Report - casualenglishchat.com/

Report Overview

Submitted URL
casualenglishchat.com/
IP
66.175.58.9
ASN
#30447 INFB2-AS
Submitted
2022-09-23 07:03:25
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	5.6 kB	142.250.74.3
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	328 B	964 B	172.64.155.188
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	57 kB	34.120.237.76
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.1 kB	93.184.220.29
cur.cursors-4u.net	518549	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	392 B	4.5 kB	96.43.128.66
count.carrierzone.com	74556	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	37 kB	66.175.41.113
barsamoil.ir	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	408 B	343 B	185.252.28.106
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	4.4 kB	142.250.74.10
casualenglishchat.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	341 B	11 kB	66.175.58.9
i.imgur.com	5110	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.6 kB	5.3 MB	151.101.84.193
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	968 B	30 kB	142.250.74.163
b.top4top.io	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	4.3 MB	51.158.152.62
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	7.1 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.242.41.15
raw.githubusercontent.com	35802	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	403 B	5.1 kB	185.199.108.133
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	917 B	104.18.10.207
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	384 B	31 kB	142.250.74.42
github.com	1423	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	808 B	5.4 kB	140.82.121.3

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-09-23	medium	casualenglishchat.com/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (15)

	URL	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js	87 kB	2023-03-07	2024-04-19
Pretty URL ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:34 Last Seen2024-04-19 23:22:10 Times Seen263026 Hash e071abda8fe61194711cfc2ab99fe104 f647a6d37dc4ca055ced3cf64bbc1f490070acba 85556761a8800d14ced8fcd41a6b8b26bf012d44a318866c0d81a62092efd9bf Loading...

	casualenglishchat.com/	3.5 kB	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 698c2dcd8632bcf593f9a1700c904293 9ee2e0ac8bbcd04801bd6c736a54f170208777fe 6bcce82f60135d9916a9c830012fffdd1ccdb4a2cafd43546d25c24a3f7a80a4 Loading...

	casualenglishchat.com/	241 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 0733d5d599623420a1fb38652f7d0084 9163d6130693febb1c40199917f54cf825bbd75c 1082b5bb86cb8a1bb1ce135d42effc16b55eddbc431c66135e6ae3a3ac5b3b9f Loading...

	casualenglishchat.com/	1.5 kB	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash ea144d5510ad87b54ea1eff62d69bedd 0b0df3a9cfed1000649cf38d4a14fb91ab98c65e 187f7bcc1bb14b2efcde1d8411352d5c0ef8707192e057477435af168f7d6380 Loading...

	casualenglishchat.com/	146 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 44b418d93a5343796687dad7ad1cfcef e3193fab1c8d585069865479ec65e50487b49109 39ad987eadd1e6c34f306bf6864f99b553ecc511fd510328a5b0ca856fa437e8 Loading...

	casualenglishchat.com/	109 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 34956f07956a6300ebf7a846e926e524 26a3b3665c1e4ded73a813648031ddbf99229457 da9a4d01812890fbe008fa40472962a0d49221407283937a0371d62b6ea62d8b Loading...

	count.carrierzone.com/app/count_server/count.js	36 kB	2023-03-07	2024-04-13
Pretty URL count.carrierzone.com/app/count_server/count.js IP 66.175.41.113 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:12:05 Last Seen2024-04-13 19:43:08 Times Seen1345 Hash 853f44f8a3814f75cd4556fbdcbe5d26 b3bb2ffd8dda9cf07a163a754595e57678a9f9b8 f418e6b5416f03cbc22b24f481582e2d55ee0f7ca6989c562b59f12c9229214e Loading...

	casualenglishchat.com/	207 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash b2da13bad089ad22246602126b900903 b0a5d4ed5bc804ba2b1d6394cf727d3d17b1650c 2c0554627407bd76f508273b5d6a6e4de3981ab6eb8fa3aecf8c0e15cbaf2ed3 Loading...

	maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js	37 kB	2023-03-07	2024-04-20
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js IP 104.18.10.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-20 00:16:23 Times Seen54370 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	casualenglishchat.com/	138 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 1ba4626deaa4f4784628180de8de61a2 abfc60d501074699722df3e4f5e3f1cc81b321e2 fe8e93aab0c1ddf8907765b8d05f783763b32d435f1236d232f7ff66b5ad93fc Loading...

	casualenglishchat.com/	1.1 kB	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash c1e97478d1057ec3f4e8961783a5b8ee 59f866e4ac56c63b060643c85d46448d80b9dd32 d1df2f26906fe466da69a33c6aa4feffe513dc63b2efd11911ca12a744e84170 Loading...

	casualenglishchat.com/	234 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 1ece94e4691aea8bf860ebc6d1cc5b9f 67362b652f99d8abcd6be91b5549e5da30d9d154 b907584f389e0e82dcbf8e2f543670a177ac6dc7f98ebef0243aad88a1558bf1 Loading...

	casualenglishchat.com/	453 B	2023-03-07	2023-03-17
Pretty URL casualenglishchat.com/ IP 66.175.58.9 ASN #30447 INFB2-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 81b2946e7ab9dbcb87df8453a4e66978 b26df7258fb06a2d87626360a667211302e6ea61 9058f5564c8b8b780f295a2d164301665cc367d69ca158b9e3c651c22af1db99 Loading...

		Size	First Seen	Last Seen
	#1 Write - 39438dd4823316e69775c4ad654f7e2f	1.2 kB	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash 39438dd4823316e69775c4ad654f7e2f d688e02b41560e984d3efa6475c07af5bb7d943e dfb6f4ecdbc3029966e641cdbcb52181b9300f2d60ba01b46357af72b9586831 Loading...

	#2 Write - e12f99e88b93501772080b826b8c50f9	357 B	2023-03-07	2023-03-17
Pretty Observations First Seen2023-03-07 23:41:34 Last Seen2023-03-17 10:24:05 Times Seen1 Hash e12f99e88b93501772080b826b8c50f9 3e35d06a545aea0bfc9969c5e310026e934a6bc5 eb42261645df7af7db2365804dcb6e4a9c14624fc0cf946cc8c2a903a8b4e79b Loading...

HTTP Transactions (59)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 06:12:49 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: o5uUay5meVjN7AQPA6YesUQxbv9rI6IcC4iT_Tyw79iurNQqSbVt2A==
Age: 3025

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a26d0784548ecab22f417f3d689daf23
8893b79366bbadeb5c8d587b8f023e310694df1c
35baaae7b3ce3110ebb2b075881cfab55ecf3eab57d834283fd18ac691b41fa2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35BAAAE7B3CE3110EBB2B075881CFAB55ECF3EAB57D834283FD18AC691B41FA2"
Last-Modified: Tue, 20 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3739
Expires: Fri, 23 Sep 2022 08:05:33 GMT
Date: Fri, 23 Sep 2022 07:03:14 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2vxV7JMgXtX8t8y3rWoiUyzpBjordBoYbSrdB6PLif2F7MbQAREWpg==
age: 8880
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 07:03:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

casualenglishchat.com/

66.175.58.9

200 OK

11 kB

URL HTTP/1.1
casualenglishchat.com/
IP
66.175.58.9:0
ASN
#30447 INFB2-AS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- assembler source, Unicode text, UTF-8 text, with very long lines (3524), with CRLF, LF line terminators
Size
11 kB (11185 bytes)
Hash
b6ea2d9d59fbfe673eceae1f59898738
ebf072af05078db5495b57d0010f3f4eb76ebdf1
67f304d97456ce7f22af5523b8e4b7e1f73ed09c0e68bf6ce55cd3f367c56a8a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: casualenglishchat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 07:03:15 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 15 Mar 2022 16:38:30 GMT
Content-Encoding: gzip

fonts.googleapis.com/css?family=Averia+Sans+Libre

142.250.74.10

200 OK

293 B

URL HTTP/1.1
fonts.googleapis.com/css?family=Averia+Sans+Libre
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text
Size
293 B (293 bytes)
Hash
967854820ac0113590e0f44f72efed8c
2f06b788f675d939807c488d6a5fb198ae68bd70
8f7e2367ba59633c8c220f73c56c2f767c5b775dd155476b1ea11738954ac1ab

HTTP Headers

GET /css?family=Averia+Sans+Libre HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://casualenglishchat.com/

HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 23 Sep 2022 07:03:15 GMT
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
de424c85b225196c5a35219b9e3ebd8e
85607bc7f8cd550eceab6a6c236b403ca91662f5
29fe2614f1d16a5e8c89f055ce08a45ea0d89e31f91b014e6cea52411a7902d3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5514
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Last-Modified: Fri, 23 Sep 2022 05:31:21 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ab9170d59e1c01422d2c55356248b569
0df99ca360de0b69a7e79d8e79b6383fec4a5453
7747cc09f59efbc03c3663c9be6bb63248a43f8f310c1bae1466255e83a72455

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js

142.250.74.42

200 OK

30 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/3.1.1/jquery.min.js
IP
142.250.74.42:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32030)
Size
30 kB (30244 bytes)
Hash
04ba0252a9f264db106d4eaab8df4ccb
cf52d9b3df7839c5c64fbf33aafeced74b3db750
397852429e768ffbd12a78ce4b94f14e3ab4afabf84acb07c0bb5b7798e6e0b2

HTTP Headers

GET /ajax/libs/jquery/3.1.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30244
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 12:09:32 GMT
expires: Fri, 22 Sep 2023 12:09:32 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 68023
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i.imgur.com/aKTrI5Y.gif

151.101.84.193

200 OK

28 kB

URL HTTP/2
i.imgur.com/aKTrI5Y.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 3017 x 183\012- data
Size
28 kB (28293 bytes)
Hash
f93b60b8323c3ab461665468e74ebdda
c64f8619bc7a8628f4a6b309e88055ae0f63e48f
26e836035646f9f6579413f88944ff307d766cb029f2613af09ed3f60770e804

HTTP Headers

GET /aKTrI5Y.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 17:09:09 GMT
etag: "f93b60b8323c3ab461665468e74ebdda"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 233926
x-served-by: cache-iad-kiad7000083-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 26, 1
x-timer: S1663916595.487548,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 28293
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
de424c85b225196c5a35219b9e3ebd8e
85607bc7f8cd550eceab6a6c236b403ca91662f5
29fe2614f1d16a5e8c89f055ce08a45ea0d89e31f91b014e6cea52411a7902d3

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5514
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Last-Modified: Fri, 23 Sep 2022 05:31:21 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 280

i.imgur.com/Imsbaxc.gif

151.101.84.193

200 OK

76 kB

URL HTTP/2
i.imgur.com/Imsbaxc.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 78 x 79\012- data
Size
76 kB (75859 bytes)
Hash
b2e4311ab27f553c0d9cd131b1a8c6a0
6e9ee526891f55a2e5567eee2c22cc22e0c0a53b
84da6165da33bb1f2eb85464022b1286939557ec35634045bba0cd1f22ead9ae

HTTP Headers

GET /Imsbaxc.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sun, 12 Sep 2021 08:35:01 GMT
etag: "b2e4311ab27f553c0d9cd131b1a8c6a0"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 2049466
x-served-by: cache-iad-kcgs7200114-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 703, 1
x-timer: S1663916595.487408,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 75859
X-Firefox-Spdy: h2

i.imgur.com/cwfwBp8.gif

151.101.84.193

200 OK

14 kB

URL HTTP/2
i.imgur.com/cwfwBp8.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 1000 x 400\012- data
Size
14 kB (13599 bytes)
Hash
a025b87654daff773109aae09e1df5c5
3e6cf118e68b5eb4cfe81f91ef3b15795a17ada7
55a55efe9c67e602aca3aa17f127c88dd53f5f2c2630d3f7e73365c5664dd073

HTTP Headers

GET /cwfwBp8.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 15 Dec 2021 17:01:06 GMT
etag: "a025b87654daff773109aae09e1df5c5"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 2138378
x-served-by: cache-iad-kjyo7100060-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663916595.487583,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 13599
X-Firefox-Spdy: h2

i.imgur.com/BbSScWJ.gif

151.101.84.193

200 OK

227 kB

URL HTTP/2
i.imgur.com/BbSScWJ.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 420 x 480\012- data
Size
227 kB (227339 bytes)
Hash
09cb32a36013e29fffa42a50fe1aadcc
c71162d91fda97963361800f3cc0c0d901a0f39f
da50545b8faaa464d9601b2bfe695a4dea0aeff07a4876d4e900027d5ba83659

HTTP Headers

GET /BbSScWJ.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Nov 2021 23:35:25 GMT
etag: "09cb32a36013e29fffa42a50fe1aadcc"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 567478
x-served-by: cache-iad-kiad7000037-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 58, 1
x-timer: S1663916595.488058,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 227339
X-Firefox-Spdy: h2

i.imgur.com/HyXzLUG.gif

151.101.84.193

200 OK

539 kB

URL HTTP/2
i.imgur.com/HyXzLUG.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 460 x 480\012- data
Size
539 kB (538595 bytes)
Hash
cd9ea59d040324545bad654077ac0e79
f6cd671be4588a19e307e69ecb67a5a1c31e95fd
aeb1950d0c79b2107bc19696d405ff9f7bcd615ce433a99eb09a0ef0362903e2

HTTP Headers

GET /HyXzLUG.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Nov 2021 23:37:35 GMT
etag: "cd9ea59d040324545bad654077ac0e79"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 236673
x-served-by: cache-iad-kjyo7100091-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 21, 1
x-timer: S1663916595.487753,VS0,VE3
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 538595
X-Firefox-Spdy: h2

i.imgur.com/8zYLCbs.gif

151.101.84.193

200 OK

538 kB

URL HTTP/2
i.imgur.com/8zYLCbs.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 460 x 480\012- data
Size
538 kB (537997 bytes)
Hash
402ce9f268e713ecd8db2e3ec3d7f781
187527c204b28354a47d35b3b11c9fb07b7180c9
f1a621ea8f4f9f2fb1684b2d4a74350359e724551d8917b56ed27580687e788f

HTTP Headers

GET /8zYLCbs.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Nov 2021 23:37:35 GMT
etag: "402ce9f268e713ecd8db2e3ec3d7f781"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 4460990
x-served-by: cache-iad-kjyo7100092-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663916595.487672,VS0,VE3
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 537997
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
b9893dbb93b5cc3cb8637b496ecd3c1c
007b31caa727ce627f6ba81a3f43326a1538181e
b82608484e9e9dbf009de73986da468fff9833e5d040016b3214b8774ba9f500

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i.imgur.com/34uOiaV.png

151.101.84.193

200 OK

151 B

URL HTTP/2
i.imgur.com/34uOiaV.png
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
PNG image data, 6 x 6, 8-bit/color RGBA, non-interlaced\012- data
Size
151 B (151 bytes)
Hash
e82e0f6662ca9a03172b44d155574133
ab699416b5c8ab99cab9d36f29e90bd4d1adc9bf
db5f562ecd676efb38f9e888f75f9c517b5807ea0d122a993470aa805bba0451

HTTP Headers

GET /34uOiaV.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 06 Nov 2020 12:41:00 GMT
etag: "e82e0f6662ca9a03172b44d155574133"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 2120971
x-served-by: cache-iad-kiad7000150-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663916596.584416,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 151
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
ab9170d59e1c01422d2c55356248b569
0df99ca360de0b69a7e79d8e79b6383fec4a5453
7747cc09f59efbc03c3663c9be6bb63248a43f8f310c1bae1466255e83a72455

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i.imgur.com/8f11A2B.gif

151.101.84.193

200 OK

56 kB

URL HTTP/2
i.imgur.com/8f11A2B.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 113 x 200\012- data
Size
56 kB (55831 bytes)
Hash
be27b663e1462ae86bb6ed4983d46c2b
ab69d9f99ccb9c317510d208ef28f0f97d8706bd
b16799fd7706daecb9ba67a2d4d9506bc37beacdd9efb8414bfb08f629b483e3

HTTP Headers

GET /8f11A2B.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Nov 2021 23:53:00 GMT
etag: "be27b663e1462ae86bb6ed4983d46c2b"
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 1737396
x-served-by: cache-iad-kcgs7200163-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 209, 1
x-timer: S1663916596.632690,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 55831
X-Firefox-Spdy: h2

i.imgur.com/L2jwevW.jpg

151.101.84.193

200 OK

308 kB

URL HTTP/2
i.imgur.com/L2jwevW.jpg
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
JPEG image data, baseline, precision 8, 1980x1080, components 3\012- data
Size
308 kB (307596 bytes)
Hash
33636288991f763f29cca451afe78e85
cba62e0eec54cb79c4ca4f826964b3f1ea152df1
b68f0d2df0284f7fa27aee1cd7376e655c65f570032fcb19c79bcb215a3a63cd

HTTP Headers

GET /L2jwevW.jpg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 25 Dec 2021 22:24:24 GMT
etag: "33636288991f763f29cca451afe78e85"
x-amz-storage-class: STANDARD_IA
content-type: image/jpeg
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 1346170
x-served-by: cache-iad-kiad7000148-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 23, 1
x-timer: S1663916596.631966,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 307596
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:15 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

i.imgur.com/qdN35Wj.gif

151.101.84.193

200 OK

3.5 MB

URL HTTP/2
i.imgur.com/qdN35Wj.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
GIF image data, version 89a, 250 x 250\012- data
Size
3.5 MB (3481563 bytes)
Hash
4a71b762c9baa53224a820c84dc815b3
8fad188c5832a8d65b54fd217407809771252abb
460bb47261545457c14c10c90059abe5aef0c018ab7edfa524e5b683d1c2a774

HTTP Headers

GET /qdN35Wj.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Fri, 02 Jul 2021 16:56:56 GMT
etag: "4a71b762c9baa53224a820c84dc815b3"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 1448535
x-served-by: cache-iad-kiad7000112-IAD, cache-bma1643-BMA
x-cache: HIT, MISS
x-cache-hits: 99, 0
x-timer: S1663916595.487838,VS0,VE207
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 3481563
X-Firefox-Spdy: h2

fonts.googleapis.com/earlyaccess/droidarabickufi.css

142.250.74.10

200 OK

603 B

URL HTTP/2
fonts.googleapis.com/earlyaccess/droidarabickufi.css
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
603 B (603 bytes)
Hash
4d1e73f408bdaef1d2ddbad2804a5536
dbd19dc99fae21b519b5d89d89498837cda61687
862b3b70fb0ce644a2bd351719f4bd4368538b8223b9dc46bf2c136b51bbc4fd

HTTP Headers

GET /earlyaccess/droidarabickufi.css HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
expires: Fri, 23 Sep 2022 07:03:15 GMT
date: Fri, 23 Sep 2022 07:03:15 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 23 Sep 2022 06:03:22 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Fri, 23 Sep 2022 06:24:37 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 3WuxkhqlVemSzdqBb3ypAUVuGu95AdplZl5jkzvYbfENYxvMDlHkug==
Age: 3593

fonts.gstatic.com/s/rajdhani/v15/LDIxapCSOBg7S-QT7p4HM-Y.woff2

142.250.74.163

200 OK

15 kB

URL HTTP/2
fonts.gstatic.com/s/rajdhani/v15/LDIxapCSOBg7S-QT7p4HM-Y.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 14976, version 1.0\012- data
Size
15 kB (14976 bytes)
Hash
cac31f26b77ee8053a76a54ce2f8ce48
c92bcfc9121164049c1b30655db9481d0e454464
759a9000e47b028799d7a4ca602634a7ac7adf415775df070a335d18d9b66f38

HTTP Headers

GET /s/rajdhani/v15/LDIxapCSOBg7S-QT7p4HM-Y.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://casualenglishchat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 21 Sep 2022 20:55:20 GMT
expires: Thu, 21 Sep 2023 20:55:20 GMT
cache-control: public, max-age=31536000
age: 122876
last-modified: Wed, 27 Apr 2022 15:42:00 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Rajdhani&display=swap

142.250.74.10

200 OK

883 B

URL HTTP/2
fonts.googleapis.com/css2?family=Rajdhani&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
883 B (883 bytes)
Hash
f1c99963bc4b7f43aebbe26a61ba3802
733eee8c981af6df869207e20d479f92d2e50260
2a0e103715bf79255e1dddd5b62e3eefc55e7223e80a51981b1ecc70931d7978

HTTP Headers

GET /css2?family=Rajdhani&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 07:03:15 GMT
date: Fri, 23 Sep 2022 07:03:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sharetechmono/v15/J7aHnp1uDWRBEqV98dVQztYldFcLowEF.woff2

142.250.74.163

200 OK

14 kB

URL HTTP/2
fonts.gstatic.com/s/sharetechmono/v15/J7aHnp1uDWRBEqV98dVQztYldFcLowEF.woff2
IP
142.250.74.163:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 13500, version 1.0\012- data
Size
14 kB (13500 bytes)
Hash
65d3eea7a186c2ff5f3ed8bf89642ea6
ea30f8dd250111e82e53180de8ad09b6f23320c6
41e6b9f297f7d9a2df2aaa274092f76d2f72711a15ca455f7f4f4f92caf16b72

HTTP Headers

GET /s/sharetechmono/v15/J7aHnp1uDWRBEqV98dVQztYldFcLowEF.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://casualenglishchat.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13500
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 06:35:07 GMT
expires: Fri, 22 Sep 2023 06:35:07 GMT
cache-control: public, max-age=31536000
age: 88089
last-modified: Wed, 27 Apr 2022 15:54:30 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
edd6c63988b69a64a51433c3fd91b0ba
a0a41a5403a2c397d70cfa267c1d6407250df043
c9b1efff4ebf41ad54d3137ee7a93b688c66765df99e387ae730b39abe2f115f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 07:03:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5129fadc9811e9267cf03040747ffd80
156345b4a281485ebc5200e5a60f88936f2aacef
911f06aea666f4c4979013ca1cae28ac7c9a5cbe61df919e6e0a9bcee7296568

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "911F06AEA666F4C4979013CA1CAE28AC7C9A5CBE61DF919E6E0A9BCEE7296568"
Last-Modified: Wed, 21 Sep 2022 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=930
Expires: Fri, 23 Sep 2022 07:18:46 GMT
Date: Fri, 23 Sep 2022 07:03:16 GMT
Connection: keep-alive

github.com/ByTanimsiz/q/blob/main/cur641.cur?raw=true

140.82.121.3

302 Found

0 B

URL HTTP/2
github.com/ByTanimsiz/q/blob/main/cur641.cur?raw=true
IP
140.82.121.3:0
ASN
#36459 GITHUB

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ByTanimsiz/q/blob/main/cur641.cur?raw=true HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
server: GitHub.com
date: Fri, 23 Sep 2022 07:03:16 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
location: https://github.com/ByTanimsiz/q/raw/main/cur641.cur
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
expect-ct: max-age=2592000, report-uri="https://api.github.com/_private/browser/errors"
content-security-policy: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com objects-origin.githubusercontent.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com cdn.optimizely.com logx.optimizely.com/v1/events *.actions.githubusercontent.com wss://*.actions.githubusercontent.com online.visualstudio.com/api/v1/locations github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src render.githubusercontent.com viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com identicons.github.com github-cloud.s3.amazonaws.com secured-user-images.githubusercontent.com/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
set-cookie: _gh_sess=73IhN2rPcna3Rr9MyZ9VDC6SiVlPg5liefF571WYOjkydQDkH7X5h2DsuxCOyXD9WXhCURS56hd%2FucwTiBZeUBIWbFpTzWkZ80CtA0r0bpBBctrY%2BJ3w7iDio7PJfq99HTxrhq443iPPk0aJZ3VEWEs7ly9TUualypUY%2BzGgS%2BVz1u7wUNudjSpLqiFcKzC1E7wZeUztdeIqpNHZTlbNLYecUYIRCPp%2FQ5NskNmKbKUq%2FGoLerOJ%2Bvb6hCvOvS4bZag8%2BUO7gh01Ctja3oCU9w%3D%3D--sgC2Ao2wMeAXG5eD--PHzTF13RIafgk20vtAL1tA%3D%3D; Path=/; HttpOnly; Secure; SameSite=Lax
_octo=GH1.1.809231830.1663916596; Path=/; Domain=github.com; Expires=Sat, 23 Sep 2023 07:03:16 GMT; Secure; SameSite=Lax
logged_in=no; Path=/; Domain=github.com; Expires=Sat, 23 Sep 2023 07:03:16 GMT; HttpOnly; Secure; SameSite=Lax
content-length: 0
x-github-request-id: BC3F:E295:83D4BF:887FB1:632D5A33
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
f3febd26e4234fff4c98c21d0e4ebae0
dfc8c95928b670a9e7fcb7cecba876dbdad1c11a
f338a5b6acee3c5f306a4f0c7bbf7e9e7dc011c150c3e8bbdc912e901ab910a6

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 07:03:16 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 20 Sep 2022 02:35:01 GMT
Expires: Tue, 27 Sep 2022 02:35:00 GMT
Etag: "dfc8c95928b670a9e7fcb7cecba876dbdad1c11a"
Cache-Control: max-age=328903,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 74f16b66ad63b521-OSL

push.services.mozilla.com/

44.242.41.15

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.242.41.15:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: whn7rwwWLq34WQ17Pq0u+g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: KAeuxYINFfLnydBV6PIdTPVoz3g=

cur.cursors-4u.net/cursors/cur-7/cur686.cur

96.43.128.66

200 OK

4.3 kB

URL HTTP/1.1
cur.cursors-4u.net/cursors/cur-7/cur686.cur
IP
96.43.128.66:0
ASN
#19969 JOESDATACENTER

File type
MS Windows cursor resource - 1 icon, 32x32, hotspot @0x0\012- data
Size
4.3 kB (4286 bytes)
Hash
276bd7605b5232d16cf0ccfe50579e44
c4478bc658ff53f5178b612ea9a5ca8cc8771c1f
ca210df9f8aeddf6ea59bad1ebbb86afccec83543deb0f1a2d2f2f27c335ba32

HTTP Headers

GET /cursors/cur-7/cur686.cur HTTP/1.1
Host: cur.cursors-4u.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.16.1
Date: Fri, 23 Sep 2022 07:03:16 GMT
Content-Type: application/octet-stream
Content-Length: 4286
Last-Modified: Wed, 27 Feb 2013 17:44:54 GMT
Connection: keep-alive
ETag: "512e4616-10be"
Accept-Ranges: bytes

github.com/ByTanimsiz/q/raw/main/cur641.cur

140.82.121.3

302 Found

0 B

URL HTTP/2
github.com/ByTanimsiz/q/raw/main/cur641.cur
IP
140.82.121.3:0
ASN
#36459 GITHUB

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /ByTanimsiz/q/raw/main/cur641.cur HTTP/1.1
Host: github.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 302 Found
server: GitHub.com
date: Fri, 23 Sep 2022 07:03:16 GMT
content-type: text/html; charset=utf-8
vary: X-PJAX, X-PJAX-Container, Turbo-Visit, Turbo-Frame, Accept-Encoding, Accept, X-Requested-With
access-control-allow-origin: https://render.githubusercontent.com
location: https://raw.githubusercontent.com/ByTanimsiz/q/main/cur641.cur
cache-control: no-cache
strict-transport-security: max-age=31536000; includeSubdomains; preload
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 0
referrer-policy: no-referrer-when-downgrade
expect-ct: max-age=2592000, report-uri="https://api.github.com/_private/browser/errors"
content-security-policy: default-src 'none'; base-uri 'self'; block-all-mixed-content; child-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/; connect-src 'self' uploads.github.com objects-origin.githubusercontent.com www.githubstatus.com collector.github.com raw.githubusercontent.com api.github.com github-cloud.s3.amazonaws.com github-production-repository-file-5c1aeb.s3.amazonaws.com github-production-upload-manifest-file-7fdce7.s3.amazonaws.com github-production-user-asset-6210df.s3.amazonaws.com cdn.optimizely.com logx.optimizely.com/v1/events *.actions.githubusercontent.com wss://*.actions.githubusercontent.com online.visualstudio.com/api/v1/locations github-production-repository-image-32fea6.s3.amazonaws.com github-production-release-asset-2e65be.s3.amazonaws.com insights.github.com wss://alive.github.com; font-src github.githubassets.com; form-action 'self' github.com gist.github.com objects-origin.githubusercontent.com; frame-ancestors 'none'; frame-src render.githubusercontent.com viewscreen.githubusercontent.com notebooks.githubusercontent.com; img-src 'self' data: github.githubassets.com identicons.github.com github-cloud.s3.amazonaws.com secured-user-images.githubusercontent.com/ github-production-user-asset-6210df.s3.amazonaws.com customer-stories-feed.github.com spotlights-feed.github.com *.githubusercontent.com; manifest-src 'self'; media-src github.com user-images.githubusercontent.com/ secured-user-images.githubusercontent.com/; script-src github.githubassets.com; style-src 'unsafe-inline' github.githubassets.com; worker-src github.com/assets-cdn/worker/ gist.github.com/assets-cdn/worker/
content-length: 0
x-github-request-id: BC3F:E295:83D567:888063:632D5A34
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
872d37e2cef9e60b56ae2f2f137d7d3c
fde1a108bea4f32605245ed3d31449f1a50afc64
ab2a4d0c62712c4ce1867e95822ff30346dfc0abcb7ed60f373efe7e5bf7a3e5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AB2A4D0C62712C4CE1867E95822FF30346DFC0ABCB7ED60F373EFE7E5BF7A3E5"
Last-Modified: Fri, 23 Sep 2022 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 23 Sep 2022 13:03:16 GMT
Date: Fri, 23 Sep 2022 07:03:16 GMT
Connection: keep-alive

raw.githubusercontent.com/ByTanimsiz/q/main/cur641.cur

185.199.108.133

200 OK

4.3 kB

URL HTTP/2
raw.githubusercontent.com/ByTanimsiz/q/main/cur641.cur
IP
185.199.108.133:0
ASN
#54113 FASTLY

File type
MS Windows cursor resource - 1 icon, 32x32, hotspot @0x0\012- data
Size
4.3 kB (4286 bytes)
Hash
4c21302984c1304a945629cce6ba4b07
451fc695abb32106e8c5175b2a2e49389e1dd8b4
50855fb8a5aa28a93c62a47341df063ab3cc55f2106f80136593b29ab63e10cf

HTTP Headers

GET /ByTanimsiz/q/main/cur641.cur HTTP/1.1
Host: raw.githubusercontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300
content-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox
content-type: application/octet-stream
etag: W/"145174b3ca4235eef0dc508f8b56a7131a18000586d1851484f907524199b2bd"
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
x-frame-options: deny
x-xss-protection: 1; mode=block
x-github-request-id: 0808:7505:551F9D:712FC0:632D5A34
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:16 GMT
via: 1.1 varnish
x-served-by: cache-bma1635-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1663916597.672546,VS0,VE148
vary: Authorization,Accept-Encoding,Origin
access-control-allow-origin: *
x-fastly-request-id: 65ae6c84ea805d08fc9c52e44a64759c0fbea69f
expires: Fri, 23 Sep 2022 07:08:16 GMT
source-age: 0
content-length: 4286
X-Firefox-Spdy: h2

count.carrierzone.com/app/count_server/count.js

66.175.41.113

200 OK

36 kB

URL HTTP/1.1
count.carrierzone.com/app/count_server/count.js
IP
66.175.41.113:0
ASN
#30447 INFB2-AS

File type
ASCII text
Size
36 kB (36029 bytes)
Hash
853f44f8a3814f75cd4556fbdcbe5d26
b3bb2ffd8dda9cf07a163a754595e57678a9f9b8
f418e6b5416f03cbc22b24f481582e2d55ee0f7ca6989c562b59f12c9229214e

HTTP Headers

GET /app/count_server/count.js HTTP/1.1
Host: count.carrierzone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 07:03:15 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Fri, 08 Jun 2012 10:17:02 GMT
Accept-Ranges: bytes
Content-Length: 36029
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: text/javascript

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0ca753403bc56fa91e8433d45a5f0772
6bb804915f87eaa2430b73adf279fb6ea9c68a9d
112e4df745ce91ee5110751ccb3690794ab264103f6fcbe902f7a12a9d53a748

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "112E4DF745CE91EE5110751CCB3690794AB264103F6FCBE902F7A12A9D53A748"
Last-Modified: Wed, 21 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10709
Expires: Fri, 23 Sep 2022 10:01:46 GMT
Date: Fri, 23 Sep 2022 07:03:17 GMT
Connection: keep-alive

i.imgur.com/FFx8Qcv.png

151.101.84.193

200 OK

66 kB

URL HTTP/2
i.imgur.com/FFx8Qcv.png
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type
PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced\012- data
Size
66 kB (65751 bytes)
Hash
d0bed86e869b2777d58c8f550dd2773e
d4ea7441c48c96d4c4c3d40ef03ddb45f9bc0122
38d6aad856538f9e576d12bb901f2e0ab52ecc742e767e3d4040d8ccc24e8f8e

HTTP Headers

GET /FFx8Qcv.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 11 Dec 2021 13:55:16 GMT
etag: "d0bed86e869b2777d58c8f550dd2773e"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:17 GMT
age: 1367128
x-served-by: cache-iad-kjyo7100144-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 74, 1
x-timer: S1663916597.452662,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 65751
X-Firefox-Spdy: h2

count.carrierzone.com/track/ctin.php?t=1663916596424&custnum=9ff7624ef655c296&sname=casualenglishchat.com&pagename=index.html&group=%2Fservices%2Fwebpages%2Fc%2Fa%2Fcasualenglishchat.com%2Fpublic&version=%24Rev%3A%207840%20%24&js=1&jv=0&resolution=1280x1024&color_depth=24&campaign=&referrer=&page_url=http%253A%252F%252Fcasualenglishchat.com%252F&plugins=

66.175.41.113

200 OK

42 B

URL HTTP/1.1
count.carrierzone.com/track/ctin.php?t=1663916596424&custnum=9ff7624ef655c296&sname=casualenglishchat.com&pagename=index.html&group=%2Fservices%2Fwebpages%2Fc%2Fa%2Fcasualenglishchat.com%2Fpublic&version=%24Rev%3A%207840%20%24&js=1&jv=0&resolution=1280x1024&color_depth=24&campaign=&referrer=&page_url=http%253A%252F%252Fcasualenglishchat.com%252F&plugins=
IP
66.175.41.113:0
ASN
#30447 INFB2-AS

File type
GIF image data, version 89a, 1 x 1\012- data
Size
42 B (42 bytes)
Hash
bae3474ef15712706e514d9c40c3d1d5
b93948c072d6fd3dd9a2720cd837784a9c9ca337
5b27cb8a843da7b4f70f68d669798596541491654185df0bd45867d951a31947

HTTP Headers

GET /track/ctin.php?t=1663916596424&custnum=9ff7624ef655c296&sname=casualenglishchat.com&pagename=index.html&group=%2Fservices%2Fwebpages%2Fc%2Fa%2Fcasualenglishchat.com%2Fpublic&version=%24Rev%3A%207840%20%24&js=1&jv=0&resolution=1280x1024&color_depth=24&campaign=&referrer=&page_url=http%253A%252F%252Fcasualenglishchat.com%252F&plugins= HTTP/1.1
Host: count.carrierzone.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://casualenglishchat.com/

HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 07:03:16 GMT
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/5.2.17
Set-Cookie: CTCNTNM_9ff7624ef655c296=387806d87792bb8246fd9c7ee9d8fddc; expires=Thu, 22-Dec-2022 07:03:16 GMT
Content-Length: 42
P3P: CP="NOI NID ADMa OUR IND UNI COM NAV"
Expires: Thu, 01 Jan 1970 01:23:45 GMT
Last-Modified: Fri, 23 Sep 2022 07:03:16 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Keep-Alive: timeout=10, max=100
Connection: Keep-Alive
Content-Type: image/gif

b.top4top.io/m_2262t3pxy1.mp3

51.158.152.62

206 Partial Content

4.3 MB

URL HTTP/2
b.top4top.io/m_2262t3pxy1.mp3
IP
51.158.152.62:0
ASN
#12876 Online S.a.s.

File type
Audio file with ID3 version 2.4.0, contains: MPEG ADTS, layer III, v1, 192 kbps, 44.1 kHz, Stereo\012- data
Size
4.3 MB (4321626 bytes)
Hash
1784e5899bae34546d0eafcfd7d8f94a
320e943a7cc0820d1099b9ce9c7a81be86589879
715f6588270fc5b20da8f257a17b87f88080d3af0383010c57cf86fa36f1a5a4

HTTP Headers

GET /m_2262t3pxy1.mp3 HTTP/1.1
Host: b.top4top.io
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 206 Partial Content
server: nginx
date: Fri, 23 Sep 2022 07:03:17 GMT
content-type: audio/mpeg
content-length: 4321626
set-cookie: klj_40d147_downloads=qwdtp; Max-Age=85000; Domain=.top4top.io; Path=/; Expires=Sat, 24 Sep 2022 06:39:57 GMT
last-modified: Sun, 13 Mar 2022 01:00:43 GMT
content-disposition: inline; filename="Nightcore%20-%20E.T%20(Male%20Version).mp3"
etag: "622d423b-41f15a"
expires: Fri, 23 Sep 2022 09:03:17 GMT
cache-control: max-age=7200
x-file-id: x45180925x
content-range: bytes 0-4321625/4321626
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7144
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 07:03:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7144
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 07:03:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7144
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 07:03:17 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7144
Expires: Fri, 23 Sep 2022 09:02:21 GMT
Date: Fri, 23 Sep 2022 07:03:17 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10822 bytes)
Hash
948abf9bedd1bd67010284080ba06d01
dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 308978c4-679f-4bb6-bfd7-a81dc00ec3db
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YoKcMG-kIAMFZKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63265781-03f94c0a385ed28408de81c8;Sampled=0
x-amzn-remapped-date: Sat, 17 Sep 2022 23:25:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 9fh_DJXLHRaerYmgTGoVX3LRsMIgzf46bn48yzXp8Xdp8WippJExcg==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 11:05:21 GMT
age: 71876
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b936e90-90ba-49d6-946e-b7cd524d23f9.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.2 kB (7180 bytes)
Hash
6243782119c18721ebfb39448a079e32
6131afd540498e8ead1b9937bc953fadbdb164f9
9f70c0b851ea5039eee2edf8d37f447946e2d2783d6ce257c0ccbcf9f262d289

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b936e90-90ba-49d6-946e-b7cd524d23f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7180
x-amzn-requestid: c08a48fa-b734-4ac7-aa76-a1225135b792
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YsS2qHbcIAMFgEQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6327fe90-4a5915de1b0da7a07efddf86;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 05:30:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6QVS_B0PlpAG7YSjavV2LBnC_hiHBza_hYkyA6MtdaN6iMYmVliMOg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 07:30:08 GMT
age: 84789
etag: "6131afd540498e8ead1b9937bc953fadbdb164f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6505 bytes)
Hash
ff021fa15adb0d3a24158bc00cf0980a
265d3e98bcbf5f14f214102279a7911d6fd64048
211d709fb1851a62f856a78e3b115ef816f78ab9a28f870d48fa3d1912eac16a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ec986e3-2bce-4ded-85eb-e88df9893a30.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6505
x-amzn-requestid: bc9cc556-8897-4484-ac07-f18e4f5250ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YvrfiFl4oAMF_Xg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63295930-7a627b7d7683919e41ca599b;Sampled=0
x-amzn-remapped-date: Tue, 20 Sep 2022 06:09:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: UNlx91pOuttpN-IrQs_g-PRI8C_NmZDKdnOpfayCJ719fa6FwnOIGg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:51 GMT
age: 31886
etag: "265d3e98bcbf5f14f214102279a7911d6fd64048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7005 bytes)
Hash
1985a957e6bc0c15d8489fa731e7f14e
4584bff61bf4d5c9b8fd3b97c048a8e6975e4323
9f3e1fd6e18d85d4f6645d077da643a3bc2cca611d5e85f534ba798102dca243

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F155952bd-256a-4103-9017-437efcfb03bf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7005
x-amzn-requestid: c805d882-7a00-4abd-a239-d8313d7df0c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4aBwEaMIAMF09A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd6d7-6d6a417f10c9628a16d438e1;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:42:47 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7edV0FJytVSpHH-WkCiYzhW1JP4L6i6bpPCq9MTxPdhwFQTryf06BQ==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:53:16 GMT
age: 33001
etag: "4584bff61bf4d5c9b8fd3b97c048a8e6975e4323"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (10927 bytes)
Hash
3b6b51846ec2b7d856b7dc12e4d720f4
5a69190a9a778a6979e11fafedd43e1031caf8e2
a497c04d1c9d0be88aa9c288423346e83c6a7b296295387b3b7b855c550492a2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9444e811-e2d5-4901-a86d-9e9269a6f846.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10927
x-amzn-requestid: ae562f19-3dd9-42b1-bb98-ab026140506e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YsqHOHguIAMFS7Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632823c7-6d4bcabf6879463427e68a50;Sampled=0
x-amzn-remapped-date: Mon, 19 Sep 2022 08:09:43 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: u4DgvdhOG7agsl8-aoovMcR029kbfcAk9eoiUiHb-PZuq3RbbFg9Mw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:48:51 GMT
age: 33266
etag: "5a69190a9a778a6979e11fafedd43e1031caf8e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.5 kB (8497 bytes)
Hash
7606ff88f05062b66970d9805f38987a
d47db5fcd83023b4a8de40a47d4510e183de387a
20f89dd859e5715e27c289040fac6a121248e5b6c06da0a7f186984ffb029eb2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ca56e32-b483-4063-a12c-be8fa8c3d85e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8497
x-amzn-requestid: 8543ac70-48ab-4523-856f-5d5fa1191c97
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yin-pEryoAMFTfQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6324205d-660bba3f655f940d143bc437;Sampled=0
x-amzn-remapped-date: Fri, 16 Sep 2022 07:06:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: e9KUFhjuFMzjuh37rFiNKaMNVaGZwPGBkLrv0zgfSTT7dCIuWj4G9Q==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:11:27 GMT
age: 31910
etag: "d47db5fcd83023b4a8de40a47d4510e183de387a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Share+Tech+Mono|Rajdhani|Oswald:700|Iceland|PT+Sans&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Share+Tech+Mono|Rajdhani|Oswald:700|Iceland|PT+Sans&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Share+Tech+Mono|Rajdhani|Oswald:700|Iceland|PT+Sans&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 23 Sep 2022 07:03:15 GMT
date: Fri, 23 Sep 2022 07:03:15 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

i.imgur.com/nNhAn7g.gif

151.101.84.193

200 OK

0 B

URL HTTP/2
i.imgur.com/nNhAn7g.gif
IP
151.101.84.193:0
ASN
#54113 FASTLY

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /nNhAn7g.gif HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Sat, 06 Nov 2021 23:35:25 GMT
etag: "1cf673c811b06da40035b87d80b05abc"
x-amz-storage-class: STANDARD_IA
content-type: image/gif
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Fri, 23 Sep 2022 07:03:15 GMT
age: 1453560
x-served-by: cache-iad-kiad7000118-IAD, cache-bma1643-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1663916595.487951,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 227286
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

104.18.10.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 23 Sep 2022 07:03:15 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 12/13/2021 20:18:53
cdn-edgestorageid: 755
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-proxyver: 1.02
cdn-requestid: 48135f30fbfcba704628453df5764d8f
cdn-cache: HIT
cf-cache-status: HIT
age: 9366080
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74f16b616c17b4f4-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

barsamoil.ir/1877to.mp4

185.252.28.106

404 Not Found

0 B

URL HTTP/2
barsamoil.ir/1877to.mp4
IP
185.252.28.106:0
ASN
#201295 Shabakeh Ertebatat Artak Towseeh LTD

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /1877to.mp4 HTTP/1.1
Host: barsamoil.ir
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://casualenglishchat.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 404 Not Found
server: nginx
date: Fri, 23 Sep 2022 07:03:18 GMT
content-type: text/html; charset=UTF-8
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
link: <https://barsamoil.ir/wp-json/>; rel="https://api.w.org/"
vary: Accept-Encoding, Accept-Encoding,User-Agent
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations