r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6170
Expires: Tue, 31 Jan 2023 20:39:39 GMT
Date: Tue, 31 Jan 2023 18:56:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7809
Expires: Tue, 31 Jan 2023 21:06:58 GMT
Date: Tue, 31 Jan 2023 18:56:49 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 31 Jan 2023 18:43:18 GMT
content-type: application/json
age: 811
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash a8d45deaa7ebfcd996c2055dae592ab8
55befe074589fe7b39757c145968058162a8fc6b
50d7d516f446458145a304b288a0a39d391cd37ea50dabea36ae48d291c65ba7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "50D7D516F446458145A304B288A0A39D391CD37EA50DABEA36AE48D291C65BA7"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2186
Expires: Tue, 31 Jan 2023 19:33:15 GMT
Date: Tue, 31 Jan 2023 18:56:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: a3qK4rFugMS8K4h5KebIhB26up/owjMxBySdoAxM4jqXVUnyC0YbA5DtuMvfIjHwNkRqDeBYmVPUMiQK5UcZkw==
x-amz-request-id: J85EMPRYJKXZPJYV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 31 Jan 2023 18:51:16 GMT
age: 333
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
www.thetrent24.com/UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874
134.195.91.169302 Found 0 B URL HTTP/1.1 www.thetrent24.com/UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874
IP 134.195.91.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874 HTTP/1.1
Host: www.thetrent24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 18:56:49 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Server: Apache
Location: https://www.thetrent24.com/UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 31 Jan 2023 18:56:49 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Content-Type, ETag, Last-Modified, Alert, Retry-After, Content-Length, Cache-Control, Pragma, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 31 Jan 2023 18:41:42 GMT
age: 907
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash bcf1e0655f5d318ec45bf6dbcc950ca2
618d01fca2e3615fec11807f72f61485e4118c86
6a918d38bc2626b5a4c651b2e5d0299fc1be800a56c7bd3dafaa9532da2dc662
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A918D38BC2626B5A4C651B2E5D0299FC1BE800A56C7BD3DAFAA9532DA2DC662"
Last-Modified: Mon, 30 Jan 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Wed, 01 Feb 2023 00:56:49 GMT
Date: Tue, 31 Jan 2023 18:56:49 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6427
Expires: Tue, 31 Jan 2023 20:43:56 GMT
Date: Tue, 31 Jan 2023 18:56:49 GMT
Connection: keep-alive
push.services.mozilla.com/
34.208.13.28101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.208.13.28:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NgdD0NJ+0Q1H+JlR25EbMg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: EhDF7PuLZidqSwaz6xL5uHggcvQ=
www.thetrent24.com/UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874
134.195.91.169302 Found 0 B URL HTTP/1.1 www.thetrent24.com/UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874
IP 134.195.91.169:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /UW-P0WD-6qSDn8iGfDPy46WqAYeAeaEgFtZDfDYm5AOcSRLjlFioh1zjScfiVJSL8ma5jqDHKkddSAaeeyNJ0g~~/705417/ca44e83a665947aebbbdd75481a9b664/425_150166_97548_874 HTTP/1.1
Host: www.thetrent24.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
Date: Tue, 31 Jan 2023 18:56:50 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Server: Apache
Set-Cookie: uid305=769474994-20230131105650-ff39d2c40ebc7cbc85a85b5a895d7455-; domain=thetrent24.com; path=/; SameSite=None; Secure
Location: https://trrcksrvey4849.com/0670c0d1e61bdb25/4c8b14e209116d25/?brand=brand&t202kw=305&clickid=769474994&pubid=700010&isplit=c3&wsplit=c4&i=ccf0de8a51&c5&c5=c5&c6=c6&c7=c7&subindex=subindex&rg=403&t=s
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 18f6c58748bb072b61f680ee9ec86ada
eee2b11f5b997a6affeed50eeb3ddafc2f6c83de
759b02f9648e92f01943809171c91561c857097409a40788de2234ec9fd12168
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "759B02F9648E92F01943809171C91561C857097409A40788DE2234EC9FD12168"
Last-Modified: Mon, 30 Jan 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15248
Expires: Tue, 31 Jan 2023 23:10:58 GMT
Date: Tue, 31 Jan 2023 18:56:50 GMT
Connection: keep-alive
trrcksrvey4849.com/0670c0d1e61bdb25/4c8b14e209116d25/?brand=brand&t202kw=305&clickid=769474994&pubid=700010&isplit=c3&wsplit=c4&i=ccf0de8a51&c5&c5=c5&c6=c6&c7=c7&subindex=subindex&rg=403&t=s
47.87.191.136302 Found 0 B URL HTTP/1.1 trrcksrvey4849.com/0670c0d1e61bdb25/4c8b14e209116d25/?brand=brand&t202kw=305&clickid=769474994&pubid=700010&isplit=c3&wsplit=c4&i=ccf0de8a51&c5&c5=c5&c6=c6&c7=c7&subindex=subindex&rg=403&t=s
IP 47.87.191.136:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /0670c0d1e61bdb25/4c8b14e209116d25/?brand=brand&t202kw=305&clickid=769474994&pubid=700010&isplit=c3&wsplit=c4&i=ccf0de8a51&c5&c5=c5&c6=c6&c7=c7&subindex=subindex&rg=403&t=s HTTP/1.1
Host: trrcksrvey4849.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 302 Found
access-control-allow-origin: *
location: https://directnewshome.com/?20276e2a702621b7a4a885c62c6688ca
content-type: text/html; charset=UTF-8
content-length: 0
date: Tue, 31 Jan 2023 18:56:50 GMT
server: lighttpd/1.4.35
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19312
Expires: Wed, 01 Feb 2023 00:18:43 GMT
Date: Tue, 31 Jan 2023 18:56:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19312
Expires: Wed, 01 Feb 2023 00:18:43 GMT
Date: Tue, 31 Jan 2023 18:56:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19312
Expires: Wed, 01 Feb 2023 00:18:43 GMT
Date: Tue, 31 Jan 2023 18:56:51 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19312
Expires: Wed, 01 Feb 2023 00:18:43 GMT
Date: Tue, 31 Jan 2023 18:56:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2c4934be94898028e2ab696561b51462
6cf734e2d29938688913daacfb75506d8e004a94
239adcbb538b7a6d1483c65c7694d4a9f9fa9cadf456ab5681c4b764185e3596
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F003f28f8-6845-4b0d-8d8d-11c9deea4eaf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9987
x-amzn-requestid: 67109f87-6073-4991-b540-cdeedc2d7b3c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flYlPF9uIAMFXMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86e21-60ac2c7b37c72e6e54a5c69d;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:25:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hDjKAMYoVwHdCqS8t08PrWyfQQLiWaosXbi3FOJY8BeV0yAFCGziGw==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:58:16 GMT
age: 61115
etag: "6cf734e2d29938688913daacfb75506d8e004a94"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d957012d3e2b8c3bc0eefe11d66e8554
1959fdd94846fa3791c4890578dd15336b909dcc
a97e81ec5eb2eda6a603bf4bfd4fa4ef4fab762747479489e99e6c713258a736
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1295ec36-f5b2-4db1-83c7-667fa373f592.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13853
x-amzn-requestid: ca6ea6e7-3e13-4194-87f5-20a07b813e21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zzF4hIAMFwWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-772487cb1b7495c52c552d36;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: T5CaUojMEG8x8vki59UdIhI8IbbBRY_7w3xgiW3RCZlHTyeHPLIy2Q==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:47:13 GMT
age: 76178
etag: "1959fdd94846fa3791c4890578dd15336b909dcc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e6f9ffb8f9e99229b45ca5fdb84ce7d5
04577ad69ee9749b14382254eb5bbf0e1edcd7fa
6111acf3f363123b39d13cd3d23ab39b8c8d00379874f19231d1cd3da17c52c2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37e3fb86-3315-41fd-97cb-ac82604d8869.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8558
x-amzn-requestid: 2841cd36-22e6-4ecb-b56a-bfadce3197c7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffB_BFA8IAMFyvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e393-3fd03bd14de762b0738a3b0a;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:10:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZP2Mar8l3QoPH733_vv3hUuQjWvaN4_TgfYwme2-6WIxGi55BoSchg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 04:26:31 GMT
age: 52220
etag: "04577ad69ee9749b14382254eb5bbf0e1edcd7fa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2797bfd35b7ec24888de84be14f7f2ec
8e315ac5856967286eaa8769e081d827fb4ca39e
b99f3bd73eb4395194bc7bb6a1b801750182239e5b70f3207f99e494b60b72ab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67cbd807-4e92-4ddb-a8c5-864884d25e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11129
x-amzn-requestid: 74f2a4dd-7d5d-4839-90a8-d2e74f6d785d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffDBZGRPoAMFedg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e53b-3de444596550bb41188ada5b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:17:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9Fga247EZZqiGmdMJ72resdBZR2KLgflGDBPESmuw9cFVs4hSzMzTw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 03:40:17 GMT
age: 54994
etag: "8e315ac5856967286eaa8769e081d827fb4ca39e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 976dda397f9292a498ca9db5599c0378
dad9e9c3462907a2475046aee36d57f8309cd44e
7ed9ccf2ff75ca53f5ba56a1d2127e0f09b0ae941cad8b042e8df01ad01e614b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F43ae4cd9-2533-48ae-8086-f8fea8a4e269.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6844
x-amzn-requestid: 0542cf46-5045-459f-a35f-f6c0d3f5f7b7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: flZsxH0YIAMF9ew=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d86feb-692d50f710a131df2ee49aa8;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 01:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 6bbFjAsd03GN8zzBnAFBm7xA8igZ_xHJsOHzw7nwNgRxiWUDLPGjpQ==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 01:53:29 GMT
age: 61402
etag: "dad9e9c3462907a2475046aee36d57f8309cd44e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5190c0bdc6abe0ee258e9f8c20ddaf51
d60f280f8a742480527dbc32d08f321f972d4fcf
874b38a04aa3736e65aaef72da2cc2efceb208618267107a495bdfe51ec58e58
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55e9b24d-3c7c-46d8-89b7-084483cc3d1d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12507
x-amzn-requestid: 85c9adcd-b997-48ca-bbfb-ccdeaf3e8cfb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFaJoAMFqKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-2bcdd8c353d8429d2b1e95f6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UDJKl99GiUxTW_EgWFDjLaJZbKFhfaJR-XRLsbQphwHuCXczDlxrDA==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:55:07 GMT
age: 75704
etag: "d60f280f8a742480527dbc32d08f321f972d4fcf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c982558f84f6f302ba8998a6258fedab
a07e1a66555d7eb0a3979af7edd0bb90f50f3bb0
49c66e75d753f612bf10f59c3fa222b6473881f35334a063b558410c1c03f218
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49C66E75D753F612BF10F59C3FA222B6473881F35334A063B558410C1C03F218"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21552
Expires: Wed, 01 Feb 2023 00:56:03 GMT
Date: Tue, 31 Jan 2023 18:56:51 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 363936321a9f08665a6afc9fdafbe442
bf305cdf4315648572bcd015a12a8768570b23ca
b273c986b58d473155841e29084a1cbd2693b45f51fe92a91345f7daeb4fb812
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1809
Cache-Control: max-age=116539
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:56:52 GMT
Etag: "63d8819e-118"
Expires: Thu, 02 Feb 2023 03:19:11 GMT
Last-Modified: Tue, 31 Jan 2023 02:49:02 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 363936321a9f08665a6afc9fdafbe442
bf305cdf4315648572bcd015a12a8768570b23ca
b273c986b58d473155841e29084a1cbd2693b45f51fe92a91345f7daeb4fb812
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3977
Cache-Control: max-age=118707
Content-Type: application/ocsp-response
Date: Tue, 31 Jan 2023 18:56:52 GMT
Etag: "63d8819e-118"
Expires: Thu, 02 Feb 2023 03:55:19 GMT
Last-Modified: Tue, 31 Jan 2023 02:49:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
188.114.98.234200 OK 20 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP 188.114.98.234:0
File type ASCII text, with very long lines (65371)
Hash 645214017cb2c9db6f0596e77c01793b
f1a9a4006cb41ec5450c5f911e44144771a03909
c29ba2a0367aa3bdb56b1cbc7382ec68dc52bb095f698ea0971da4f39df8edd4
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://directnewshome.com
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 18:56:52 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 01/05/2023 13:19:14
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1082
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: be0bfe6857bb6dd81c2eea2ae575308c
cdn-cache: HIT
cf-cache-status: HIT
age: 82380
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7924ab75eb64b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash e39c1896dc9afcf4f5741ce880fccf65
92d7c1d9d87dd5fbbd2898921136ab22da37921c
30dba89a6ed28cc54e87621635a6dc8cdba3258ef78066e0d620739a2114c5b9
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=114918
Date: Tue, 31 Jan 2023 18:56:52 GMT
Etag: "63d8739b-1d7"
Expires: Thu, 02 Feb 2023 02:52:10 GMT
Last-Modified: Tue, 31 Jan 2023 01:49:15 GMT
Server: ECS (nyb/1D0B)
X-Cache: Miss from cloudfront
Via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 0OPpU82wCETYtw6wCI3HURF4DEEtpSvB0ZjsIiWESiD5RDS_LJOpnQ==
Age: 3775
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/styles/53/index_files/css
52.219.193.160200 OK 4.1 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/styles/53/index_files/css
IP 52.219.193.160:0
Hash a6f8e7f234012bff2893883b17259744
e2ef6b7cc88bedecdcf8ecc4cf29e3772fa3ed03
865d802e7d61c67356cc74aba13aa5db46011c98bf28e0350aba8d3e981eb612
GET /jc-content-v2-us-west/styles/53/index_files/css HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: M0JmJYgQ/xQeREnNs4mWdCnjObtnN+O2mmhnFRUn1ivh8sOrh+AzBkS+HHA2oR8Mlgz9dT6baes=
x-amz-request-id: X1MBDG65C0XNH9F1
Date: Tue, 31 Jan 2023 18:56:53 GMT
Last-Modified: Wed, 14 Apr 2021 18:22:26 GMT
ETag: "a6f8e7f234012bff2893883b17259744"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Content-Length: 4097
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/00ada2fdc96a9b0b4d472b554762f25c.png
52.219.193.160200 OK 8.7 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/00ada2fdc96a9b0b4d472b554762f25c.png
IP 52.219.193.160:0
File type PNG image data, 144 x 152, 8-bit colormap, non-interlaced\012- data
Hash 3ac9e34b5aac54e06da5865f85ff1e1c
38464d60c39e0a07216cff3d7a46042dc59fab7d
a7d62b2f53e3a7af9105c94374ea2777f0792569317915d900c85dba7ab3126f
GET /jc-content-v2-us-west/image_center/00ada2fdc96a9b0b4d472b554762f25c.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: UJUrFVOdbTeJstqn71iVW4+nAL5AYFT8imAR08t/tNvLYJYGOrTxlCNKY0N1S6LG5FtaALZTgBE=
x-amz-request-id: X1MB3R42SEQTSSRD
Date: Tue, 31 Jan 2023 18:56:53 GMT
Last-Modified: Fri, 16 Apr 2021 00:01:44 GMT
ETag: "3ac9e34b5aac54e06da5865f85ff1e1c"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8738
code.jquery.com/jquery-1.11.2.min.js
69.16.175.42200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.11.2.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32047)
Hash b63c8cb1c4a495ed04e735d25beabd78
0ae68f1c55c227331286ad94403122a5ab4526e1
26ea04aa9c41767051276b819a4aa8c6aa337df4da89872d021862312d478d39
GET /jquery-1.11.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://directnewshome.com
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 18:56:52 GMT
content-encoding: gzip
content-length: 33262
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-176bb"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1675191412.dop069.sk1.t,1675191412.cds232.sk1.hn,1675191412.cds264.sk1.c
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/bootstrap@3.3.6/dist/js/bootstrap.min.js
151.101.193.229200 OK 9.8 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@3.3.6/dist/js/bootstrap.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (32003)
Hash 28f16d197f5c7af087e83e505bc10a9a
e8489674857ee65b883d0745f4a5a5e4aca29533
582695630057248ba7b138ec4fc60043555e5b5e22ed2556c8046abee27016b3
GET /npm/bootstrap@3.3.6/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://directnewshome.com
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 3.3.6
x-jsd-version-type: version
etag: W/"9004-eRqgVKAmvdwN6SutbPehxuc3E9U"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 31 Jan 2023 18:56:52 GMT
age: 1177893
x-served-by: cache-fra-eddf8230054-FRA, cache-bma1661-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 9764
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.21.226:0
Hash cef5230cb4e6b9b162bbee336973402b
c4d566dd2fa0e985bcf63e0d4969ebe877bedeba
873755e56cfde2e16ce87fbb7978ec1e56a61bfe6a89cba98abb3dab04c25db1
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 31 Jan 2023 18:56:53 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "B01F276345F5AB64AF77AF5A2C63855368CC617F"
Expires: Wed, 01 Feb 2023 06:00:00 GMT
Last-Modified: Tue, 31 Jan 2023 18:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 226
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7924ab7b9b6dfab4-OSL
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/bafc28db5a4de1a519be57bf3acaa87a.jpg
52.219.193.160200 OK 5.5 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/bafc28db5a4de1a519be57bf3acaa87a.jpg
IP 52.219.193.160:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=3, xresolution=50, yresolution=58, resolutionunit=2], progressive, precision 8, 250x143, components 3\012- data
Hash 96936c784c8a5784a548daa687f55649
e78f50c8f9d1dd1fd5b78c741e42a1a588edaf21
ffb674326387a4c2f94aced118c879931b3766b73e49d416878cb6e4164a764b
GET /jc-content-v2-us-west/image_center/bafc28db5a4de1a519be57bf3acaa87a.jpg HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 6gxIpJXlwchMeF6+RotwRWHUnvyebJQSz5fKR07WPP/o9basRZjNlCC6MlTsomTbi11wrSGJLVw=
x-amz-request-id: C3TG87ZJ5277V86H
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sat, 16 Jul 2022 08:23:28 GMT
ETag: "96936c784c8a5784a548daa687f55649"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 5485
directnewshome.com/?20276e2a702621b7a4a885c62c6688ca
47.87.191.136200 OK 106 kB URL HTTP/1.1 directnewshome.com/?20276e2a702621b7a4a885c62c6688ca
IP 47.87.191.136:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (627)
Size 106 kB (105455 bytes)
Hash 8035373a34697aa31881ead6f4f7203d
4060c1404b6d943a22c66cb5d389d72cb7b6e162
e7388fbcb1c99cad7df2fffeac890822c8a231579a33dcac64e14be821849019
Analyzer Verdict Alert fortinet Phishing
GET /?20276e2a702621b7a4a885c62c6688ca HTTP/1.1
Host: directnewshome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
access-control-allow-origin: *
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
date: Tue, 31 Jan 2023 18:56:51 GMT
server: lighttpd/1.4.35
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/14a84bdc2a9f71d5b5a33606e929733c.png
52.219.193.160200 OK 8.8 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/14a84bdc2a9f71d5b5a33606e929733c.png
IP 52.219.193.160:0
File type PNG image data, 250 x 200, 8-bit colormap, non-interlaced\012- data
Hash 738f6ebb5b7da8d24ec4c2ccbd94b751
ccacb72a3725461469bab809035d3814ca7a28ca
05e38adced39c53a4f4b6ddf10f3cea3698d70cf2125b60b75e05b366fdbcf14
GET /jc-content-v2-us-west/image_center/14a84bdc2a9f71d5b5a33606e929733c.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: A18ZtNMvOBcCNBhC7eB6tV0MSX59SFHQRyuO/GE1Xx96y+8093WWX5rIeuc4WCjtcxpa0XjtAXg=
x-amz-request-id: C3THMJZT2J9H5H7D
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Fri, 02 Sep 2022 15:41:56 GMT
ETag: "738f6ebb5b7da8d24ec4c2ccbd94b751"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 8842
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/46ee1334098bd71e3ff77449284405d6.jpg
52.219.193.160200 OK 25 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/46ee1334098bd71e3ff77449284405d6.jpg
IP 52.219.193.160:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x244, components 3\012- data
Hash 0e53628139e00ab7e84c4371aa41e7f7
e3840884637d2fffbdd1460b84287a8b50e7ba2f
548722d7936e3213182058355508f840ec45112c7a4f4dad02ec5012117c87b9
GET /jc-content-v2-us-west/image_center/46ee1334098bd71e3ff77449284405d6.jpg HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Kt1DHOygXpRNyOxoJPj5AxFlwEh04gwAapp+tC0gdsIiKSsadZT6IcbGGY1/ODqWNv5EmE8Ic0o=
x-amz-request-id: C3TJT6P4KDMPVZ5T
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sun, 20 Mar 2022 03:05:22 GMT
ETag: "0e53628139e00ab7e84c4371aa41e7f7"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 25167
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/styles/53/index_files/4-5.png
52.219.193.160200 OK 2.3 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/styles/53/index_files/4-5.png
IP 52.219.193.160:0
File type PNG image data, 71 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 2538f34de0397a1638913f1427059f17
04516a27c40f126fe2a4f92e969d77c900a913ab
c05c396e05422383b42a0f95dba45b5844101118a0c7aa6402c255c4d80b1224
GET /jc-content-v2-us-west/styles/53/index_files/4-5.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Rsi2RiVA1lnU3PWWYFmR/xz69+yp7rl3XOXcPDXiZk8OI1+DT4VUr0sTTvXKEkaieEWKAohcIrw=
x-amz-request-id: C3TY7ECFVVT3ANX0
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Wed, 14 Apr 2021 18:22:18 GMT
ETag: "2538f34de0397a1638913f1427059f17"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 2306
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/e2deef6425cea1659197a0ea80a29859.png
52.219.193.160200 OK 16 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/e2deef6425cea1659197a0ea80a29859.png
IP 52.219.193.160:0
File type PNG image data, 250 x 200, 8-bit colormap, non-interlaced\012- data
Hash baa50a8975a2d9e63b2c4b41b5c72f30
4d0792e724782f4b47d961c2a6211ecdc7abbf0c
6a3ac37ed7a5e4c326594c4b0eb247781a25029732a86f8498d082793ed8aedb
GET /jc-content-v2-us-west/image_center/e2deef6425cea1659197a0ea80a29859.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 0mUtMU9fG4xxrl6XUiu6ANUVXm+jkq71MropTgKQsYeo+2kSDbAC/SXDYAVoXQGy753cDOl8KK0=
x-amz-request-id: C3TYV2NSAEAT2BZW
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Fri, 02 Sep 2022 15:36:56 GMT
ETag: "baa50a8975a2d9e63b2c4b41b5c72f30"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 16523
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/9c6cd637e728044be3574c4d31d309d6.png
52.219.193.160200 OK 1.3 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/9c6cd637e728044be3574c4d31d309d6.png
IP 52.219.193.160:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Hash 1591d52a640d7aa975bdd1293fc54b6f
91a7738fe43ee74e87bf615559b2d003d994370a
856a3e25e403c4f577c63b78a2ee734deedeb7b77fdb25a600b2a5dded64f722
GET /jc-content-v2-us-west/image_center/9c6cd637e728044be3574c4d31d309d6.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: KEFwmo9QpyIDz/l0uxXmYvr6M606EjmP+yqp2MJISfOVebQpbPKgFYH2jXa/DmAEDFy86zOvov4=
x-amz-request-id: C3TQ4R6YYWGN1GRN
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sat, 17 Apr 2021 23:54:29 GMT
ETag: "1591d52a640d7aa975bdd1293fc54b6f"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1250
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/29c8352b65e7c91b5000b3db2935260f.png
52.219.193.160200 OK 936 B URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/29c8352b65e7c91b5000b3db2935260f.png
IP 52.219.193.160:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Hash 3fd556959987d7b090e8ae4c7c8e07f5
efab3432c13db50f9001e8a2c9fed57292b7710a
d7532d53e07de8cd28c1a4d98e284df714255ec21c86d6756fe9261ec30691cf
GET /jc-content-v2-us-west/image_center/29c8352b65e7c91b5000b3db2935260f.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Ea4ySc6iMLvexi2h+Astuz1CAFbthkE6OuAxU0zxKhUvA+UoTwgcwyqsqN/DpnKz7IpS2YsCkcY=
x-amz-request-id: C3TXAPHDGKRE8PZJ
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sat, 17 Apr 2021 23:54:56 GMT
ETag: "3fd556959987d7b090e8ae4c7c8e07f5"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 936
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/66ca70d4e3bad5b38a61f61f462916fa.png
52.219.193.160200 OK 1.0 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/66ca70d4e3bad5b38a61f61f462916fa.png
IP 52.219.193.160:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Hash c954ba990f4d77fe70114200e3a1aa32
d78628ea691ae21ee498a0182920a98bb8e64e51
e4475cabe931a1f71deea2db0509054d4261af226673c9450f0085b82d6d123f
GET /jc-content-v2-us-west/image_center/66ca70d4e3bad5b38a61f61f462916fa.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: Vnb7VK9Mtp1bcNC3UNcDnWNn7f3jy0vQWExarrmAO5hgCS+dFrkK6eiZshsPfJuU/w1ITrQr0tQ=
x-amz-request-id: C3TK2J6A0M00SXDD
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sat, 17 Apr 2021 23:54:46 GMT
ETag: "c954ba990f4d77fe70114200e3a1aa32"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1005
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/9063820768c306a44f250db0a533649e.png
52.219.193.160200 OK 29 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/9063820768c306a44f250db0a533649e.png
IP 52.219.193.160:0
File type PNG image data, 333 x 334, 8-bit colormap, non-interlaced\012- data
Hash bae53b051aeb12a78946b31dc25f07f1
b81e717e6f85ba0d6856282a84e0d3c4d7ac9f53
2ba1e5ebbf89314643db4f705e61f35ed2f4d9b6ecb9230d65257266a4ac364d
GET /jc-content-v2-us-west/image_center/9063820768c306a44f250db0a533649e.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: zee6mnJRomrA66dyY7n86SSx98SlMsD12RwTtaRrWP0s+cHxJUnYaICRAJkSq0VRKwklY3qU3d4=
x-amz-request-id: C3TMGEWGEPRZBJV8
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Thu, 13 Jan 2022 22:08:04 GMT
ETag: "bae53b051aeb12a78946b31dc25f07f1"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 28798
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/9fc1a04582d3aabce2fe74ec08176a34.png
52.219.193.160200 OK 1.2 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/9fc1a04582d3aabce2fe74ec08176a34.png
IP 52.219.193.160:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Hash 0b91b284d880829bc882f96c1eb2f21c
06dd26bcbde4b7a8981091d028a5664238cec671
2ac98de861aae4984b0d4a2eaaf03525b8a230f6645598d7951ad970eb35193a
GET /jc-content-v2-us-west/image_center/9fc1a04582d3aabce2fe74ec08176a34.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: 4yCsPdXeHpEI7ix2OsE1elePapauozRCKxTS3VeLNCmDsOAkeT8JzdV2vAmz27trV0n4Rxa0ioY=
x-amz-request-id: C3TVSRATB7B5GQRS
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sat, 17 Apr 2021 23:55:12 GMT
ETag: "0b91b284d880829bc882f96c1eb2f21c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1212
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/40ea85a4f9d31ae98a29d32cf9aa5188.png
52.219.193.160200 OK 1.9 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/40ea85a4f9d31ae98a29d32cf9aa5188.png
IP 52.219.193.160:0
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 50x50, components 3\012- data
Hash 7394da0f7c1eaf846c10d1fdd077ad8c
b792bf129ce2801b9928d2f660ce8d0277e55ced
957fa9d8e22009502c40c12d830e48a28de8cfdcec5926bfb27830ef3b460611
GET /jc-content-v2-us-west/image_center/40ea85a4f9d31ae98a29d32cf9aa5188.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: LdvTNVDrjPebdbTEC3Z8lPMPs4RfKd8SbMwezga2Sp3jVEx3xPm0a//iBo+TAXcxeFhK2mX394Y=
x-amz-request-id: C3TPRZWP6AAC0AMB
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Sat, 17 Apr 2021 23:55:23 GMT
ETag: "7394da0f7c1eaf846c10d1fdd077ad8c"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 1933
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/4b179eccad6deca9ed9ba9634c91f571.png
52.219.193.160200 OK 415 B URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/4b179eccad6deca9ed9ba9634c91f571.png
IP 52.219.193.160:0
File type PNG image data, 32 x 32, 8-bit colormap, non-interlaced\012- data
Hash 5c8eaae59a495028f0b6424ce822925f
66943e624ce01769e091b964a196113393ed9e16
b8a3a21935b005283cda5b29fcfef7ab242bf09a553e362f83201beb6794f3d2
GET /jc-content-v2-us-west/image_center/4b179eccad6deca9ed9ba9634c91f571.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: /Yy1CiBzIPjt+Isf9PN13cl29DYL5fqoXm4lHYr0nzEbrcfW4bK7nIUhi+1f6Kp3+wfniEZfiYE=
x-amz-request-id: C3TS75VAJJWP7P9G
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Thu, 31 Jan 2019 23:53:43 GMT
ETag: "5c8eaae59a495028f0b6424ce822925f"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 415
s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/06f166aae62ad02f3607d12fe9e73f60.png
52.219.193.160200 OK 725 kB URL HTTP/1.1 s3-us-west-1.amazonaws.com/jc-content-v2-us-west/image_center/06f166aae62ad02f3607d12fe9e73f60.png
IP 52.219.193.160:0
File type PNG image data, 1920 x 1080, 8-bit colormap, non-interlaced\012- data
Size 725 kB (725127 bytes)
Hash 945df71be33cadfeb4cffa8b1ad37000
36ff5e49768300a269a94f7a9719e5e7752e6ed7
73a40f8f81cea3a389372e1407ee64c9745744653f346fd3df8c4a943ae52d09
GET /jc-content-v2-us-west/image_center/06f166aae62ad02f3607d12fe9e73f60.png HTTP/1.1
Host: s3-us-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amz-id-2: FhZW/AhJHaHgTtTGH2Dt0Q8RKYOZfR7O9h1gsgKsvyN6L0Qtf1yCrHYMY2Z9CcmREoy5xNrCmtI=
x-amz-request-id: C3TQD4QRHRG4SAV6
Date: Tue, 31 Jan 2023 18:56:54 GMT
Last-Modified: Wed, 19 Jan 2022 20:11:25 GMT
ETag: "945df71be33cadfeb4cffa8b1ad37000"
Accept-Ranges: bytes
Content-Type: image/png
Server: AmazonS3
Content-Length: 725127
directnewshome.com/service-worker.js
47.87.191.136200 OK 1.8 kB URL HTTP/1.1 directnewshome.com/service-worker.js
IP 47.87.191.136:0
File type ASCII text, with very long lines (6046), with no line terminators
Hash adb66368ee84d8997c72ae716dc274af
2dafec8db1de1a14648caebac67166ddee9f5402
83583f87fd547f2d42cd5da98485ac8881b19c2dd2d4aa48be77c0a5947868ea
Analyzer Verdict Alert fortinet Phishing
GET /service-worker.js HTTP/1.1
Host: directnewshome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
vary: Accept-Encoding
content-encoding: gzip
last-modified: Sun, 24 Feb 2019 04:12:20 GMT
etag: "3106931157"
content-type: application/javascript
accept-ranges: bytes
content-length: 1787
date: Tue, 31 Jan 2023 18:56:57 GMT
server: lighttpd/1.4.35
trc.pushnami.com/api/push/track
3.81.180.214204 No Content 0 B URL HTTP/2 trc.pushnami.com/api/push/track
IP 3.81.180.214:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /api/push/track HTTP/1.1
Host: trc.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: key
Referer: https://directnewshome.com/
Origin: https://directnewshome.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Tue, 31 Jan 2023 18:56:57 GMT
access-control-allow-origin: *
access-control-allow-methods: POST
access-control-allow-headers: Accept,Authorization,Content-Type,If-None-Match,key
access-control-max-age: 86400
access-control-expose-headers: WWW-Authenticate,Server-Authorization
cache-control: no-cache
X-Firefox-Spdy: h2
trc.pushnami.com/api/push/track
3.81.180.214200 OK 2 B URL HTTP/2 trc.pushnami.com/api/push/track
IP 3.81.180.214:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /api/push/track HTTP/1.1
Host: trc.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://directnewshome.com/
content-type: application/x-www-form-urlencoded
key: 5994a6e29d660c673826287b
Origin: https://directnewshome.com
Content-Length: 106
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 18:56:57 GMT
content-type: text/html; charset=utf-8
content-length: 2
access-control-allow-origin: *
access-control-expose-headers: WWW-Authenticate,Server-Authorization
cache-control: no-cache
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4a2d26da68a313cc65958fc2692351c2
798c3538f3147ca77d317676ddd1bf040bd0f93b
76ce30224803d680c0115e987a712ce5552b2760beadf796a96b17439fb20797
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9b71db36-11cb-45f6-a296-34813aea1c35.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10898
x-amzn-requestid: e29f8dfc-07d4-4136-afaf-e1e067eea2ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fk3zxGshIAMFw5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d839b1-5e87d2a44722af9e4e86c3d4;Sampled=0
x-amzn-remapped-date: Mon, 30 Jan 2023 21:42:09 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: djoQmYTv7Rlq9tKKkJ5U1J3YeVSIs5yzSts_xRN3bdi27Ra8UfM6OQ==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:44:45 GMT
age: 76333
etag: "798c3538f3147ca77d317676ddd1bf040bd0f93b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
api.pushnami.com/scripts/v1/hub
54.230.111.53200 OK 0 B URL HTTP/2 api.pushnami.com/scripts/v1/hub
IP 54.230.111.53:0
GET /scripts/v1/hub HTTP/1.1
Host: api.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://directnewshome.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Tue, 31 Jan 2023 18:02:06 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,PUT,POST,DELETE
access-control-allow-headers: X-Requested-With
content-security-policy: default-src 'unsafe-inline' *
x-content-security-policy: default-src 'unsafe-inline' *
x-webkit-csp: default-src 'unsafe-inline' *
cache-control: no-cache
content-encoding: gzip
vary: accept-encoding
x-cache: Hit from cloudfront
via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: kOlQHkv_9v8BcCQqUxVl3ZJ-PXKtAR56nlcy_Q-0YL4sXrrM94O8cg==
age: 3290
X-Firefox-Spdy: h2
psp.pushnami.com/api/psp
54.209.198.197200 OK 0 B IP 54.209.198.197:0
POST /api/psp HTTP/1.1
Host: psp.pushnami.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://directnewshome.com/
content-type: application/x-www-form-urlencoded
key: 5994a6e29d660c673826287b
Origin: https://directnewshome.com
Content-Length: 46
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 31 Jan 2023 18:56:57 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: https://directnewshome.com
access-control-allow-credentials: true
cache-control: no-cache
vary: accept-encoding
content-encoding: gzip
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap-theme.min.css
188.114.98.234200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap-theme.min.css
IP 188.114.98.234:0
GET /bootstrap/3.3.7/css/bootstrap-theme.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://directnewshome.com
Connection: keep-alive
Referer: https://directnewshome.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 31 Jan 2023 18:56:52 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ab6b02efeaf178e0247b9504051472fb"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 01/05/2023 13:19:31
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1081
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 034ba7a1716bf8372ef09b109476c8d9
cdn-cache: HIT
cf-cache-status: HIT
age: 82380
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7924ab75fb71b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2