d30de6cd60e07499d3ae4bc17f0fb2ea Loading...

	www.fixbugsyt.com/2022/09/how...	8.3 kB	2023-03-10	2023-03-10
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 8e0131bbc09a42a6889e5ea7d923a7f5 7171b03af76b4929981759f48897ab062027b3ae 5c21224e6b9ce0f5c43b6b92662ff9c9712bcc42eabca5a67f118da94dd4002d Loading...

	http:blank	145 B	2023-03-10	2023-10-22
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-10-22 22:29:39 Times Seen2 Hash 7b8fc43d475c1501ab52bf9ef430c8da 1e8a5144d7c70c9e2eac6336df708308511ca2e1 4e809e79f7702f291f90d35d719f51635bd7158bf6f4a767ed348cf238c05e00 Loading...

	cdn.jsdelivr.net/gh/Arlina-Design/quasar@master/arlinablock.js	91 kB	2023-03-07	2024-02-26
Pretty URL cdn.jsdelivr.net/gh/Arlina-Design/quasar@master/arlinablock.js IP 151.101.85.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:04 Last Seen2024-02-26 10:48:11 Times Seen146 Hash 2b77703699738a0afe4785cb1b853a75 27b1ae11bc11f614ed04ed5221ca3203775d1f0f 7479748bad5793b25b90b43aec31d698a6dc56b094c4b5d26ac884bce952931c Loading...

	d2kpucccxrl97x.cloudfront.net/rek1OQnQZIiAkSw4kKn9NTHl9e0JcJz0tGgpwOzghPDUaBiYLeHsHDCs3HWQAAClzclIWLCAlSVwoICFJS2svJhZHeWg2BBUmczcYHj4qLQEXLDhkARtwIy0OEyEiI1FIC3tsRF9/fmoMS3xrcTZff34uHRQ4NmdGSjV2dCtMeWtxNl9/fjACX34Pe0JUfW-dnRkoqKyEfFWh8BEZKfH5yRUp8a3BEHCQ8JxIVNWtwMkN7YHJSD3B/	676 B	2023-03-10	2023-03-10
Pretty URL d2kpucccxrl97x.cloudfront.net/rek1OQnQZIiAkSw4kKn9NTHl9e0JcJz0tGgpwOzghPDUaBiYLeHsHDCs3HWQAAClzclIWLCAlSVwoICFJS2svJhZHeWg2BBUmczcYHj4qLQEXLDhkARtwIy0OEyEiI1FIC3tsRF9/fmoMS3xrcTZff34uHRQ4NmdGSjV2dCtMeWtxNl9/fjACX34Pe0JUfW-dnRkoqKyEfFWh8BEZKfH5yRUp8a3BEHCQ8JxIVNWtwMkN7YHJSD3B/ IP 54.230.245.143 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 9319f97f5b6f164f200d53fa0d53e26e 16f2a3eb459dccd05c84e585710484cf591a701a 91e430903f030e7c210579f20a291d9fd485b5c55e956b95a3f3427525268afa Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs	123 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=auth/exm=ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_1?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2023-03-17 12:38:25 Times Seen1 Hash 9111badcca52758d9afbb517f3da1335 3c8682db6892cb9ef74c1d8387dd2a381855011c 3f08af001134142200d0ef8e41ecb0f6f8d91951208c13f9e207e78d8f928b40 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_bubble/exm=auth,ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_2?le=scs	28 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes_style_bubble/exm=auth,ytsubscribe/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_2?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:36 Last Seen2023-03-17 12:38:25 Times Seen1 Hash 6070d8c8ffaba23bfb11be3e58676b5c 75388a49d227dfe8fb4c1dd874ccecaf350c7ecc 7659dc6c77000ec4b6745b5e6af107bd30ad9a0e92bfc0e406d5209ede488608 Loading...

	www.fixbugsyt.com/2022/09/how...	338 B	2023-03-10	2023-03-10
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 14:24:53 Times Seen1 Hash afe436882e7845d28c929decd75c5da5 1e49d03abaa494278175481a4a22f4a2a5f2e30a 9d415c22dcbeb38ebff867659d6f2c8033571bbe21cd2d8b151be97f0549a7eb Loading...

	www.fixbugsyt.com/2022/09/how...	789 B	2023-03-07	2024-02-13
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:24 Last Seen2024-02-13 16:43:35 Times Seen49861 Hash 0699fb3015610319b1639f47466451f0 5f4d8a4022f3a687921d7b3dce01cfc5bd62248f 2443e5c9c4ba5a75e030860f998bcf800907b0d4b3c4017999c2ed7ac84eeefa Loading...

	http:blank	145 B	2023-03-10	2023-06-17
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-06-17 00:29:30 Times Seen2 Hash 0bedab5177bea12f1e61c322b3888942 5b448da67db39381cb62a5025f168276ec9e2714 1e73da2a33023d907e857bad1544773f506097827d73eee251461402e92428bc Loading...

	www.youtube.com/subscribe_embed?usegapi=1&channelid=UCf43hW7S9IZWfeY9GQl1Jpg&layout=full&count=default&origin=https%3A%2F%2Fwww.fixbugsyt.com&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#_methods=onPlusOne%2C_ready%2C_close%2C_open%2C_resizeMe%2C_renderstart%2Concircled%2Cdrefresh%2Cerefresh%2Conload&id=I0_1665965411193&_gfid=I0_1665965411193&parent=https%3A%2F%2Fwww.fixbugsyt.com&pfname=&rpctoken=21149672	291 B	2023-03-10	2023-03-14
Pretty URL www.youtube.com/subscribe_embed?usegapi=1&channelid=UCf43hW7S9IZWfeY9GQl1Jpg&layout=full&count=default&origin=https%3A%2F%2Fwww.fixbugsyt.com&gsrc=3p&ic=1&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__#_methods=onPlusOne%2C_ready%2C_close%2C_open%2C_resizeMe%2C_renderstart%2Concircled%2Cdrefresh%2Cerefresh%2Conload&id=I0_1665965411193&_gfid=I0_1665965411193&parent=https%3A%2F%2Fwww.fixbugsyt.com&pfname=&rpctoken=21149672 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-14 14:52:58 Times Seen1 Hash a2c6b293173ca0f0610250753248b4dd 3635f29f347b5cddaf2f1ef5ff65965771cf331b db9a793907c96507608efcaca06321bd172cecf6dd32f2a8248a16f71ab10530 Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0	131 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=gapi_iframes,gapi_iframes_style_common/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2023-03-17 17:17:06 Times Seen1 Hash 8c367d9263e0440822e7e28574a782d6 37afed9428bb96e347d49f80f53ac4a5ab8e03d3 47858e4fa55e26f84c8025d699232106abfc921232a6f02edc556e59ce3a855b Loading...

	http:blank	3.2 kB	2023-03-10	2023-03-10
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 153db86c2e7123b7fdb9043a549bc043 d6a094b608d01d9e90e376012c42f7065c1bb971 e732956a095c095f86f295b059380854479b89e76fdd2a5e0d6c83fdbeb84d6b Loading...

	www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed-card_v0.js	153 kB	2023-03-07	2024-04-24
Pretty URL www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed-card_v0.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:30:36 Last Seen2024-04-24 13:53:55 Times Seen1765 Hash f9ba6497187042f135ea78004e9bef97 94d17b10ace330e3dab9c3ae9e8728865499aeed 1485460341dd7acce60bbff4b235101869025328e39f205fea7c0ea0f4b23ac6 Loading...

	www.googletagmanager.com/gtag/js?id=G-NY6VET0DB3	213 kB	2023-03-10	2023-03-10
Pretty URL www.googletagmanager.com/gtag/js?id=G-NY6VET0DB3 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 5253a57c053b63c448e5592510fe0b84 000e4bbe8f7c7ed4ea02d1f604cc4e3a29a12c62 bd2facda9411975f42898e6f8b693ae23f257e9c7008dde19c5ffc95420927ea Loading...

	tournamentdouble.com/08de3ff9cc7fc5753999582f46dda2a6/invoke.js	27 kB	2023-03-08	2023-03-10
Pretty URL tournamentdouble.com/08de3ff9cc7fc5753999582f46dda2a6/invoke.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 06:54:31 Last Seen2023-03-10 10:47:40 Times Seen1 Hash 331a890d36ea68d051dcfd7fbcb3ffcb 01b9bddd9e3d8e3a0a8bb2496698a462271aa224 8b185c65f0394ad02e1bf4f6e91e817c2d63fa34d91a1db8691654d41ee4b19b Loading...

	www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed_v0.js	258 kB	2023-03-07	2024-04-23
Pretty URL www.youtube.com/s/subscriptions/subscribe_embed/js/www-subscribe-embed_v0.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-23 10:05:24 Times Seen1934 Hash 327ffcc050307627c7de1c5573e54913 961deba0aa58564d08c2457438d9375770fe61de 35196923692f06f97491caf22422cce4b612d5ef07c51842ca94a088b15456e2 Loading...

	www.fixbugsyt.com/2022/09/how...	115 kB	2023-03-07	2023-11-26
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:23 Last Seen2023-11-26 02:17:13 Times Seen18 Hash aeb0770f57d35f2a0d8cfce00ea698f6 af05c3b7c888feaf4187fbd2cd4bef6944443740 99cb886cf61c94e28c388586c5365658d1a2ec29cd747657d112f88ebbf9a0d7 Loading...

	www.fixbugsyt.com/2022/09/how...	192 B	2023-03-10	2023-03-10
Pretty URL www.fixbugsyt.com/2022/09/how... IP 142.250.74.179 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 14:24:53 Times Seen1 Hash ba23bc34389975c9aa9006e773bc543b 148d10f5d2c0ced0ff6acad9ed65a4bcfae9e020 729ce341ce5819f03c238e9e488fa44e9166c1d08d5ef05424275ceafdc4ca82 Loading...

	http:blank	3.3 kB	2023-03-10	2023-03-10
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash c5f6c1870a22a1351db997846c791878 8956402e80891a2449aac419eaa54c925c54a456 2aca33f41129ea1a52d45bacc6f5c5205870f32934441e6f553a6502320f4a97 Loading...

	http:text/javascript;base64,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	496 B	2023-03-07	2024-02-24
Pretty URL http:text/javascript;base64,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 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:23 Last Seen2024-02-24 23:44:56 Times Seen49 Hash 40f79891eee93ebb94032c9f12d0eedd ad2b244574a9f12eb3490fd2c92a5587b519d253 d61f17fb4a015cd4f6b8ec4f172ab9dc66fa9bac64c421f4b933a06eb72a0bed Loading...

	eautifuleed.xyz/bUVqWVcMJwk0aAx4CH8iHylXfGUrYFgfM18uGiw0DiYSKztUchJ3NAEqHz0xHyoELXkDIB58ZSs3DzJmIhQECA0kLCsyBBpxARI5VAs+ETtUIFoTNCc/Wi0QCjUdFi0KLTodAgwHAwAbCA0ZERMuNlkRADwEKxo7FyYGEAAhBis1BDsyBRAUKw85ayQbDwIDHwgSDWsVLxAHOi0OHCIzYxwJOxwPIQECMhY/MR0QLl0KLyASBAxbHx4udh4qBSt8T2sRCygFFARePRg6AzcjDGpjGA04CGMjKA4eBAcTWD0UGQgPDiMVCwZgcl8DDDMWLh1ZbQcIdSAMMTpoDjcFBiobEi4oIywOP1UHLwMcCw1fIAU4NVI4ZC8AIhoGVQ8SEAEjEh4uGgYLXQAfJxYuahVIdyx/PR4qBClqGD8/Hy85ATgoYlgAEggtPg	3.0 kB	2023-03-10	2023-03-10
Pretty URL eautifuleed.xyz/bUVqWVcMJwk0aAx4CH8iHylXfGUrYFgfM18uGiw0DiYSKztUchJ3NAEqHz0xHyoELXkDIB58ZSs3DzJmIhQECA0kLCsyBBpxARI5VAs+ETtUIFoTNCc/Wi0QCjUdFi0KLTodAgwHAwAbCA0ZERMuNlkRADwEKxo7FyYGEAAhBis1BDsyBRAUKw85ayQbDwIDHwgSDWsVLxAHOi0OHCIzYxwJOxwPIQECMhY/MR0QLl0KLyASBAxbHx4udh4qBSt8T2sRCygFFARePRg6AzcjDGpjGA04CGMjKA4eBAcTWD0UGQgPDiMVCwZgcl8DDDMWLh1ZbQcIdSAMMTpoDjcFBiobEi4oIywOP1UHLwMcCw1fIAU4NVI4ZC8AIhoGVQ8SEAEjEh4uGgYLXQAfJxYuahVIdyx/PR4qBClqGD8/Hy85ATgoYlgAEggtPg IP 143.204.55.107 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 0be82278f3d87991a40e8d732e016211 b0afd6138b293de22c5d5cbc9a4bb3f443741288 a074f660584859c689c26c511e14e025b639e8dddcb254577049c206bc55f83c Loading...

	apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs	55 kB	2023-03-07	2023-03-17
Pretty URL apis.google.com/_/scs/abc-static/_/js/k=gapi.lb.en.z9QjrzsHcOc.O/m=rpc,shindig_random/rt=j/sv=1/d=1/ed=1/rs=AHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA/cb=gapi.loaded_0?le=scs IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2023-03-17 17:17:06 Times Seen1 Hash a706ac4f8b3931965ca926ee6ab4513b 17892ccd9114d77aaa5378ded48c9742e5ded111 98280a2e473b4c77505ccd09e2d3a336448fe7742694869634aaa872956727df Loading...

		Size	First Seen	Last Seen
	#1 Eval - e0cd15ea60a76a91a7324fab7e75b945	2.1 kB	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash e0cd15ea60a76a91a7324fab7e75b945 268c8b882c1e8d763d4a71af87b92b3849b0fa13 0e5f305e69fc47149d5097168b51f40ad35afffae128bad0fce648dfe02fc84c Loading...

	#2 Eval - 3b27e3064d710d1340d17c003792afc1	2.1 kB	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 10:37:18 Times Seen1 Hash 3b27e3064d710d1340d17c003792afc1 657dbf9ec393e60864833a033ce692856bdcd1ba cf7231a72c04aeca37dbc06b3735b33782df9cd5d94af96066d7f95967b8943f Loading...

	#3 Eval - 0b0c5117f98c674fff9332fa5480e908	31 B	2023-03-07	2023-11-21
Pretty Observations First Seen2023-03-07 01:02:07 Last Seen2023-11-21 03:43:28 Times Seen7759 Hash 0b0c5117f98c674fff9332fa5480e908 233966d6919f909d7c5fa065bacd49fde58eeb73 6e4c074bba968f3a2899edcbccf9e893ebdad7a5a533463e4d9630f28f3baed1 Loading...

		Size	First Seen	Last Seen
	#1 Write - 9b569b0f64512e545514613937a67a39	118 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 14:24:53 Times Seen1 Hash 9b569b0f64512e545514613937a67a39 0a86946742f19ab79a116a0b1754a75255997f91 02892380f95679795486177e079cf0673d73c78d109a44bf4c50225d98e8766d Loading...

	#2 Write - 6b054e2e4d0622b1a9742da08c2e194a	134 B	2023-03-10	2023-03-10
Pretty Observations First Seen2023-03-10 10:37:18 Last Seen2023-03-10 14:24:53 Times Seen1 Hash 6b054e2e4d0622b1a9742da08c2e194a 698e17e1f07fba0904305971b8227271c0bc9424 448c3579e059d15e48913e8c4302f6643f37e91eb60fbfa10972119cbb44f421 Loading...

HTTP Transactions (89)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 16 Oct 2022 23:50:47 GMT
Expires: Mon, 17 Oct 2022 00:43:37 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 2BvxKL14hXX7QGf1HtyMWary5aPV_N2XTVeHb_sy5tLgsSn5vQ1qZg==
Age: 1157

www.fixbugsyt.com/2022/09/how...

142.250.74.179

301 Moved Permanently

186 B

URL HTTP/1.1
www.fixbugsyt.com/2022/09/how...
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text
Size
186 B (186 bytes)
Hash
ea7eca95f91ae657d7e3fd0110f3d8ef
2d414939377f4a1edae4d0fecc268343925cbd5c
92620a3b093608fc6da86cafec9dd090f60f949991d8c2acabc24a9075235f9a

HTTP Headers

GET /2022/09/how... HTTP/1.1
Host: www.fixbugsyt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Location: https://www.fixbugsyt.com/2022/09/how...
Content-Type: text/html; charset=UTF-8
Content-Encoding: gzip
Date: Mon, 17 Oct 2022 00:10:04 GMT
Expires: Mon, 17 Oct 2022 00:10:04 GMT
Cache-Control: private, max-age=0
X-Content-Type-Options: nosniff
X-Frame-Options: SAMEORIGIN
Content-Security-Policy: frame-ancestors 'self'
X-XSS-Protection: 1; mode=block
Content-Length: 186
Server: GSE

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
07b3389fc24c0f8eb82a9d05b546d17e
02716741b8952e548b9a223adbb3f16204eef2b2
25e13458988115ae1f8176cb2328dbfebd612eabebf256b4af64594d5e23d6ca

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25E13458988115AE1F8176CB2328DBFEBD612EABEBF256B4AF64594D5E23D6CA"
Last-Modified: Sat, 15 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4527
Expires: Mon, 17 Oct 2022 01:25:31 GMT
Date: Mon, 17 Oct 2022 00:10:04 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a57d0f62d9bd29668b94a513fa45d18e
d7cb263502e21f9235b4523a596e2138d22042ec
df7acd4fe34cc9c4945a5d83ef538105a73dfc1a8b485bc7a62488c5406b1294

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF7ACD4FE34CC9C4945A5D83EF538105A73DFC1A8B485BC7A62488C5406B1294"
Last-Modified: Sat, 15 Oct 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7397
Expires: Mon, 17 Oct 2022 02:13:21 GMT
Date: Mon, 17 Oct 2022 00:10:04 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: IOzvlv9iNq0tlrPQEXKREy1sjC62wBY10LweLiJSXqXgVV5Bji/v7YZ/g/tjFiaF6l0WgfwArbc=
x-amz-request-id: P85QRCJPKD59E2EY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 16 Oct 2022 23:35:14 GMT
age: 2090
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 17 Oct 2022 00:10:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/s/gts1d4/6u_iEIufRaU

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/s/gts1d4/6u_iEIufRaU
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
f6e774a5ce530bd44492b7a9ced0d7cb
f69de22337be898e84d3bae6882e8e32d3ba16f5
77ab02317c8c81e09a9f9ee9aec563725ecf74d2f5808cf744dd28d80dca654b

HTTP Headers

POST /s/gts1d4/6u_iEIufRaU HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:04 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 17 Oct 2022 00:07:43 GMT
Cache-Control: max-age=3600
Expires: Mon, 17 Oct 2022 00:27:43 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UAtSQMb2pTZ1XbcNwZkxB5atRpa0z7r7bNPVHou42AuLDP0hW1EQPQ==
Age: 142

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
cfc92c8f6ee7599505d969732542ac42
7f4804d49c8ccd76ccffa6b72d41b1df611eb090
406c057a8392b9fa0ab09efa8b3222a58ec5fc17fa73f55a1f093e3d1092b0e4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3569
Cache-Control: max-age=118571
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Etag: "634bbb97-1d7"
Expires: Tue, 18 Oct 2022 09:06:16 GMT
Last-Modified: Sun, 16 Oct 2022 08:06:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-NY6VET0DB3

142.250.74.168

200 OK

75 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-NY6VET0DB3
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18991)
Size
75 kB (74838 bytes)
Hash
dd37eed83b09fbe27728a2b50c922cea
91202c8928c34d77891bba600260932e47ce3bda
a81ad193796f30603cc82fb2b90d4352b38ff4e08b5ed007d92511cee6e6661c

HTTP Headers

GET /gtag/js?id=G-NY6VET0DB3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Mon, 17 Oct 2022 00:10:05 GMT
expires: Mon, 17 Oct 2022 00:10:05 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74838
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5f309b801fdcff49c832652cf9f67fed
f0b6a27d0995fd7fd40f23ee385f8fe1fd752c13
53663428a1b73aeee2fc68815b072ad9ced52bfd3726416aaab332c29eb3aab6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
c4b76dc9c43702eff50d4cc6138b77a3
e7536f49ab40fc596695598796d4a32e8059ccae
3fdc04498badebc1b6967584873afe957782483cb475c17803ebacc800755ea6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

apis.google.com/js/platform.js

142.250.74.174

200 OK

20 kB

URL HTTP/2
apis.google.com/js/platform.js
IP
142.250.74.174:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1277)
Size
20 kB (20361 bytes)
Hash
b5a31516be83fe4f962609045d824f88
939a49a9858bf23561279f9ca2d1941d3256c66f
edb661aa461800e97e3847608a8b2d81cfe345f69a6f84abaa001d8a60500328

HTTP Headers

GET /js/platform.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20361
date: Mon, 17 Oct 2022 00:10:05 GMT
expires: Mon, 17 Oct 2022 00:10:05 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "40c22a9ccbd70870"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6e1c15b41a9baf3dcf134b8132912a6
7a9c0e0a369023808a9d9732610cd6f206c584ab
f247489aeb512583b0e1721922abd34e7d98bfb71d2de21d0c6f179cf585d365

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

d2kpucccxrl97x.cloudfront.net/?cupkd=964396

54.230.245.143

200 OK

54 kB

URL HTTP/2
d2kpucccxrl97x.cloudfront.net/?cupkd=964396
IP
54.230.245.143:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (15945)
Size
54 kB (53962 bytes)
Hash
9ef741d7ac7a3ce7d751c4cff5470409
a2e794d355cff2ca63b501782f07bd85ae2cd88f
f72b23d249c1297fb9d2cc61a48039b6eba273902d7d5f453e24db7568690a40

HTTP Headers

GET /?cupkd=964396 HTTP/1.1
Host: d2kpucccxrl97x.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-length: 53962
date: Mon, 17 Oct 2022 00:10:05 GMT
access-control-allow-origin: *
cache-control: no-store, no-cache, proxy-revalidate, must-revalidate, private, no-transform
content-encoding: gzip
pragma: no-cache
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: NV8rAcwCxgxVph0b_8VgbwTGh8gNAtv_so26dTJZZOTruEHHB9L-TQ==
X-Firefox-Spdy: h2

www.fixbugsyt.com/js/cookienotice.js

142.250.74.179

200 OK

2.0 kB

URL HTTP/2
www.fixbugsyt.com/js/cookienotice.js
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
2.0 kB (2026 bytes)
Hash
c4e1ed83d89245089b8a1203be20a377
f3940e1215b89300ef97d57a25993f25243b8688
afa801a129ff6fc98533118275db8a7d4a38fc91f8ab55ed4c19b864255e68d2

HTTP Headers

GET /js/cookienotice.js HTTP/1.1
Host: www.fixbugsyt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/2022/09/how...
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 2026
date: Mon, 17 Oct 2022 00:10:05 GMT
expires: Mon, 24 Oct 2022 00:10:05 GMT
cache-control: public, max-age=604800
last-modified: Sun, 16 Oct 2022 19:50:40 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
X-Firefox-Spdy: h2

push.services.mozilla.com/

44.242.3.166

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.242.3.166:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YGkY1OpBl54/OBFPr8iiLA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: nuzisOK0kTdKQQQ8gJV3X745zj8=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6d2abc1cad422cde0ca979cb4ec2a6f3
ac94a144d5e7042a63205cac83d8708a074934a4
74fc961bfa1c4f2be02481536d37167414552867779f300beedbfbf284b275fe

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.blogger.com/static/v1/widgets/1583485740-widgets.js

216.58.207.201

200 OK

57 kB

URL HTTP/2
www.blogger.com/static/v1/widgets/1583485740-widgets.js
IP
216.58.207.201:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2221)
Size
57 kB (56805 bytes)
Hash
51e9765a21d04965e256c5c0391baa23
64a603f8621455aca30ce9ffbcf57ec255a1c606
d3ffeaf05e015d956c69cc71a2f40f0a2336989bf0f09df1fef010cfa75b64bd

HTTP Headers

GET /static/v1/widgets/1583485740-widgets.js HTTP/1.1
Host: www.blogger.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="blogger-tech"
report-to: {"group":"blogger-tech","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/blogger-tech"}]}
content-length: 56805
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 02:07:46 GMT
expires: Tue, 10 Oct 2023 02:07:46 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 10 Oct 2022 00:52:13 GMT
content-type: text/javascript
age: 597739
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
e12678467c25f80b19871924121a1034
716264afce41618f04c1c758bc17616b6df02ebb
a6fa6a3f50d0e592b7bc92af7a0b49825798a999e73479ce57854fd738cb8036

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:05 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4a80b63afd16a9f19a586016973ea0b0
2b4bf24701cd82a4aee53e6331b97936b0cd833e
f02da1df95b44d6d0e8363a18f5f3ace7553e775d7f8911563c4f9c79a28e5d8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F02DA1DF95B44D6D0E8363A18F5F3ACE7553E775D7F8911563C4F9C79A28E5D8"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15440
Expires: Mon, 17 Oct 2022 04:27:26 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

tournamentdouble.com/08de3ff9cc7fc5753999582f46dda2a6/invoke.js

192.243.61.225

200 OK

9.8 kB

URL HTTP/1.1
tournamentdouble.com/08de3ff9cc7fc5753999582f46dda2a6/invoke.js
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
exported SGML document, ASCII text, with very long lines (26961), with no line terminators
Size
9.8 kB (9787 bytes)
Hash
3866b7d95346c448b07e42f42dbaaaaa
6cf447c154bab44d56111534e62c6b0e1f2df3d1
a548089c54f2383d8f2c65bd89b0d77246da5428c48702724009451260e17707

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /08de3ff9cc7fc5753999582f46dda2a6/invoke.js HTTP/1.1
Host: tournamentdouble.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Mon, 17 Oct 2022 00:10:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5f8bd916dc9770954c03ae60a9f41f6b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

region1.google-analytics.com/g/collect?v=2&tid=G-NY6VET0DB3&gtm=2oeaa0&_p=1937153494&cid=1299134528.1665965410&ul=en-us&sr=1280x1024&_s=1&sid=1665965409&sct=1&seg=0&dl=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&dt=404%20%3A%20There%27s%20nothing%20here!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-NY6VET0DB3&gtm=2oeaa0&_p=1937153494&cid=1299134528.1665965410&ul=en-us&sr=1280x1024&_s=1&sid=1665965409&sct=1&seg=0&dl=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&dt=404%20%3A%20There%27s%20nothing%20here!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-NY6VET0DB3&gtm=2oeaa0&_p=1937153494&cid=1299134528.1665965410&ul=en-us&sr=1280x1024&_s=1&sid=1665965409&sct=1&seg=0&dl=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&dt=404%20%3A%20There%27s%20nothing%20here!&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://www.fixbugsyt.com
date: Mon, 17 Oct 2022 00:10:06 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.165

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.165:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
f0413efff3fc4435819eea0892565002
68f2cbf9d99cbc2f3500c911fe2906ea03a6d72f
f5ebdb13ab4ad27844b4ad00d4bb79c9238bd02937bdab5dc83d0802d956895f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=134123
Date: Mon, 17 Oct 2022 00:10:06 GMT
Etag: "634bf982-1d7"
Expires: Tue, 18 Oct 2022 13:25:29 GMT
Last-Modified: Sun, 16 Oct 2022 12:30:58 GMT
Server: ECS (nyb/1D0A)
X-Cache: Miss from cloudfront
Via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Ur4b5WjyoeObynS0NM5Qo0Sgz-NwtJa0pjQSWvRGEiTkVkKNHD17Gw==
Age: 3271

simplewebanalysis.com/stats

3.66.118.16

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
3.66.118.16:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
0f5d42d2ea1e56ab4414477bb47afa67
4f96653fa27ee7c12aab2119e58a06ccf6458bc8
efd63b151e2f41400b23ec4a345fd821c65e67c4baa5f870e31e56005efbdaab

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:06 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.fixbugsyt.com
access-control-allow-credentials: true
set-cookie: uid_id2=fcb01288-93ab-463d-ae34-96256ef688e8:3:1; expires=Thu, 14 Oct 2032 00:10:06 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1550752d8b99f8c4a224b8f9909c9040
cecef361759d88ce04ea0dc35a6405fb15cec5ce
96e2a53de8a0e0951ec7122aa025717b82a7dd30a01d99480807513dec3e6768

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "96E2A53DE8A0E0951EC7122AA025717B82A7DD30A01D99480807513DEC3E6768"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3871
Expires: Mon, 17 Oct 2022 01:14:37 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12677
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12677
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12677
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
59c9f4b6a5cb5571f7e8ec52f3548732
9bd1c495d09547b8cc983f71b90471f42ec61f94
25c4798d1ef0730368cc5c6d41a4596c5c914865f6f7a4fad97bdd4ce017894e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25C4798D1EF0730368CC5C6D41A4596C5C914865F6F7A4FAD97BDD4CE017894E"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12677
Expires: Mon, 17 Oct 2022 03:41:23 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fe196c4-cce3-49b6-b9da-7ed412ed2181.jpeg

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fe196c4-cce3-49b6-b9da-7ed412ed2181.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5214 bytes)
Hash
008105c05a9182fe9868c8ca0f8abb75
b6c66ba7a544ef311d077ca262a822f911d8d76c
b42f01b72d40428308d36ae3a62681f93c75d0d3eae3647a4be3f74083aed11a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7fe196c4-cce3-49b6-b9da-7ed412ed2181.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5214
x-amzn-requestid: 5fdf68d8-0119-4331-a493-e1f175ea5426
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf5UHF3IAMFYAA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79d5-78384ab1697d9b912a41a0a4;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:38:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: fWAJPcwI69KynFRW2-dXPPdnY4kVErHPn8zNpRoNXmg1GxHL5vjMNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 22:26:38 GMT
age: 6208
etag: "b6c66ba7a544ef311d077ca262a822f911d8d76c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1144b8e-9df0-4a3f-a339-3ac9d20607fd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.1 kB (7086 bytes)
Hash
c5337e5216d7034fd6d4803607424bcb
bee39a89e4a0bd507f6c22f903ea632a6f61d207
b7be0a7d4a5d6690520642faacb14c4d0abd47c8d8f5a4409979d6bcd97b4026

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1144b8e-9df0-4a3f-a339-3ac9d20607fd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7086
x-amzn-requestid: ebd5e2c2-a7b7-4f26-9309-367ab8e51322
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHqcGGBlIAMFo3g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c8ab3-53d908901a222fc07921e057;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 22:50:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: JjGjnF7fH6OZs0zRgkiK3bTnRnMhq7F2cOuSpvflw1LCKhXk9PWRNw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 23:04:10 GMT
age: 3956
etag: "bee39a89e4a0bd507f6c22f903ea632a6f61d207"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad11b12f-756e-4701-a6c9-803158835ba0.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12142 bytes)
Hash
6db8a6d2b29268e024c148bb2c8d43f4
725bcdae86ff208026848a7ab89fa7927decd0cd
a2f17e67b8d6acaa6d3b9a2cf599b8ccbe9c636617eb7da0c9fbc1813885acc2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad11b12f-756e-4701-a6c9-803158835ba0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12142
x-amzn-requestid: 79d48fe0-6756-49f1-acec-f9528aebcd04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHpDaFHIIAMF2-w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c887c-0d33813a3d3e4d7c2cbf1ca8;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 22:41:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ZRRP-02bzPEhZSHunGICCNRqNnVNy-tFQvirBbNiZxI5HiotsB1vMA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 22:43:21 GMT
etag: "725bcdae86ff208026848a7ab89fa7927decd0cd"
content-type: image/jpeg
age: 5205
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

47 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2295171-3655-4c87-967e-93929cfbe388.gif
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 296 x 148\012- data
Size
47 kB (47445 bytes)
Hash
9bf9e33e3af0d4d836c05e01ca6ad82f
f910325edfff69b904fc94cc224a60c5b3950658
4cda0563a6b23d5a3644f5dc86d9a20809861cdd8e74c1fb489ecc40f9127a43

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd2295171-3655-4c87-967e-93929cfbe388.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 47445
x-amzn-requestid: 0edccf3a-7dff-4336-8428-339151a4543b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf5JHgVIAMF8YA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79d3-424b2b46288a0dbc2676271b;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:38:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: aTQhv_Md0fXRctcD2bCC9sf6-KeMPjl5ffGXOUy31n1yRvgq_DyNdA==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:46:14 GMT
age: 8632
etag: "f910325edfff69b904fc94cc224a60c5b3950658"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a5488a3-4a1c-4773-99f6-81e18bcdccd2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15855 bytes)
Hash
319cbf11bba3f159e5c9f606deded924
13f29acb7a694030fc2de0b42c0d95c4be49deb7
09aa7d94e4829f4daf33d5e2aed077afcc59628839c5d6e877172e8455879062

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4a5488a3-4a1c-4773-99f6-81e18bcdccd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15855
x-amzn-requestid: c8171eaf-67b4-4179-9e69-36fe00ef3bfe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZhQU8HmcIAMFw0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633d2db9-2985178a31d0e8c430323a26;Sampled=0
x-amzn-remapped-date: Wed, 05 Oct 2022 07:09:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Zo6PXcoqkbRgpug8ZDp-0Q9RtLAwpAOlASdtGT4KHy6Q9q-4HgLqfw==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 05:08:57 GMT
age: 68469
etag: "13f29acb7a694030fc2de0b42c0d95c4be49deb7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

5.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa84a5d2e-fd71-49c6-b1da-724e3933fb34.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.5 kB (5509 bytes)
Hash
9145c370e3b0e5f89c0861548c4b40fa
3cb352d4db5a8bcc8567a4f98d9c4580fbc1a28b
470409bfe1fa86d8ffa38280673fb64b54ec726dc4fcd19222e04de1ab2e6166

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa84a5d2e-fd71-49c6-b1da-724e3933fb34.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5509
x-amzn-requestid: 3de58d17-8910-4442-a087-db38166fa689
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aHf0MEovIAMFcMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634c79b4-1f7abb967a64717077d6eca8;Sampled=0
x-amzn-remapped-date: Sun, 16 Oct 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8CPrKW_PJMsSUkhbYxi4KtC5yp5CSYXM62TqzGZrNBB4pQ_bK1bxfw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 16 Oct 2022 21:46:14 GMT
age: 8632
etag: "3cb352d4db5a8bcc8567a4f98d9c4580fbc1a28b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.highperformancedisplayformat.com/d51e1f162b6919d81fcf0111a978d9d0/invoke.js

192.243.59.13

200 OK

9.8 kB

URL HTTP/1.1
www.highperformancedisplayformat.com/d51e1f162b6919d81fcf0111a978d9d0/invoke.js
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
exported SGML document, ASCII text, with very long lines (26961), with no line terminators
Size
9.8 kB (9785 bytes)
Hash
12860fe70d72f8370b07194085ecaf7d
73a1d7e0aa1bfad7e7a7911e84ee0db72a651af0
4618c18294db817bbe6abf0fbe7c9a942b6fc46214ac34157b0947f1de1aa49e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /d51e1f162b6919d81fcf0111a978d9d0/invoke.js HTTP/1.1
Host: www.highperformancedisplayformat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 17 Oct 2022 00:10:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: fe9fc7fc98d705422e14778571ee55d2
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
498e3be68c1bcd7c2e8af6db21175dd3
f1f390e695ef7307c8206158cbaa0255b1a8dbc6
b44387b28729f3592fc28a3161a20bdcb779d3b2448941d85afcd0fb9f17fff9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B44387B28729F3592FC28A3161A20BDCB779D3B2448941D85AFCD0FB9F17FFF9"
Last-Modified: Sun, 16 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16239
Expires: Mon, 17 Oct 2022 04:40:45 GMT
Date: Mon, 17 Oct 2022 00:10:06 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
a13144236b8bbead5de320a3ba26b9e5
48140f479b08f1248857d7a690d05c4bb82e8cdd
7ade93f444db1ae22ce365caf8649e72b92bd2c4e939dbb717d48f68b5d8c190

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "7ADE93F444DB1AE22CE365CAF8649E72B92BD2C4E939DBB717D48F68B5D8C190"
Last-Modified: Sat, 15 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4096
Expires: Mon, 17 Oct 2022 01:18:23 GMT
Date: Mon, 17 Oct 2022 00:10:07 GMT
Connection: keep-alive

eautifuleed.xyz/bUVqWVcMJwk0aAx4CH8iHylXfGUrYFgfM18uGiw0DiYSKztUchJ3NAEqHz0xHyoELXkDIB58ZSs3DzJmIhQECA0kLCsyBBpxARI5VAs+ETtUIFoTNCc/Wi0QCjUdFi0KLTodAgwHAwAbCA0ZERMuNlkRADwEKxo7FyYGEAAhBis1BDsyBRAUKw85ayQbDwIDHwgSDWsVLxAHOi0OHCIzYxwJOxwPIQECMhY/MR0QLl0KLyASBAxbHx4udh4qBSt8T2sRCygFFARePRg6AzcjDGpjGA04CGMjKA4eBAcTWD0UGQgPDiMVCwZgcl8DDDMWLh1ZbQcIdSAMMTpoDjcFBiobEi4oIywOP1UHLwMcCw1fIAU4NVI4ZC8AIhoGVQ8SEAEjEh4uGgYLXQAfJxYuahVIdyx/PR4qBClqGD8/Hy85ATgoYlgAEggtPg

143.204.55.107

200 OK

1.2 kB

URL HTTP/2
eautifuleed.xyz/bUVqWVcMJwk0aAx4CH8iHylXfGUrYFgfM18uGiw0DiYSKztUchJ3NAEqHz0xHyoELXkDIB58ZSs3DzJmIhQECA0kLCsyBBpxARI5VAs+ETtUIFoTNCc/Wi0QCjUdFi0KLTodAgwHAwAbCA0ZERMuNlkRADwEKxo7FyYGEAAhBis1BDsyBRAUKw85ayQbDwIDHwgSDWsVLxAHOi0OHCIzYxwJOxwPIQECMhY/MR0QLl0KLyASBAxbHx4udh4qBSt8T2sRCygFFARePRg6AzcjDGpjGA04CGMjKA4eBAcTWD0UGQgPDiMVCwZgcl8DDDMWLh1ZbQcIdSAMMTpoDjcFBiobEi4oIywOP1UHLwMcCw1fIAU4NVI4ZC8AIhoGVQ8SEAEjEh4uGgYLXQAfJxYuahVIdyx/PR4qBClqGD8/Hy85ATgoYlgAEggtPg
IP
143.204.55.107:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3027), with no line terminators
Size
1.2 kB (1183 bytes)
Hash
034b86db04aaf39a20fc4d01061f529b
1700e83697ed63870619d402466362400f8a98e9
50eac809bfd70f6bde1f7bc374824a421a7da864474da8f88969ee97e88a4bee

HTTP Headers

GET /bUVqWVcMJwk0aAx4CH8iHylXfGUrYFgfM18uGiw0DiYSKztUchJ3NAEqHz0xHyoELXkDIB58ZSs3DzJmIhQECA0kLCsyBBpxARI5VAs+ETtUIFoTNCc/Wi0QCjUdFi0KLTodAgwHAwAbCA0ZERMuNlkRADwEKxo7FyYGEAAhBis1BDsyBRAUKw85ayQbDwIDHwgSDWsVLxAHOi0OHCIzYxwJOxwPIQECMhY/MR0QLl0KLyASBAxbHx4udh4qBSt8T2sRCygFFARePRg6AzcjDGpjGA04CGMjKA4eBAcTWD0UGQgPDiMVCwZgcl8DDDMWLh1ZbQcIdSAMMTpoDjcFBiobEi4oIywOP1UHLwMcCw1fIAU4NVI4ZC8AIhoGVQ8SEAEjEh4uGgYLXQAfJxYuahVIdyx/PR4qBClqGD8/Hy85ATgoYlgAEggtPg HTTP/1.1
Host: eautifuleed.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/html
content-length: 1183
date: Mon, 17 Oct 2022 00:10:07 GMT
server: openresty/1.17.8.2
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
content-encoding: gzip
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 01uhViod5WSpEdg9y0fjNk5BT9ERbdKqSCULP_5Nkr9O8p2odEc8rA==
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
a6e1c15b41a9baf3dcf134b8132912a6
7a9c0e0a369023808a9d9732610cd6f206c584ab
f247489aeb512583b0e1721922abd34e7d98bfb71d2de21d0c6f179cf585d365

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

dsoodbye.xyz/Q3BnS3VsTwQ4SBBAF30sKTZSLSAzJyYlOzkjMSg2JigPBiASOUE/HCdNXn1BcElRbQUqFFp6UzAEBj8AME1WbRwtFgh2UzVNVmVGd15VcltzVhJ2RGUEFyoSfkFBOwE3HFp6Q3VFXn1Ad0FWe0N1

104.21.16.22

204 No Content

0 B

URL HTTP/2
dsoodbye.xyz/Q3BnS3VsTwQ4SBBAF30sKTZSLSAzJyYlOzkjMSg2JigPBiASOUE/HCdNXn1BcElRbQUqFFp6UzAEBj8AME1WbRwtFgh2UzVNVmVGd15VcltzVhJ2RGUEFyoSfkFBOwE3HFp6Q3VFXn1Ad0FWe0N1
IP
104.21.16.22:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /Q3BnS3VsTwQ4SBBAF30sKTZSLSAzJyYlOzkjMSg2JigPBiASOUE/HCdNXn1BcElRbQUqFFp6UzAEBj8AME1WbRwtFgh2UzVNVmVGd15VcltzVhJ2RGUEFyoSfkFBOwE3HFp6Q3VFXn1Ad0FWe0N1 HTTP/1.1
Host: dsoodbye.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Mon, 17 Oct 2022 00:10:07 GMT
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VUaD6QfU0RwBAzvyRjGVu%2BEWnP9%2BkP0zY093Yx699lB04%2Ft0f18f4bd7UnExUA%2FKHj14n6pWenO3Y1ix1R1TkNpq%2FPf12znq%2BHL2Bmiu6qAHErlait9VHz13sC3lTlg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b4cf322908b529-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-brands-400-5.8.2.woff2

104.18.23.52

200 OK

2.5 kB

URL HTTP/2
kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-brands-400-5.8.2.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 2472, version 331.-31327\012- data
Size
2.5 kB (2472 bytes)
Hash
3aa36704dfa9434e1d02fd7a76b4705f
95a15bd834df2991b652c2a82f378776a1bc905a
88994b8503760a004c40a2db177a7a610c1fee9710639a506971afb8c8d02b07

HTTP Headers

GET /releases/v5.15.2/webfonts/pro-fa-brands-400-5.8.2.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: font/woff2
content-length: 2472
x-amz-id-2: 0QGwhw7wDq62FvB4MfxaSY0AH/z6NqZK7rcohebpqLBbKtRUTkV98Q1CBNEKP5r1vx7goVL1fCI=
x-amz-request-id: 29781JAD822C895P
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 01 Jul 2021 20:08:00 GMT
etag: "3aa36704dfa9434e1d02fd7a76b4705f"
cache-control: public, max-age=31556926
cf-cache-status: HIT
expires: Tue, 17 Oct 2023 05:58:53 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75b4cf32deed0b55-OSL
X-Firefox-Spdy: h2

kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-solid-900-5.7.0.woff2

104.18.23.52

200 OK

9.1 kB

URL HTTP/2
kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-solid-900-5.7.0.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 9072, version 331.-31327\012- data
Size
9.1 kB (9072 bytes)
Hash
cd8172f57c5fd94b2f1de480aca2c0b7
997c16a3031afb447b4a619fb216dd16005eb5cc
abebb4bcb4da82c56fe018a0337c26cf27018079b66cff65358b1940ee1ad6b3

HTTP Headers

GET /releases/v5.15.2/webfonts/pro-fa-solid-900-5.7.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: font/woff2
content-length: 9072
x-amz-id-2: d+QZ6ffVgLkL+8zXPNtvFxf2Q08lLOmDKeZLiSman6ncztD53B1w8yGt0P+P5jHYCIxBu9pdtv4=
x-amz-request-id: ETZG50BEK7C4SW7G
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 01 Jul 2021 20:08:10 GMT
etag: "cd8172f57c5fd94b2f1de480aca2c0b7"
cache-control: public, max-age=31556926
cf-cache-status: HIT
expires: Tue, 17 Oct 2023 05:58:53 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75b4cf32deee0b55-OSL
X-Firefox-Spdy: h2

kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-solid-900-5.0.0.woff2

104.18.23.52

200 OK

20 kB

URL HTTP/2
kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-solid-900-5.0.0.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 20232, version 331.-31327\012- data
Size
20 kB (20232 bytes)
Hash
03f4b434ddbcb9152d8690bb90fd2c00
5ede730feae9ab37c48233e5c83a25f079ecbbca
8eb67a3d1088e367e9b1429105c2df2ce1f042dbb819351e998dbb76717d0936

HTTP Headers

GET /releases/v5.15.2/webfonts/pro-fa-solid-900-5.0.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: font/woff2
content-length: 20232
x-amz-id-2: bjT3nTmkWdcR0+dy2GmAfCme4jR7mN1v79A3FekH95zWsrRekrhWyuvEFNdvTQEjXa7f1RBvRas=
x-amz-request-id: 29712YM4V48HW6Y6
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 01 Jul 2021 20:08:08 GMT
etag: "03f4b434ddbcb9152d8690bb90fd2c00"
cache-control: public, max-age=31556926
cf-cache-status: HIT
expires: Tue, 17 Oct 2023 05:58:53 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75b4cf32deec0b55-OSL
X-Firefox-Spdy: h2

kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-brands-400-5.0.0.woff2

104.18.23.52

200 OK

39 kB

URL HTTP/2
kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-brands-400-5.0.0.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 39176, version 331.-31327\012- data
Size
39 kB (39176 bytes)
Hash
7c82fbc0862faa615c4ad28f8e7bcf02
18cd5e664c156be3a194e8bb6500724497ff54b1
5f031f5beda509b8c7f74966b00340c15321b31b43ada420ef85ff7c5e5e7578

HTTP Headers

GET /releases/v5.15.2/webfonts/pro-fa-brands-400-5.0.0.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: font/woff2
content-length: 39176
x-amz-id-2: sQDIfz5rnTqh/7+SuLKoF7ibQx/aByLgWAVP91zbnePQtbaUH5lFBwtMqi99TnzuUB7VjN10Zxg=
x-amz-request-id: 8EMHW7V478J31KCG
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 01 Jul 2021 20:07:58 GMT
etag: "7c82fbc0862faa615c4ad28f8e7bcf02"
cache-control: public, max-age=31556926
cf-cache-status: HIT
expires: Tue, 17 Oct 2023 05:58:53 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75b4cf32eef30b55-OSL
X-Firefox-Spdy: h2

192.243.61.227

307 Temporary Redirect

0 B

URL HTTP/1.1
harshlygiraffediscover.com/watch.63941326384.js?key=08de3ff9cc7fc5753999582f46dda2a6&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.63941326384.js?key=08de3ff9cc7fc5753999582f46dda2a6&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1 HTTP/1.1
Host: harshlygiraffediscover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.22.0
Date: Mon, 17 Oct 2022 00:10:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fixbugsyt.com
Access-Control-Allow-Origin: https://www.fixbugsyt.com
Access-Control-Allow-Credentials: true
Location: https://harshlygiraffediscover.com/watch.63941326384.js?key=08de3ff9cc7fc5753999582f46dda2a6&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=2d44c3b7f8ec9f72f2144d8c6be3143b2c3879864624217ca5e0ea1fa75422e0735ee72691d6c5288df328fbe6881e77e3e91fa86957b305f8d54a0b5acb9e8a4d9e959b25f7afc07f682379131df717f3cb1a42&pst=1665965467&rmtc=t
Set-Cookie: u_pl=17667267; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNzY2NzI2NywiayI6IjA4ZGUzZmY5Y2M3ZmM1NzUzOTk5NTgyZjQ2ZGRhMmE2Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxNzc0NzQ3LCJwaWQiOjMzNzUwOSwiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjozMiwicHQiOjQsInBrIjoidzVud3p0NGNjIiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjc5OTU0MTk2LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6MTgxMTAsIm9uIjoiTGludXgiLCJvdiI6IlVua25vd24iLCJiaWQiOjExNjY3MCwiYm4iOiJGaXJlZm94IiwiYnYiOiI5Ni4wIiwid3YiOmZhbHNlLCJlIjpmYWxzZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL3d3dy5maXhidWdzeXQuY29tLzIwMjIvMDkvaG93Li4uIn19.orn3MnZwZ1bXp5UOjIvojE8sQdMJSClFqgP5QVWRr3A; expires=Mon, 17 Oct 2022 00:11:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4720d94a0cd43f4dc24d27c5a5c87d0a
Strict-Transport-Security: max-age=0; includeSubdomains

kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-regular-400-5.11.1.woff2

104.18.23.52

200 OK

9.8 kB

URL HTTP/2
kit-pro.fontawesome.com/releases/v5.15.2/webfonts/pro-fa-regular-400-5.11.1.woff2
IP
104.18.23.52:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 9824, version 331.-31327\012- data
Size
9.8 kB (9824 bytes)
Hash
c1feb549cac7399e70ae1f26f3396b08
acc0beb48b4f75b780bc9715b7dc44ae2d0da036
019212113cb1c3cd11e8dbcaef79be1fe0006026e00ec87a5fab287744369f09

HTTP Headers

GET /releases/v5.15.2/webfonts/pro-fa-regular-400-5.11.1.woff2 HTTP/1.1
Host: kit-pro.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: font/woff2
content-length: 9824
x-amz-id-2: dxW0zLVkA1Wr7qfl+t+JK+iefSwbkvbVQkRFIlwmM/xFYHmUhFvMGDGkhVLBMiogjnmKpgGvey8=
x-amz-request-id: 8EMH6Z0A5EYHZ4K5
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Thu, 01 Jul 2021 20:08:06 GMT
etag: "c1feb549cac7399e70ae1f26f3396b08"
cache-control: public, max-age=31556926
cf-cache-status: HIT
expires: Tue, 17 Oct 2023 05:58:53 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 75b4cf32eef50b55-OSL
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
a13144236b8bbead5de320a3ba26b9e5
48140f479b08f1248857d7a690d05c4bb82e8cdd
7ade93f444db1ae22ce365caf8649e72b92bd2c4e939dbb717d48f68b5d8c190

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "7ADE93F444DB1AE22CE365CAF8649E72B92BD2C4E939DBB717D48F68B5D8C190"
Last-Modified: Sat, 15 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4096
Expires: Mon, 17 Oct 2022 01:18:23 GMT
Date: Mon, 17 Oct 2022 00:10:07 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

1.5 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
1.5 kB (1512 bytes)
Hash
7b9a5328e3002de4645a2fa94f4c8d22
04f52590502e485c505718d8b6abd0614fe41cb0
eddc19ecf39c59cf91d8b250d1432fad46ced96af6e79bca935c3505b6f34043

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

yt3.ggpht.com/Y6fDytqynxLABCcbG3Xw-sTM6VrwfHZ6IrG-ExFRQPaKxjL5is8Q3vSWBwtNw7rl9WaFEdBD=s48-c-k-c0x00ffffff-no-rj

142.250.74.161

200 OK

1.8 kB

URL HTTP/2
yt3.ggpht.com/Y6fDytqynxLABCcbG3Xw-sTM6VrwfHZ6IrG-ExFRQPaKxjL5is8Q3vSWBwtNw7rl9WaFEdBD=s48-c-k-c0x00ffffff-no-rj
IP
142.250.74.161:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 48x48, components 3\012- data
Size
1.8 kB (1802 bytes)
Hash
b3fc392419edf1fb829bb90cd71d14c2
d734cc4ac29def7b5ef1d807ff86004e8c9ee6a0
1424383266f09769f629ea9425e2fcc6eaee9d968840a4ac80d0accacf2a9c39

HTTP Headers

GET /Y6fDytqynxLABCcbG3Xw-sTM6VrwfHZ6IrG-ExFRQPaKxjL5is8Q3vSWBwtNw7rl9WaFEdBD=s48-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
vary: Origin
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
server: fife
content-length: 1802
x-xss-protection: 0
date: Mon, 17 Oct 2022 00:10:07 GMT
expires: Sat, 15 Oct 2022 14:41:13 GMT
cache-control: public, max-age=86400, no-transform
etag: "v1"
content-type: image/jpeg
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

d2kpucccxrl97x.cloudfront.net/rek1OQnQZIiAkSw4kKn9NTHl9e0JcJz0tGgpwOzghPDUaBiYLeHsHDCs3HWQAAClzclIWLCAlSVwoICFJS2svJhZHeWg2BBUmczcYHj4qLQEXLDhkARtwIy0OEyEiI1FIC3tsRF9/fmoMS3xrcTZff34uHRQ4NmdGSjV2dCtMeWtxNl9/fjACX34Pe0JUfW-dnRkoqKyEfFWh8BEZKfH5yRUp8a3BEHCQ8JxIVNWtwMkN7YHJSD3B/

54.230.245.143

200 OK

490 B

URL HTTP/2
d2kpucccxrl97x.cloudfront.net/rek1OQnQZIiAkSw4kKn9NTHl9e0JcJz0tGgpwOzghPDUaBiYLeHsHDCs3HWQAAClzclIWLCAlSVwoICFJS2svJhZHeWg2BBUmczcYHj4qLQEXLDhkARtwIy0OEyEiI1FIC3tsRF9/fmoMS3xrcTZff34uHRQ4NmdGSjV2dCtMeWtxNl9/fjACX34Pe0JUfW-dnRkoqKyEfFWh8BEZKfH5yRUp8a3BEHCQ8JxIVNWtwMkN7YHJSD3B/
IP
54.230.245.143:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (676), with no line terminators
Size
490 B (490 bytes)
Hash
3c10dfdced2453537087c47863b70fbd
08c8b217d527e556b6fe0eee7c28b355119329e0
9be381d94e934422caba2dd0301d9ffdfcd2d27ebcaee723bc613229d1e8e077

HTTP Headers

GET /rek1OQnQZIiAkSw4kKn9NTHl9e0JcJz0tGgpwOzghPDUaBiYLeHsHDCs3HWQAAClzclIWLCAlSVwoICFJS2svJhZHeWg2BBUmczcYHj4qLQEXLDhkARtwIy0OEyEiI1FIC3tsRF9/fmoMS3xrcTZff34uHRQ4NmdGSjV2dCtMeWtxNl9/fjACX34Pe0JUfW-dnRkoqKyEfFWh8BEZKfH5yRUp8a3BEHCQ8JxIVNWtwMkN7YHJSD3B/ HTTP/1.1
Host: d2kpucccxrl97x.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://eautifuleed.xyz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-length: 490
date: Mon, 17 Oct 2022 00:10:07 GMT
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: schOK8OVzoaIRBufYRGYVtc_YSBwAPChF9klwhXt3aOSJzT6hEzP2A==
X-Firefox-Spdy: h2

harshlygiraffediscover.com/watch.63941326384.js?key=08de3ff9cc7fc5753999582f46dda2a6&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=2d44c3b7f8ec9f72f2144d8c6be3143b2c3879864624217ca5e0ea1fa75422e0735ee72691d6c5288df328fbe6881e77e3e91fa86957b305f8d54a0b5acb9e8a4d9e959b25f7afc07f682379131df717f3cb1a42&pst=1665965467&rmtc=t

192.243.61.227

200 OK

2.1 kB

URL HTTP/1.1
harshlygiraffediscover.com/watch.63941326384.js?key=08de3ff9cc7fc5753999582f46dda2a6&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=2d44c3b7f8ec9f72f2144d8c6be3143b2c3879864624217ca5e0ea1fa75422e0735ee72691d6c5288df328fbe6881e77e3e91fa86957b305f8d54a0b5acb9e8a4d9e959b25f7afc07f682379131df717f3cb1a42&pst=1665965467&rmtc=t
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2597)
Size
2.1 kB (2073 bytes)
Hash
23f47ee957ab1d3a09bfeabdfa60120e
7eedde9f2d691b713b1e38e1bdab5838eccda6f7
34580d4cc78d6a6f85b13f7b17765b2a9658c850fdfd3095d11270e9ad9cf8d8

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.63941326384.js?key=08de3ff9cc7fc5753999582f46dda2a6&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=2d44c3b7f8ec9f72f2144d8c6be3143b2c3879864624217ca5e0ea1fa75422e0735ee72691d6c5288df328fbe6881e77e3e91fa86957b305f8d54a0b5acb9e8a4d9e959b25f7afc07f682379131df717f3cb1a42&pst=1665965467&rmtc=t HTTP/1.1
Host: harshlygiraffediscover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Referer: https://www.fixbugsyt.com/
Connection: keep-alive
Cookie: u_pl=17667267; ain=eyJhbGciOiJIUzI1NiJ9.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.orn3MnZwZ1bXp5UOjIvojE8sQdMJSClFqgP5QVWRr3A
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Mon, 17 Oct 2022 00:10:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fixbugsyt.com
Access-Control-Allow-Origin: https://www.fixbugsyt.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=fcb01288-93ab-463d-ae34-96256ef688e8:3:1; expires=Mon, 24 Oct 2022 00:10:07 GMT; secure; SameSite=None
iprc562e158e33dcdff02f5d279191fcd468=3570421; expires=Mon, 17 Oct 2022 04:10:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
uncs=1; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
pdhtkv32=true; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
uncs32=1; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5b6556c777d4f003e01f08c7627f1b40
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
eaec157896b4103f8d4d6d7322b18b9d
45f4cc9bf0c5cc04ae4388682a8e058f58e30666
1b51a26aecfb438b88ca21570614048ec6232aafc94ee1049846dda6e868c400

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dcb9e10469da39b8d74fc6032aad2f71
300da9e5408662b03979bff8b8f7904709a07afe
e29382e8cc9b08134e7edd6b92c995526afb379371490bc7187382dbfa0ab7a9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E29382E8CC9B08134E7EDD6B92C995526AFB379371490BC7187382DBFA0AB7A9"
Last-Modified: Sun, 16 Oct 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1668
Expires: Mon, 17 Oct 2022 00:37:55 GMT
Date: Mon, 17 Oct 2022 00:10:07 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b7ab0f662cefdaae0bfd0c01d91a87fd
5f1ba6b8c2147ec53770d3ce6a83337134e95ff8
80237fdb32c2b0c6e674bb7ae60da8f115cb0af64b3958618a89bd28dbf8282b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
bec8662253487535e988ec1ffb1f53c6
b752af012181b7f6e14413f0482cdf9d6e18af35
2fee7612e3563cd018022c186c8d97b619888a54096a35f0d736a84b00baa18f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5360
Cache-Control: max-age=122166
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Etag: "634bc2a5-1d7"
Expires: Tue, 18 Oct 2022 10:06:13 GMT
Last-Modified: Sun, 16 Oct 2022 08:36:53 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4f05f7d85c5d7c2aa09651804f80a019
cd118fbc41657bfdf0fcfb9e3a4a2813f3b08e5b
76a6c1ae0a435403ac10b6478f029bb8b871dbdcc2a2c7e3e97b56982a9767e7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
eda252648af664cc273557bde7ac272d
b68a394326b0670c7595b3870ae217a0586220dc
da0605530410d0ceae9ab644988c182b07e8c44d7a0dd95142ef3b5e1b407b0f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
801ff1980d76b00098a7709736ad6165
c594957d11e32a9fd1224555c288270dbc03e2e3
61ca22d8fb9051d7dfa7551be88048588cebcd342cbba407f8e26ce48d3d708a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "61CA22D8FB9051D7DFA7551BE88048588CEBCD342CBBA407F8E26CE48D3D708A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17614
Expires: Mon, 17 Oct 2022 05:03:41 GMT
Date: Mon, 17 Oct 2022 00:10:07 GMT
Connection: keep-alive

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube

216.58.207.237

302 Found

397 B

URL HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (383)
Size
397 B (397 bytes)
Hash
4baa9b653cf8f49c83650f820b02cef6
462d071030ba5c2540f31fee6635c0235d33860d
f8841215551b7224808a3635fdc7f61931943516a2c00e10105ddd748e3a94b5

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&uilel=3&hl=en&service=youtube HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 17 Oct 2022 00:10:07 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S855869527%3A1665965407554999&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWptoWVE4IZxza6AmaPvm3F1jk3wm-k5o8a5zfWTIz-tfnhOc34MHgdGEtGiUg2P1zQQ0VWoTw
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-security-policy: require-trusted-types-for 'script';report-uri /cspreport, script-src 'nonce-xJOHmB03kOFkQAB3N2kVVA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 397
server: GSE
set-cookie: __Host-GAPS=1:sb6k7ZZsjWrwu9NdZbHtgv7JnlthEg:k7WvQkDpkUc12Z5L;Path=/;Expires=Wed, 16-Oct-2024 00:10:07 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

eautifuleed.xyz/utx?cb=OtSRocQASG4y&top=www.fixbugsyt.com&tid=964396

143.204.55.107

204 No Content

0 B

URL HTTP/2
eautifuleed.xyz/utx?cb=OtSRocQASG4y&top=www.fixbugsyt.com&tid=964396
IP
143.204.55.107:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /utx?cb=OtSRocQASG4y&top=www.fixbugsyt.com&tid=964396 HTTP/1.1
Host: eautifuleed.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Mon, 17 Oct 2022 00:10:07 GMT
server: openresty/1.17.8.2
access-control-allow-credentials: true
access-control-allow-origin: https://www.fixbugsyt.com
cache-control: no-store, no-cache, must-revalidate, no-transform
pragma: no-cache
p3p: CP="NID DSP ALL COR"
set-cookie: ut=x; Expires=Mon, 17 Oct 2022 00:11:07 GMT; Max-Age=60
accept-ch: DPR, Width, Viewport-Width, Device-Memory, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
x-cache: Miss from cloudfront
via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ht6lKhcnTn2JsXE7tBoZhKuCxgknxBIQEJyYH3yil3kf3RiSbtAqBA==
X-Firefox-Spdy: h2

pagead2.googlesyndication.com/pagead/js/adsbygoogle.js

142.250.74.66

200 OK

0 B

URL HTTP/2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD /pagead/js/adsbygoogle.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fixbugsyt.com/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 17 Oct 2022 00:10:07 GMT
expires: Mon, 17 Oct 2022 00:10:07 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 3859966427168951748
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 54254
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail

216.58.207.237

302 Found

393 B

URL HTTP/2
accounts.google.com/ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (380)
Size
393 B (393 bytes)
Hash
dd12b12b62ea1e1c08d7dbc11c7ffd14
845ca21979aae49ee82aaa2ae13effd28a498db0
be6843988af5a1d2547a5b68ae9d24154efe717ac1a9df70b6bf1f7876f35eb1

HTTP Headers

GET /ServiceLogin?passive=true&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&uilel=3&hl=en&service=mail HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
content-type: text/html; charset=UTF-8
x-frame-options: DENY
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 17 Oct 2022 00:10:07 GMT
location: https://accounts.google.com/v3/signin/identifier?dsh=S-788143148%3A1665965407573689&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWrP4Kll67TLke5tHkA8QjaCy3t9FgtmMhu-hdTZNpWgH3Q7foBYM1ZTAB6rufhyM-NudVq1TA
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-wpsV8XzTnuMS5oy2cW8_HA' 'unsafe-inline' 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /cspreport, require-trusted-types-for 'script';report-uri /cspreport
report-to: {"group":"coop_gse_qebhlk","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gse_qebhlk"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="coop_gse_qebhlk"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 393
server: GSE
set-cookie: __Host-GAPS=1:J1XHyOltpftw2ZQfM8gvIQTlgk43SA:8wnK0r7g4s7GwTcT;Path=/;Expires=Wed, 16-Oct-2024 00:10:07 GMT;Secure;HttpOnly;Priority=HIGH
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9f54a5e8bc9df618c759b36171c3dc59
daa13f44d63b193afc97b0f174b933aa20cb4f05
3b64fc1e4fb9f3f723929f5b66eecff56ffad04b823db4a168d363f5232314bb

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B64FC1E4FB9F3F723929F5B66EECFF56FFAD04B823DB4A168D363F5232314BB"
Last-Modified: Sat, 15 Oct 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4296
Expires: Mon, 17 Oct 2022 01:21:43 GMT
Date: Mon, 17 Oct 2022 00:10:07 GMT
Connection: keep-alive

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d837f3cb96682233e75c306cb19d4df9
556a207325324f1a4bda5c988281693dcffc1546
ae80b9a17044e32efd5f8cec06aab70ace5867043e490b22a5033d2dcaaa6923

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.fixbugsyt.com/favicon.ico

142.250.74.179

200 OK

795 B

URL HTTP/2
www.fixbugsyt.com/favicon.ico
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size
795 B (795 bytes)
Hash
5a8d4624aa4713bd66f66f4349b2fd70
d6573c44b5a5ce3f37f210d8c1327177214e2f68
c99d5ba2aea440f7041d7fccb610cf928436b6f486d6755ec167cc264d9513da

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.fixbugsyt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/2022/09/how...
Cookie: _ga_NY6VET0DB3=GS1.1.1665965409.1.0.1665965409.0.0.0; _ga=GA1.1.1299134528.1665965410; dom3ic8zudi28v8lr6fgphwffqoz0j6c=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: image/x-icon; charset=UTF-8
expires: Mon, 17 Oct 2022 00:10:07 GMT
date: Mon, 17 Oct 2022 00:10:07 GMT
cache-control: private, max-age=86400
last-modified: Sun, 16 Oct 2022 21:49:14 GMT
etag: W/"efa427aa2d8f77dd25539ac74939ed80127c9bcebb01ea38d5870d2a6d40e14b"
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 795
server: GSE
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg

45.133.44.9

200 OK

25 kB

URL HTTP/2
cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
JPEG image data, baseline, precision 8, 320x50, components 3\012- data
Size
25 kB (24714 bytes)
Hash
d465d02b90e928dfd9d9846e102a9dac
22f7333777bec813bd9a7b870913a2b79b6d2fe4
e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd

HTTP Headers

GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.17.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Wed, 19 Oct 2022 00:10:07 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp

31.13.72.36

200 OK

10 kB

URL HTTP/2
www.facebook.com/login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp
IP
31.13.72.36:0
ASN
#32934 FACEBOOK

File type
data
Size
10 kB (9985 bytes)
Hash
4880273b87ec22a862e289063b320909
9b3417f7065125e2b919e6665d79773c853a3234
d52d7590e6dc0d6696489e16ee9fc3ea1cc84f8da902490d435b98be9e9e8286

HTTP Headers

GET /login.php?next=https%3A%2F%2Fwww.facebook.com%2Ffavicon.ico%3F_rdr%3Dp HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-encoding: br
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net wss://*.facebook.com:* wss://*.fbcdn.net attachment.fbsbx.com blob: *.cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ *.fbsbx.com;font-src data: *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com data:;frame-src *.facebook.com *.fbsbx.com fbsbx.com data: *.fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
x-frame-options: DENY
x-content-type-options: nosniff
x-xss-protection: 0
cross-origin-opener-policy: same-origin-allow-popups
vary: Sec-Fetch-Site, Sec-Fetch-Mode, Accept-Encoding
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: hHw7PU3+K4DjXeejam7SmP3ngtNA4bLmGhXqxcoaIhRNo5RTWA9JlxcI0bqAfCVE5Q0ZjOD8ZK1GVuQo8U3UCQ==
date: Mon, 17 Oct 2022 00:10:07 GMT
priority: u=3,i
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

192.243.59.13

307 Temporary Redirect

0 B

URL HTTP/1.1
standardscaldexcessive.com/watch.700150925177.js?key=d51e1f162b6919d81fcf0111a978d9d0&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.700150925177.js?key=d51e1f162b6919d81fcf0111a978d9d0&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1 HTTP/1.1
Host: standardscaldexcessive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.17.6
Date: Mon, 17 Oct 2022 00:10:07 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fixbugsyt.com
Access-Control-Allow-Origin: https://www.fixbugsyt.com
Access-Control-Allow-Credentials: true
Location: https://standardscaldexcessive.com/watch.700150925177.js?key=d51e1f162b6919d81fcf0111a978d9d0&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=ede11127f4074d21c77e551ac7d3045100bbfb69ac087cff3398640c54f828c52010c8cfb3969f10a4d316413ab0010ba6bb4ca2d901f227659151e64559d45d25fa611e57d44bf2ffc0cc2d386e46d44e94234d07c52d78a66cc237db69f054a1&pst=1665965467&rmtc=t
Set-Cookie: u_pl=16517957; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.eF6AQH0ockmISsovgJSMnKz0ZhM1ZQN8ha3ixnbgI0w; expires=Mon, 17 Oct 2022 00:11:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8e5a3486bc6edcaa1146378f3101f2ac
Strict-Transport-Security: max-age=0; includeSubdomains

accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.fixbugsyt.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__

216.58.207.237

200 OK

5.9 kB

URL HTTP/2
accounts.google.com/o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.fixbugsyt.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2046)
Size
5.9 kB (5933 bytes)
Hash
4e4d1f6ef8efc6de11c22e6191532556
aed124cb82eaf3e01df4ad3323942c5a1f2074a3
52439f999345628d067fe7197843e024a912c6fd8fbdc8725f2809fbed8b5a26

HTTP Headers

GET /o/oauth2/postmessageRelay?parent=https%3A%2F%2Fwww.fixbugsyt.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.z9QjrzsHcOc.O%2Fd%3D1%2Frs%3DAHpOoo8359JQqZQ0dzCVJ5Ui3CZcERHEWA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 17 Oct 2022 00:10:07 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-nv5rekceaH8mArg6fDyKoQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
801ff1980d76b00098a7709736ad6165
c594957d11e32a9fd1224555c288270dbc03e2e3
61ca22d8fb9051d7dfa7551be88048588cebcd342cbba407f8e26ce48d3d708a

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "61CA22D8FB9051D7DFA7551BE88048588CEBCD342CBBA407F8E26CE48D3D708A"
Last-Modified: Sun, 16 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17614
Expires: Mon, 17 Oct 2022 05:03:41 GMT
Date: Mon, 17 Oct 2022 00:10:07 GMT
Connection: keep-alive

pogothere.xyz/

172.64.198.35

200 OK

500 B

URL HTTP/2
pogothere.xyz/
IP
172.64.198.35:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with no line terminators
Size
500 B (500 bytes)
Hash
381f0ff4fabb26a81b1ccc505a01127d
eb584472f9719e820d13ff0a7c9f5299aa61aaad
cfdebe7fd4f24ebcc78a42435034b3f9e962435cee1033fd0ae128fe743ce909

HTTP Headers

GET / HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fixbugsyt.com/
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: text/plain
set-cookie: csu=1854308576575741@1@1665965407; Max-Age=31104000; Secure; SameSite=None
access-control-allow-origin: https://www.fixbugsyt.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=v3Is%2FiIcHqW9U6WfgZ1N0cl2OxXtRlK8mK4wV6%2FiMyKfTY9XeVQu8at4hIe41xogPZiuVrh8c0%2Ba3PSYJLEpNBZJ4y6yABjpzhuYqWmykQWNcpUUdH0vCiVaN25ySpZH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 75b4cf355b0906d5-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js

142.250.74.99

200 OK

4.3 kB

URL HTTP/2
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2267)
Size
4.3 kB (4294 bytes)
Hash
3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282

HTTP Headers

GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 13:22:17 GMT
expires: Thu, 12 Oct 2023 13:22:17 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 07 Oct 2022 18:11:05 GMT
content-type: text/javascript
age: 384470
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

standardscaldexcessive.com/watch.700150925177.js?key=d51e1f162b6919d81fcf0111a978d9d0&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=ede11127f4074d21c77e551ac7d3045100bbfb69ac087cff3398640c54f828c52010c8cfb3969f10a4d316413ab0010ba6bb4ca2d901f227659151e64559d45d25fa611e57d44bf2ffc0cc2d386e46d44e94234d07c52d78a66cc237db69f054a1&pst=1665965467&rmtc=t

192.243.59.13

200 OK

2.0 kB

URL HTTP/1.1
standardscaldexcessive.com/watch.700150925177.js?key=d51e1f162b6919d81fcf0111a978d9d0&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=ede11127f4074d21c77e551ac7d3045100bbfb69ac087cff3398640c54f828c52010c8cfb3969f10a4d316413ab0010ba6bb4ca2d901f227659151e64559d45d25fa611e57d44bf2ffc0cc2d386e46d44e94234d07c52d78a66cc237db69f054a1&pst=1665965467&rmtc=t
IP
192.243.59.13:0
ASN
#39572 DataWeb Global Group B.V.

File type
HTML document, ASCII text, with very long lines (2457)
Size
2.0 kB (1981 bytes)
Hash
6d1a2d0405180737ec00416d2bf22c5d
412431585d233889d70a4897d43b317f77d2139c
3794b4a47ecdb2e08c1aa9f05cded54cd1b5602b9d94f64e8f7bdb626cf7cbff

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /watch.700150925177.js?key=d51e1f162b6919d81fcf0111a978d9d0&kw=%5B%22404%22%2C%22there%22%2C%22s%22%2C%22nothing%22%2C%22here%22%5D&refer=https%3A%2F%2Fwww.fixbugsyt.com%2F2022%2F09%2Fhow...&tz=0&dev=r&res=12.31&uuid=fcb01288-93ab-463d-ae34-96256ef688e8%3A3%3A1&shu=ede11127f4074d21c77e551ac7d3045100bbfb69ac087cff3398640c54f828c52010c8cfb3969f10a4d316413ab0010ba6bb4ca2d901f227659151e64559d45d25fa611e57d44bf2ffc0cc2d386e46d44e94234d07c52d78a66cc237db69f054a1&pst=1665965467&rmtc=t HTTP/1.1
Host: standardscaldexcessive.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.fixbugsyt.com
Referer: https://www.fixbugsyt.com/
Connection: keep-alive
Cookie: u_pl=16517957; ain=eyJhbGciOiJIUzI1NiJ9.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.eF6AQH0ockmISsovgJSMnKz0ZhM1ZQN8ha3ixnbgI0w
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Mon, 17 Oct 2022 00:10:07 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.fixbugsyt.com
Access-Control-Allow-Origin: https://www.fixbugsyt.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=fcb01288-93ab-463d-ae34-96256ef688e8:3:1; expires=Mon, 24 Oct 2022 00:10:07 GMT; secure; SameSite=None
pdhtkv=true; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
uncs=1; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
pdhtkv23=true; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
uncs23=1; expires=Tue, 18 Oct 2022 00:10:07 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 5592fa2364def267bff7dff252ee72d8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
78b7645f1c755a897caba5a6e41f40be
3aae69c7b4828bbcf4ab3149e2c95445e582c616
ae99de957282172b4585bba3f8d09a3f6e774a1bbf270031b99f31a1b07c219a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 17 Oct 2022 00:10:07 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/border_3.gif

142.250.74.99

200 OK

43 B

URL HTTP/2
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/border_3.gif
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
f6815f3311f2ad7bacb9c9156b5151bb
4042dfd5b2a00af6857acf15e63dc0672592e7d6
c8de81a1acb5f3788959ecc04eaa6526d5bdb29991157cecbef71042268c0374

HTTP Headers

GET /s2/oz/images/stars/po/bubblev1/border_3.gif HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 13 Oct 2022 06:41:06 GMT
expires: Fri, 13 Oct 2023 06:41:06 GMT
cache-control: public, max-age=31536000
age: 322141
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/spacer.gif

142.250.74.99

200 OK

43 B

URL HTTP/2
ssl.gstatic.com/s2/oz/images/stars/po/bubblev1/spacer.gif
IP
142.250.74.99:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
d44ebb7184c776b663f036174faa361a
53a278eedce146c3a979d190af4affaec3d7cfeb
ed1b73c6b4690cde9b521865b58e031293209bc0b2ba2b5716ecf4bf9885ee4b

HTTP Headers

GET /s2/oz/images/stars/po/bubblev1/spacer.gif HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 15 Oct 2022 01:26:35 GMT
expires: Sun, 15 Oct 2023 01:26:35 GMT
cache-control: public, max-age=31536000
age: 168212
last-modified: Thu, 03 Oct 2019 10:15:00 GMT
content-type: image/gif
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/a/AVvXsEhKu_LGUg8Pyla7aWsixCqRTzk_11HPzxpRe_5kakLKHlw0exxue1VZLvPxo84uxjtxxemu_oXRpxcxKT8fb4xF2Hbqx9VMPDQwfyoyCp9uufw5T4m3zmbQzzLzGvOVVWJFtZeu8ubDvZW8izB4iMbJroWjRTH9UKXd7jbiZj9ZMVXfTLR2Ww8NXShj=w300

142.250.74.33

200 OK

58 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEhKu_LGUg8Pyla7aWsixCqRTzk_11HPzxpRe_5kakLKHlw0exxue1VZLvPxo84uxjtxxemu_oXRpxcxKT8fb4xF2Hbqx9VMPDQwfyoyCp9uufw5T4m3zmbQzzLzGvOVVWJFtZeu8ubDvZW8izB4iMbJroWjRTH9UKXd7jbiZj9ZMVXfTLR2Ww8NXShj=w300
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type
PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Size
58 kB (58174 bytes)
Hash
91d7ec74b27299d07e62f218ff70abf6
092e16eb39d8972032ebafb3a93084c0ade208c6
c5a4a05760b3e26b734afea717c31608cdcd8837fe860dacaa4248fb8e477be6

HTTP Headers

GET /img/a/AVvXsEhKu_LGUg8Pyla7aWsixCqRTzk_11HPzxpRe_5kakLKHlw0exxue1VZLvPxo84uxjtxxemu_oXRpxcxKT8fb4xF2Hbqx9VMPDQwfyoyCp9uufw5T4m3zmbQzzLzGvOVVWJFtZeu8ubDvZW8izB4iMbJroWjRTH9UKXd7jbiZj9ZMVXfTLR2Ww8NXShj=w300 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1ad"
expires: Tue, 18 Oct 2022 00:10:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="wf3tw.png"
content-type: image/png
vary: Origin
x-content-type-options: nosniff
date: Mon, 17 Oct 2022 00:10:07 GMT
server: fife
content-length: 58174
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

blogger.googleusercontent.com/img/a/AVvXsEgWsbxg-vyEEpVZtCY0g-McrXg_qnaUoICygcAWT7pLj2bKuHXcpKSOpplP-ymfc7P8gj6EK0xAxUIOP6sD0Lzqqe5P2OzEUKkOvx6Y79-GKBdSTu9SDdFvKZ-QGeGFf2eFGtXrcH-v215vwwMf3wLYgMWNAc06DIbSigmWXaMLCpai5MWeruPm3vJv=s1280

142.250.74.33

200 OK

13 kB

URL HTTP/2
blogger.googleusercontent.com/img/a/AVvXsEgWsbxg-vyEEpVZtCY0g-McrXg_qnaUoICygcAWT7pLj2bKuHXcpKSOpplP-ymfc7P8gj6EK0xAxUIOP6sD0Lzqqe5P2OzEUKkOvx6Y79-GKBdSTu9SDdFvKZ-QGeGFf2eFGtXrcH-v215vwwMf3wLYgMWNAc06DIbSigmWXaMLCpai5MWeruPm3vJv=s1280
IP
142.250.74.33:0
ASN
#15169 GOOGLE

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=4, orientation=upper-left, software=Google], progressive, precision 8, 1280x720, components 3\012- data
Size
13 kB (13435 bytes)
Hash
d6abb81cc54e1833a98c6b80aeaab75e
c43fa927cff609e57b0250649c066eaf8d8bc3e7
fe46dc72bc35160e15e4f6f69cb3ec0d64b90813d42fbb4600dd98b4734cfaad

HTTP Headers

GET /img/a/AVvXsEgWsbxg-vyEEpVZtCY0g-McrXg_qnaUoICygcAWT7pLj2bKuHXcpKSOpplP-ymfc7P8gj6EK0xAxUIOP6sD0Lzqqe5P2OzEUKkOvx6Y79-GKBdSTu9SDdFvKZ-QGeGFf2eFGtXrcH-v215vwwMf3wLYgMWNAc06DIbSigmWXaMLCpai5MWeruPm3vJv=s1280 HTTP/1.1
Host: blogger.googleusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-expose-headers: Content-Length
etag: "v1af"
expires: Tue, 18 Oct 2022 00:10:07 GMT
cache-control: public, max-age=86400, no-transform
content-disposition: inline;filename="Untitled-1.jpg"
content-type: image/jpeg
vary: Origin
x-content-type-options: nosniff
date: Mon, 17 Oct 2022 00:10:07 GMT
server: fife
content-length: 13435
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/5f/2d/90/5f2d90744c65797e2697e55f898335d3/1663165384.gif

45.133.44.9

200 OK

20 kB

URL HTTP/2
cdn.cloudimagesb.com/cti/5f/2d/90/5f2d90744c65797e2697e55f898335d3/1663165384.gif
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
GIF image data, version 89a, 728 x 90\012- data
Size
20 kB (20481 bytes)
Hash
20a0a2db50493e0d773e21d778d11de5
fb4640a30e60601b21754ce7eeb60212079895d9
3b9348da68718ab7b3035eb9ed5395667467a3b01a29fed2fd53fafa5f5c4856

HTTP Headers

GET /cti/5f/2d/90/5f2d90744c65797e2697e55f898335d3/1663165384.gif HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:08 GMT
content-type: image/gif
content-length: 20481
server: nginx/1.17.6
last-modified: Wed, 14 Sep 2022 14:23:12 GMT
etag: "6321e3d0-5001"
expires: Wed, 19 Oct 2022 00:10:08 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/Arlina-Design/quasar@master/arlinablock.js

151.101.85.229

200 OK

62 kB

URL HTTP/2
cdn.jsdelivr.net/gh/Arlina-Design/quasar@master/arlinablock.js
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (65536), with no line terminators
Size
62 kB (61721 bytes)
Hash
e3bb3aeea207298d7922231bf702e69f
4cabbf62332899a21732ee1d11bbf3cabd895f5a
79bf30cc0e6102a8a59ffe8beddfecebe6675bff1c59f77cb8ca9031024c822b

HTTP Headers

GET /gh/Arlina-Design/quasar@master/arlinablock.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: master
x-jsd-version-type: branch
etag: W/"162b7-J7GuEbwR9hTtBO1SIcoyA3ddHw8"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 17 Oct 2022 00:10:08 GMT
age: 33789
x-served-by: cache-fra19144-FRA, cache-bma1624-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 61721
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
d7e96fcef2fa5da57cb9fedc6d8f01a4
6137cb50d59624c5d4eb0d99e5cc72911bd69a0d
a3beb50443e2612f460d581fe48c3914d1ccf0e01d4696baa726e88f9832a4ba

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 17 Oct 2022 00:10:08 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "F62F638D4073F001AE5B40DFFE011751931B65C4"
Expires: Mon, 17 Oct 2022 11:00:00 GMT
Last-Modified: Sun, 16 Oct 2022 23:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 2946
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 75b4cf38ab19b50f-OSL

googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html

142.250.74.162

200 OK

4.4 kB

URL HTTP/2
googleads.g.doubleclick.net/pagead/html/r20221012/r20190131/zrt_lookup.html
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1731)
Size
4.4 kB (4420 bytes)
Hash
682bf699cccbc0ff817e1fcb7b95262a
11ad3edf0008f52b733c2d6d7199e1f052318d58
bd42f773d589f85cf6884d7893746d5d4e0c082f78e1c80511cf3aefa1c69a0f

HTTP Headers

GET /pagead/html/r20221012/r20190131/zrt_lookup.html HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.fixbugsyt.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
x-content-type-options: nosniff
content-encoding: gzip
server: cafe
content-length: 4420
x-xss-protection: 0
date: Sun, 16 Oct 2022 07:55:51 GMT
expires: Sun, 30 Oct 2022 07:55:51 GMT
cache-control: public, max-age=1209600
age: 58457
etag: 9671129459699598864
content-type: text/html; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?dsh=S-788143148%3A1665965407573689&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWrP4Kll67TLke5tHkA8QjaCy3t9FgtmMhu-hdTZNpWgH3Q7foBYM1ZTAB6rufhyM-NudVq1TA

216.58.207.237

403 Forbidden

0 B

URL HTTP/2
accounts.google.com/v3/signin/identifier?dsh=S-788143148%3A1665965407573689&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWrP4Kll67TLke5tHkA8QjaCy3t9FgtmMhu-hdTZNpWgH3Q7foBYM1ZTAB6rufhyM-NudVq1TA
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v3/signin/identifier?dsh=S-788143148%3A1665965407573689&continue=https%3A%2F%2Fwww.google.com%2Ffavicon.ico&hl=en&passive=true&service=mail&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWrP4Kll67TLke5tHkA8QjaCy3t9FgtmMhu-hdTZNpWgH3Q7foBYM1ZTAB6rufhyM-NudVq1TA HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fixbugsyt.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 17 Oct 2022 00:10:07 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: script-src 'nonce-OKnquVSR_U0w5ENnuXTh9A' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist, require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport
cross-origin-opener-policy-report-only: same-origin
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pogothere.xyz/asd100.bin

172.64.198.35

200 OK

0 B

URL HTTP/2
pogothere.xyz/asd100.bin
IP
172.64.198.35:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /asd100.bin HTTP/1.1
Host: pogothere.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fixbugsyt.com/
Origin: https://www.fixbugsyt.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Mon, 17 Oct 2022 00:10:07 GMT
content-type: binary/octet-stream
access-control-allow-origin: https://www.fixbugsyt.com
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-headers: X-Requested-With, content-type
cache-control: max-age=14400
cf-cache-status: EXPIRED
last-modified: Sun, 16 Oct 2022 15:51:57 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B5W1RO5CTp4jzcXzMAOEgMI0kKIUwO6nP%2FOtNVlT%2F98Kb%2FTa2HWHUyDLyvRCGhFu3TODecNyRNbp8oadGnLIIvsg5S%2FZIxuqB5%2Bgt85zIiNuF4plOTnQkSKFG%2B5s4ACW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 75b4cf356b1006d5-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.fixbugsyt.com/2022/09/how...

142.250.74.179

404 Not Found

0 B

URL HTTP/2
www.fixbugsyt.com/2022/09/how...
IP
142.250.74.179:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /2022/09/how... HTTP/1.1
Host: www.fixbugsyt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 404 Not Found
content-type: text/html; charset=UTF-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 17 Oct 2022 00:10:05 GMT
content-encoding: gzip
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 120895
server: GSE
X-Firefox-Spdy: h2

accounts.google.com/v3/signin/identifier?dsh=S855869527%3A1665965407554999&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWptoWVE4IZxza6AmaPvm3F1jk3wm-k5o8a5zfWTIz-tfnhOc34MHgdGEtGiUg2P1zQQ0VWoTw

216.58.207.237

403 Forbidden

0 B

URL HTTP/2
accounts.google.com/v3/signin/identifier?dsh=S855869527%3A1665965407554999&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWptoWVE4IZxza6AmaPvm3F1jk3wm-k5o8a5zfWTIz-tfnhOc34MHgdGEtGiUg2P1zQQ0VWoTw
IP
216.58.207.237:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v3/signin/identifier?dsh=S855869527%3A1665965407554999&continue=https%3A%2F%2Fwww.youtube.com%2Ffavicon.ico&hl=en&passive=true&service=youtube&uilel=3&flowName=GlifWebSignIn&flowEntry=ServiceLogin&ifkv=AQDHYWptoWVE4IZxza6AmaPvm3F1jk3wm-k5o8a5zfWTIz-tfnhOc34MHgdGEtGiUg2P1zQQ0VWoTw HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.fixbugsyt.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 403 Forbidden
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 17 Oct 2022 00:10:07 GMT
vary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site
strict-transport-security: max-age=31536000; includeSubDomains
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-security-policy: require-trusted-types-for 'script';report-uri /v3/signin/_/AccountsSignInUi/cspreport, script-src 'nonce-xVSBOj1L1_WL5FX_uM-gZw' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /v3/signin/_/AccountsSignInUi/cspreport;worker-src 'self', script-src 'unsafe-inline' 'self' https://apis.google.com https://ssl.gstatic.com https://www.google.com https://www.gstatic.com https://www.google-analytics.com;report-uri /v3/signin/_/AccountsSignInUi/cspreport/allowlist
cross-origin-opener-policy-report-only: same-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (41)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations