Report - g0t0.org/

Report Overview

Submitted URL
g0t0.org/
IP
103.26.92.45
ASN
#138959 Telekomunikasi Indonesia International Hong Kong Limited
Submitted
2023-02-17 04:49:04
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
g0t0.org	unknown	2022-12-20T03:47:14Z	2023-03-12T17:14:10Z	778 B	290 B	103.26.92.45
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	340 B	963 B	104.18.32.68
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	411 B	4.0 kB	104.17.25.14
unphionetor.com	54035	2022-02-11T13:53:49Z	2023-03-13T05:31:17Z	829 B	1.4 kB	139.45.197.236
cdn.taboola.com	1040	2013-07-20T01:48:03Z	2023-03-13T05:18:23Z	370 B	19 kB	151.101.65.44
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	44.227.105.139
static.ads-twitter.com	614	2018-06-24T00:08:39Z	2023-03-13T05:25:18Z	357 B	16 kB	151.101.84.157
connect.facebook.net	139	2012-05-22T04:51:28Z	2023-03-13T05:09:29Z	366 B	29 kB	31.13.72.12
www.recaptcha.net	2060	2012-07-11T16:32:37Z	2023-03-13T06:24:11Z	378 B	1.1 kB	142.250.74.3
googleads.g.doubleclick.net	42	2021-02-20T16:43:32Z	2023-03-13T08:39:16Z	765 B	1.8 kB	142.250.74.162
t.co	569	2012-07-25T21:09:44Z	2023-03-13T05:25:19Z	710 B	593 B	104.244.42.197
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.4 kB	2.9 kB	93.184.220.29
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	740 B	439 B	216.239.34.36
m.stripe.network	1204	2017-05-17T17:53:13Z	2023-03-13T05:20:40Z	473 B	1.6 kB	151.101.192.176
propeller-tracking.com	187053	2020-04-16T10:57:14Z	2023-03-13T05:11:40Z	364 B	728 B	139.45.197.240
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.7 kB	7.1 kB	95.101.11.115
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.8 kB	73 kB	34.120.237.76
ausu.lol	unknown	2022-08-08T11:12:17Z	2023-03-12T17:14:10Z	438 B	3.2 kB	103.26.92.45
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	2.7 kB	5.6 kB	142.250.74.131
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	754 B	133 kB	216.58.207.200
js.stripe.com	1149	2012-09-30T14:39:23Z	2023-03-13T05:20:37Z	1.3 kB	3.5 kB	54.230.111.62

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-02-16	medium	unphionetor.com	Sinkholed
2023-02-16	medium	unphionetor.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	unknown	0 B	2023-03-07	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 23:25:40 Times Seen37349051 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.min.js	9.0 kB	2023-03-07	2024-05-04
Pretty URL cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2024-05-04 01:50:29 Times Seen853 Hash e5a5b331cf54c474203628eb9398470e 6d2e5b6a22edb7d95e0ac7523d74f5f7013cb344 7157511697db744d384a5a2a8646af23f3c90560abf93bb240fdd690b29a898a Loading...

	cdn.taboola.com/libtrc/unip/1466290/tfa.js	60 kB	2023-03-13	2023-03-14
Pretty URL cdn.taboola.com/libtrc/unip/1466290/tfa.js IP 151.101.65.44 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 22:56:08 Last Seen2023-03-14 01:45:35 Times Seen1 Hash 34de4b4c5ad588a94c503b90a190043f cea7d7317f720c5c3abcde16fbb1eaa6d86fe9f0 1010132d7e337f37b3eb1f94884e4136a76144eaaaba7436ad38ad813daf122b Loading...

	js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js	631 B	2023-03-08	2024-04-03
Pretty URL js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js IP 54.230.111.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:24:46 Last Seen2024-04-03 16:20:49 Times Seen6173 Hash f8f6a4584135f737b26927596ce6e0a7 609ea9e9c46563fb1dc78a7967c926394e73ffab 250a0782da875705bd206ee23c2a46abf90656645a81e084126c5e8c53eeb9d6 Loading...

	ausu.lol/	168 B	2023-03-07	2023-11-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-11-04 04:30:09 Times Seen13 Hash 9b1dcb32766c542f3255397f12bcdc97 78a6a6bbc9fd9f834aa6175bdd29a3ccea797675 a0bbb1c3208288b0de5c9a3f1d9a0249f940d575666ac245ab00a644f6d8baa3 Loading...

	ausu.lol/	389 B	2023-03-07	2023-11-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-11-04 04:30:09 Times Seen13 Hash 51b379bb0c2ffee83f015653b761d764 bf5e21fc1d6c28d3c9a8b2d54cb485b2b57de011 23d52386f08ddf67f9c8760d886ad76acf602867c2b25549cc7caeb009583114 Loading...

	ausu.lol/	445 B	2023-03-07	2023-11-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-11-04 04:30:09 Times Seen13 Hash 68c10fb976573af029c813f6b4d738a7 66b848862ec1b43c6aa43ec4d44c54cc43662dea fc1efe533381c2da7e1fbb9d36692af80b1fed6bef35522180c4db50fdd147df Loading...

	ausu.lol/	471 B	2023-03-07	2023-11-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-11-04 04:30:09 Times Seen13 Hash 022f7bf207e91d6448254824dbd7603a 7082b7c0016c72836361a1396bd062966565f3fd adf4ef2a974bf91848772805e4d20c9948acfc8c185fc8943c1bf5bdc2ffa53e Loading...

	www.googletagmanager.com/gtag/js?id=G-RR9LNKL2SC	242 kB	2023-03-14	2023-03-14
Pretty URL www.googletagmanager.com/gtag/js?id=G-RR9LNKL2SC IP 216.58.207.200 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:45:36 Last Seen2023-03-14 01:45:36 Times Seen1 Hash 8118dbe715c42584473df0f30c48b191 164d1828de40a75f5b711f089783b61b9a61b37c 2e57aa32851124bbaa58b753f9845baef349119de1305069c381c7de9bdcad59 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-NCGSZWQ	213 kB	2023-03-14	2023-03-14
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-NCGSZWQ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:45:36 Last Seen2023-03-14 01:45:36 Times Seen1 Hash 4cdfc53026cf8fc3db14839ca4763ee6 820170485b5c900e7bf5d44c20ffe24ce748e5d2 827567b67ef3f630dc77aca43acea181508eda160d3e418d1fdda458cf5d1c5f Loading...

	static.hotjar.com/c/hotjar-3019324.js?sv=7	9.6 kB	2023-03-14	2023-03-14
Pretty URL static.hotjar.com/c/hotjar-3019324.js?sv=7 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:45:36 Last Seen2023-03-14 01:45:36 Times Seen1 Hash 5e77c6e7727be91f147cfcf309ac4003 4ce98999e32eb5cceb407f69cc1684881645d6f2 4c1995845d4a30eeeba7a3a053b0b8070d691e3e6bf4a363a3c4233ed1393bd4 Loading...

	connect.facebook.net/en_US/fbevents.js	109 kB	2023-03-14	2023-10-19
Pretty URL connect.facebook.net/en_US/fbevents.js IP 31.13.72.12 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 00:30:04 Last Seen2023-10-19 02:58:15 Times Seen11 Hash 467eb094cd171743fc97afdaa813ee31 e3c70cc60cc406293f2eefbadeebc1791942632f dca9b6afcb6c37d6a32456973fe5f2986a348a70d11774e102de6fc420992a19 Loading...

	ausu.lol/	642 B	2023-03-07	2023-11-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-11-04 04:30:09 Times Seen13 Hash 3d253638afcdb86b9ed16352b69af92b 09149c55c01d79a7df9309b2cec7f8f688ce4f64 7e7d286d0356a2c3af55741e6f33e366a6608a258328ecde48671edc76d7ec72 Loading...

	googleads.g.doubleclick.net/pagead/viewthroughconversion/10917194488/?random=1676609335564&cv=11&fst=1676609335564&bg=ffffff&guid=ON&async=1&gtm=45be32f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fausu.lol%2F&tiba=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&auid=1665216585.1676609336&data=event%3Dgtag.config&rfmt=3&fmt=4	2.1 kB	2023-03-14	2023-03-14
Pretty URL googleads.g.doubleclick.net/pagead/viewthroughconversion/10917194488/?random=1676609335564&cv=11&fst=1676609335564&bg=ffffff&guid=ON&async=1&gtm=45be32f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fausu.lol%2F&tiba=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&auid=1665216585.1676609336&data=event%3Dgtag.config&rfmt=3&fmt=4 IP 142.250.74.162 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:45:36 Last Seen2023-03-14 01:45:36 Times Seen1 Hash 30843926da0638b82444936489e439b0 5ba05cdbebbd565088835979690d3a54a828e358 286b834d4a7a3f8036aa16fb2df72945675c0c2e6b08b2461860b6cbd2963ed1 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-05-02
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-05-02 22:13:05 Times Seen4333 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	www.recaptcha.net/recaptcha/api.js?render=explicit	855 B	2023-03-14	2023-03-14
Pretty URL www.recaptcha.net/recaptcha/api.js?render=explicit IP 142.250.74.3 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:45:36 Last Seen2023-03-14 03:19:43 Times Seen1 Hash 6d637e4a3d28cd3ced275c7de2a92e5d b17d9c32d637ffd1374112217f9d1ea6285fa1a1 752845b069c087e0917d31245cd7f3569d89f10fccd50dcf384237cddd38a832 Loading...

	ausu.lol/	1.8 kB	2023-03-07	2023-03-14
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-03-14 18:38:08 Times Seen1 Hash 637d2730ff47923ba3f514d57d009461 975c1b7348a98a97ebba57678f6e3a95b3570de7 f388b0cf371addb7c74523e36050c52205bd80fc586f4aebda9ec5c5c735e74d Loading...

	js.stripe.com/v3	448 kB	2023-03-14	2023-03-14
Pretty URL js.stripe.com/v3 IP 54.230.111.62 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-14 01:27:18 Last Seen2023-03-14 02:15:05 Times Seen1 Hash 707cf6eca3a2e246449dbc089439d607 a85807cd3e71ed01de0599f1c6c19be642da298a 67b8bc68c6621839f990f4592a25ef28566d85d0dd8d69a6373fa476184475d6 Loading...

	ausu.lol/	422 B	2023-03-07	2024-04-29
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2024-04-29 10:23:30 Times Seen39 Hash 7c2f67e844a4b3ea46e4532aabb53231 d3b212a6ec736bd9239a684ccef070e1eefb75e2 abd631e528da051ac3e0c1e69586a9524aebfa95cda1dbe3fd4deb41c45121cc Loading...

	ausu.lol/	357 B	2023-03-07	2024-05-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2024-05-04 01:50:21 Times Seen129 Hash 1a8aead91ac87bd63def338b35f001ce 768c938165dd5cf9093259c551c53222204b8dbd 33b5a424fb6d8890b88d621f05b8f5172e585acbd006fa9325f00be7314f13eb Loading...

	propeller-tracking.com/fv.js?t=91032	5.2 kB	2023-03-07	2024-05-04
Pretty URL propeller-tracking.com/fv.js?t=91032 IP 139.45.197.240 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:56 Last Seen2024-05-04 18:25:50 Times Seen2373 Hash 563d777535ce88943a94a6be86f378c8 8753745424d367275e3fe55a5661fe51b1e1fb72 0f467a48a494f7f63968707dc43785b728d0c17f93c12937c1e5b12798f3a98a Loading...

	ausu.lol/	167 B	2023-03-07	2023-11-04
Pretty URL ausu.lol/ IP 103.26.92.45 ASN #138959 Telekomunikasi Indonesia International Hong Kong Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:41:06 Last Seen2023-11-04 04:30:09 Times Seen13 Hash 86b9e06b1c28fcea498789dce3e599f0 83dba0b0ecb46a13a2313b451d73f5481aa4dbca 160fd21eb24c70fb270abcfe9448c12df9188e6172b7e4566ee98fc6bcd8f060 Loading...

HTTP Transactions (53)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
584dc97b4a725bab46f43b0c52ea2f21
4c7d5484aca5c64746185fa7a1e6103672fd6beb
726714a5ebdaa8dda3c669eedad6503ffd2a822cfd0bbdf5eb8a1d8ad43ad5bd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "726714A5EBDAA8DDA3C669EEDAD6503FFD2A822CFD0BBDF5EB8A1D8AD43AD5BD"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17672
Expires: Fri, 17 Feb 2023 09:43:25 GMT
Date: Fri, 17 Feb 2023 04:48:53 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
deac0af90d5521aa0251892aa50348d8
e7e9e523acec5e4a306ca186be1656a498592d73
300d1709a6b16d845fef9eb9a25dce5500cac047a1bb3c1fba5a74f6e51d1759

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "300D1709A6B16D845FEF9EB9A25DCE5500CAC047A1BB3C1FBA5A74F6E51D1759"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8315
Expires: Fri, 17 Feb 2023 07:07:29 GMT
Date: Fri, 17 Feb 2023 04:48:54 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Content-Length, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 17 Feb 2023 03:53:13 GMT
content-type: application/json
age: 3341
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4879878d8594ad779e96e43ceadae35
e81c37ddd67123e47ea15707896b807a306d8d7e
c50069d7380586c743cddc2678baab9bb04400c70c28c3102650264ef806319c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C50069D7380586C743CDDC2678BAAB9BB04400C70C28C3102650264EF806319C"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16611
Expires: Fri, 17 Feb 2023 09:25:45 GMT
Date: Fri, 17 Feb 2023 04:48:54 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: tmnY4128VdKBvLM/X6FPiBqIR57aNhWHrTS4y34kxkoQXWvW2rU9mYXeZULRx9zwYU8U1JgnfXo=
x-amz-request-id: E5WCAAKAF1J7R95G
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 17 Feb 2023 04:17:07 GMT
age: 1907
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:48:54 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

g0t0.org/

103.26.92.45

308 Permanent Redirect

0 B

URL HTTP/1.1
g0t0.org/
IP
103.26.92.45:0
ASN
#138959 Telekomunikasi Indonesia International Hong Kong Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: g0t0.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 308 Permanent Redirect
Connection: close
Location: https://g0t0.org/
Server: Caddy
Date: Fri, 17 Feb 2023 04:48:54 GMT
Content-Length: 0

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, Pragma, Expires, Cache-Control, Retry-After, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 17 Feb 2023 04:20:33 GMT
age: 1701
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d146aa123635470cfd39942f1f25dcba
274574f078e959a423262a1b95344996299ea1cf
9e2c3a542626c68d479648479e09f9570564d4e1f954f63b6ce97ae939729a3d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9E2C3A542626C68D479648479E09F9570564D4E1F954F63B6CE97AE939729A3D"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2224
Expires: Fri, 17 Feb 2023 05:25:58 GMT
Date: Fri, 17 Feb 2023 04:48:54 GMT
Connection: keep-alive

push.services.mozilla.com/

44.227.105.139

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.227.105.139:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dCBvMQkIveN+QVzUrPeF6A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ee3ib+LujdRMIOW8RuKXdLAb498=

g0t0.org/

103.26.92.45

302 Found

0 B

URL HTTP/2
g0t0.org/
IP
103.26.92.45:0
ASN
#138959 Telekomunikasi Indonesia International Hong Kong Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: g0t0.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 302 Found
location: https://ausu.lol/
server: Caddy
content-length: 0
date: Fri, 17 Feb 2023 04:48:55 GMT
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11978
Expires: Fri, 17 Feb 2023 08:08:33 GMT
Date: Fri, 17 Feb 2023 04:48:55 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11978
Expires: Fri, 17 Feb 2023 08:08:33 GMT
Date: Fri, 17 Feb 2023 04:48:55 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11978
Expires: Fri, 17 Feb 2023 08:08:33 GMT
Date: Fri, 17 Feb 2023 04:48:55 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff32076f9-7699-4060-8c4f-8ca2cdd454e2.jpeg

34.120.237.76

200 OK

8.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff32076f9-7699-4060-8c4f-8ca2cdd454e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.8 kB (8813 bytes)
Hash
043c29f528f5414d1e280640e7bd6d79
5006aea566216e56530d02f3133b5eb0d15fd1a5
01c099af56ff9d26301d66f1bca427d41c7096ec687551b656edac95b0520e4a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff32076f9-7699-4060-8c4f-8ca2cdd454e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8813
x-amzn-requestid: 510cb459-2870-46eb-9c53-da577d62f83c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AdPCKEggoAMF3vQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eec540-23f553c202ad097f53c58dc4;Sampled=0
x-amzn-remapped-date: Fri, 17 Feb 2023 00:07:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9h98BRm8m2_6fV9TkXJdvZdMMcCFe5NAd8ea5CfS2c6Hx3mGf46Xzg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 00:11:05 GMT
age: 16670
etag: "5006aea566216e56530d02f3133b5eb0d15fd1a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9395178-b457-480b-b390-87de876462fc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7875 bytes)
Hash
74cdcd8ad30a0d394dcedcc6ddb84614
60bd39733bda62448fa46ed49b11037b81f618c4
0d58fe92e205b24e34e4480d7e6ce93e4f7dcf8d524f36b2f11ec979a642db48

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc9395178-b457-480b-b390-87de876462fc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7875
x-amzn-requestid: 055a205d-ba8f-4584-ad60-15818f94cf22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AU1ovGhyIAMFc-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eb696a-324781fe2db55e8848f71aec;Sampled=0
x-amzn-remapped-date: Tue, 14 Feb 2023 10:58:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 63ux37BfULjIXhWIoE9WPj31n_SGoizWzzbVAXBwjPPucjYWaHrRtA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 21:57:53 GMT
age: 24662
etag: "60bd39733bda62448fa46ed49b11037b81f618c4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4897bbc-1d69-4c79-9ba3-64b916da496b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12017 bytes)
Hash
6d90a9cb9409ccb44e948c029c3f2f07
399ec1a30e58ff5640b0967976f3d773c67c904a
59eeb6c4fe2729558f9b8309a71c861f4a7be0a93afbe4a4ffdfec6cbf890fce

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4897bbc-1d69-4c79-9ba3-64b916da496b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12017
x-amzn-requestid: 4e448682-e3ca-4aa2-aa27-a38f877ea4ab
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ARAqlFmqIAMFSwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e9e176-6d2eb494356e733b5d46a67f;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 07:06:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 6GqSHACoKahPTqJUPa-rcOPpW0px_2olkFbhN-FL_X3dGhZCJPlM2g==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 22:43:43 GMT
age: 21912
etag: "399ec1a30e58ff5640b0967976f3d773c67c904a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12032 bytes)
Hash
dd9dfc91c131903f04b22bca2ea07569
8fac706269ae3ec4a9f60a64f6b08066e9eeb22a
d72e6a45a42dd6f6d39bdf2a68837a2fdd73b9df6e01a29dd173725b3d88e97e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3b95fd0-70b7-4757-9068-83472c90622c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12032
x-amzn-requestid: 1be7b95f-1088-4e2a-ba74-bba8a5c3b615
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AMZ_gHE7oAMFfkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e809fc-65057649605a732b64098657;Sampled=0
x-amzn-remapped-date: Sat, 11 Feb 2023 21:34:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3wc9cOb6EBcYrHuQPvVx1h8f0xSef25washUegMtRo7oeLosn4RlYg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 17:51:48 GMT
age: 39427
etag: "8fac706269ae3ec4a9f60a64f6b08066e9eeb22a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c942f8-27c2-4bf4-8e35-92d403d00f29.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7575 bytes)
Hash
1a34f09bb10a93df46b8b23e4cf0d4c0
c08103bfbfd0e097ae94773476143fcc02b126f4
4890fd0de8eb6ba08a5188eb24c4f7efad037a70f491329db7597df9ba2224fd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c942f8-27c2-4bf4-8e35-92d403d00f29.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7575
x-amzn-requestid: d8da5085-979c-4c8d-8883-94359384b9e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AKaBQE-cIAMFpHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e73d3a-5c65ae966ca81da764446a6e;Sampled=0
x-amzn-remapped-date: Sat, 11 Feb 2023 07:01:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FgnKtFzwp5CNzAfzg-z9mLG2qmUrxJ48O7SUKbJiSS67dmpPSNNeqg==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 17 Feb 2023 00:20:41 GMT
age: 16094
etag: "c08103bfbfd0e097ae94773476143fcc02b126f4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c857de7-424a-4ab4-8c7d-03d5a59d3d0e.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8178 bytes)
Hash
80aec15ae0bcdd34817188821d24af41
128a7d4ba2f258872894e18c1c410eb4072ec41a
7d60fa42da08251d37e82b5e3b549e94acec8bd01a1a5251f53d0c90192116a4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c857de7-424a-4ab4-8c7d-03d5a59d3d0e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8178
x-amzn-requestid: 3af6b500-46b4-4255-b6cc-43ea68ab33c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ARAqjE9jIAMFvdw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e9e176-47f7266725e8d2b876d67e40;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 07:06:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: cjjFVwD2kstDQd-D9pyM85C8UtGh9wF_Tej2-U8hkoAW6iXrzpamqA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 22:40:15 GMT
etag: "128a7d4ba2f258872894e18c1c410eb4072ec41a"
content-type: image/jpeg
age: 22120
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ausu.lol/

103.26.92.45

200 OK

3.0 kB

URL HTTP/2
ausu.lol/
IP
103.26.92.45:0
ASN
#138959 Telekomunikasi Indonesia International Hong Kong Limited

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5236)
Size
3.0 kB (2950 bytes)
Hash
234dd00de5ec733fb5355df4bd6bae66
2bbeeabb330875983eeb19bd4709b2e97875d7b3
9f7f247eaa2dc9a22f9346aed2b697759ef6c0d513c0905e5b47a6e494a884c5

HTTP Headers

GET / HTTP/1.1
Host: ausu.lol
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
content-encoding: gzip
content-type: text/html
date: Fri, 17 Feb 2023 04:48:55 GMT
etag: "63eeec08-b86"
last-modified: Fri, 17 Feb 2023 02:52:56 GMT
server: Caddy, nginx/1.23.3
vary: Accept-Encoding
content-length: 2950
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
1de415f58e3c4dc302478b0817697064
6535b3ee17ca2b5165a005119312caae9f39e3b5
1eb9cf52f79924235075366fb9e298d1decd474f527c39ec8a0dd16c24708886

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5748
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:56 GMT
Last-Modified: Fri, 17 Feb 2023 03:13:09 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d665ea7520d25a45f4362950ce6c7e46
de8257e9dceea94e8a6e30c76baf4c69ee8b64e6
af253f2af866e66ae882342cacdceeb6cbe64a15b413c97b4e2572e1975634f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d665ea7520d25a45f4362950ce6c7e46
de8257e9dceea94e8a6e30c76baf4c69ee8b64e6
af253f2af866e66ae882342cacdceeb6cbe64a15b413c97b4e2572e1975634f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d665ea7520d25a45f4362950ce6c7e46
de8257e9dceea94e8a6e30c76baf4c69ee8b64e6
af253f2af866e66ae882342cacdceeb6cbe64a15b413c97b4e2572e1975634f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=AW-10917194488

216.58.207.200

200 OK

51 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=AW-10917194488
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
51 kB (50846 bytes)
Hash
e76e5bf73fd56d583f3f219a21de36ce
933bf67592a6a821c2fb3bab07599641427dbf7a
92e623c490244144dac7a6958b7eb75a8881397307172478d7108fc472b5f8c2

HTTP Headers

GET /gtag/js?id=AW-10917194488 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 17 Feb 2023 04:48:56 GMT
expires: Fri, 17 Feb 2023 04:48:56 GMT
cache-control: private, max-age=900
last-modified: Fri, 17 Feb 2023 03:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 50846
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-RR9LNKL2SC

216.58.207.200

200 OK

80 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-RR9LNKL2SC
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (29466)
Size
80 kB (80474 bytes)
Hash
8d15794b047840438771767393705b0d
3f827435525a2f60bba68dfe87759e701c7eb578
06e59984533d61334f483aed4005b50b94046a8ad9c75cdfe6e7309db0390993

HTTP Headers

GET /gtag/js?id=G-RR9LNKL2SC HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 17 Feb 2023 04:48:56 GMT
expires: Fri, 17 Feb 2023 04:48:56 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 80474
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
d665ea7520d25a45f4362950ce6c7e46
de8257e9dceea94e8a6e30c76baf4c69ee8b64e6
af253f2af866e66ae882342cacdceeb6cbe64a15b413c97b4e2572e1975634f6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:56 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sectigo.com/

104.18.32.68

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
17ff2e7cdecae547043c8710de779c21
56a8037af3051dc97b2f4acda01d5e2d2b7bba55
d0bde4c93afa58714e5ebfb1329077668899c25ff493659ccc9375cc190ddb4e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 17 Feb 2023 04:48:56 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 15 Feb 2023 20:20:04 GMT
Expires: Wed, 22 Feb 2023 20:20:03 GMT
Etag: "56a8037af3051dc97b2f4acda01d5e2d2b7bba55"
Cache-Control: max-age=487266,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 79abe4bea88fb500-OSL

cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.min.js

104.17.25.14

200 OK

3.0 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/js-sha256/0.9.0/sha256.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (8830)
Size
3.0 kB (2977 bytes)
Hash
1cf760c79216e6b8559aea791ab5cb8d
62d310bfcfec341609491e28bfebd30e4e0e8d76
15c7460f2f89d5d98674339159442044b921d40ec62e5315d9945cd29edad1ca

HTTP Headers

GET /ajax/libs/js-sha256/0.9.0/sha256.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ausu.lol
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 17 Feb 2023 04:48:56 GMT
content-type: application/javascript; charset=utf-8
content-length: 2977
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec6-2339"
last-modified: Mon, 04 May 2020 16:11:50 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 646572
expires: Wed, 07 Feb 2024 04:48:56 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LGLxHFtn9JScf6ZSDkloBByWXXBQ5Q4pw%2ByzNMm4%2ByMR%2F4uVyxeLCvsW%2Ffu7DLxjf4WJbeXgGgonu103aEnRW3gBuU4qjEBF5HH7Hz%2FZ%2FwPtUxM7%2FV983effC8QlqlohrqUubzjn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 79abe4c02e88b51e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
132a598ce1b61dcce5ebceec39efa27c
a65129efe0bb1b36d623db5eecc2ef1278c43941
b56291adce09195ab0ef04e21be8fee6645c730238101d1af8f40c3544f2b6af

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B56291ADCE09195AB0EF04E21BE8FEE6645C730238101D1AF8F40C3544F2B6AF"
Last-Modified: Wed, 15 Feb 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11424
Expires: Fri, 17 Feb 2023 07:59:20 GMT
Date: Fri, 17 Feb 2023 04:48:56 GMT
Connection: keep-alive

unphionetor.com/vctx?t=91032

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vctx?t=91032
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /vctx?t=91032 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ausu.lol
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
server: nginx
date: Fri, 17 Feb 2023 04:48:56 GMT
access-control-allow-origin: https://ausu.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: 643d85405a7f42c22336c7a8b8ceae28
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-RR9LNKL2SC&gtm=45je32f0&_p=1930292048&cid=366687281.1676609336&ul=en-us&sr=1280x1024&_s=1&sid=1676609335&sct=1&seg=0&dl=https%3A%2F%2Fausu.lol%2F&dt=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&en=page_view&_fv=1&_nsi=1&_ss=2&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-RR9LNKL2SC&gtm=45je32f0&_p=1930292048&cid=366687281.1676609336&ul=en-us&sr=1280x1024&_s=1&sid=1676609335&sct=1&seg=0&dl=https%3A%2F%2Fausu.lol%2F&dt=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&en=page_view&_fv=1&_nsi=1&_ss=2&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-RR9LNKL2SC&gtm=45je32f0&_p=1930292048&cid=366687281.1676609336&ul=en-us&sr=1280x1024&_s=1&sid=1676609335&sct=1&seg=0&dl=https%3A%2F%2Fausu.lol%2F&dt=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&en=page_view&_fv=1&_nsi=1&_ss=2&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ausu.lol
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://ausu.lol
date: Fri, 17 Feb 2023 04:48:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

unphionetor.com/vbri?t=91032&bid=undefined&aid=undefined&tp=4886

139.45.197.236

204 No Content

0 B

URL HTTP/2
unphionetor.com/vbri?t=91032&bid=undefined&aid=undefined&tp=4886
IP
139.45.197.236:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /vbri?t=91032&bid=undefined&aid=undefined&tp=4886 HTTP/1.1
Host: unphionetor.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://ausu.lol
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Fri, 17 Feb 2023 04:48:58 GMT
access-control-allow-origin: https://ausu.lol
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: d65bcc56c37d8bebcde3f525cf70095c
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
eff46f3d27963a8edd58a33b5abb3c08
c97fb23045a9448fe2c133974635516f0d83cceb
e2b0e7711f589dfb7ba385a2b8ee51e3757da42383d5c6c0d162bfcc4a7dd1cd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6188
Cache-Control: max-age=106281
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Etag: "63edeb38-1d7"
Expires: Sat, 18 Feb 2023 10:20:20 GMT
Last-Modified: Thu, 16 Feb 2023 08:37:12 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 17 Feb 2023 04:48:59 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1669-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
feadcaa14bc5417ba021bd74d767c791
5ada0117694bc51df0c2dfa9f98e2740d2b12f83
19f768e330c53a08b0b97f86daf3b4644ecb9a4ebe867e0b04b725dbb2403876

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
79e3b3c5467f9d44e279d8ec65025467
ec3611dae7f4d2af4cc4328c2d4de378b1587cb3
e7110ecb7f49693d69cd9f748b1270586d75b546c7bef49daf911d279444eecf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

connect.facebook.net/en_US/fbevents.js

31.13.72.12

200 OK

28 kB

URL HTTP/2
connect.facebook.net/en_US/fbevents.js
IP
31.13.72.12:0
ASN
#32934 FACEBOOK

File type
ASCII text, with very long lines (64348)
Size
28 kB (27843 bytes)
Hash
be5a1814429d0a129322abda3791987f
9e0eeee65e17a9c6df149ed1f01d3d7194833fd8
75afa897dd6f4b97b0697589569c7c4f87e32b79addf981febc78a4ff741210e

HTTP Headers

GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
report-to: {"max_age":86400,"endpoints":[{"url":"https:\/\/www.facebook.com\/browser_reporting\/?minimize=0"}],"group":"coep_report"}
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-embedder-policy-report-only: require-corp;report-to="coep_report"
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: ocOqKjzlQqOb5Q/O19T/TCNMtL4Hixt6POUxivxlcnmKb9igcaFSZQdy4aRG4PWeDHLGcEgfgITJrS9A61qP5Q==
priority: u=3,i
content-length: 27843
x-fb-trip-id: 1904183273
date: Fri, 17 Feb 2023 04:48:59 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

www.recaptcha.net/recaptcha/api.js?render=explicit

142.250.74.3

200 OK

558 B

URL HTTP/2
www.recaptcha.net/recaptcha/api.js?render=explicit
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (855), with no line terminators
Size
558 B (558 bytes)
Hash
0922dfac0a121e5d5df78899fc1c6088
c354706d36d65ebb3c6751f13f3ecdca04f08b5c
66dc3b1798f4af8ce926d7cd6303f7730f9d7a7016c18d94da3be2084c0017d6

HTTP Headers

GET /recaptcha/api.js?render=explicit HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 17 Feb 2023 04:48:59 GMT
date: Fri, 17 Feb 2023 04:48:59 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 558
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

googleads.g.doubleclick.net/pagead/viewthroughconversion/10917194488/?random=1676609335564&cv=11&fst=1676609335564&bg=ffffff&guid=ON&async=1&gtm=45be32f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fausu.lol%2F&tiba=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&auid=1665216585.1676609336&data=event%3Dgtag.config&rfmt=3&fmt=4

142.250.74.162

200 OK

948 B

URL HTTP/2
googleads.g.doubleclick.net/pagead/viewthroughconversion/10917194488/?random=1676609335564&cv=11&fst=1676609335564&bg=ffffff&guid=ON&async=1&gtm=45be32f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fausu.lol%2F&tiba=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&auid=1665216585.1676609336&data=event%3Dgtag.config&rfmt=3&fmt=4
IP
142.250.74.162:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (2055), with no line terminators
Size
948 B (948 bytes)
Hash
2127a8c01b5da7fe6bb48112121bcf17
8c0257c40c2cfc2bed4388c7a0aa45ac9c141d42
37c9ff710c736f3cd771976219785fa3e8a77815ec1058d79e50a11ada62431e

HTTP Headers

GET /pagead/viewthroughconversion/10917194488/?random=1676609335564&cv=11&fst=1676609335564&bg=ffffff&guid=ON&async=1&gtm=45be32f0&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fausu.lol%2F&tiba=%E7%BF%BB%E7%89%86%E6%9C%80%E5%BF%AB%E6%9C%80%E7%A9%A9%E5%A6%A5%20%E4%BA%9E%E6%B4%B2%E5%8D%80%E6%9C%80%E4%BD%B3%20VPN%20%7C%20auVPN&auid=1665216585.1676609336&data=event%3Dgtag.config&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Fri, 17 Feb 2023 04:48:59 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 948
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 17-Feb-2023 05:03:59 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
eff46f3d27963a8edd58a33b5abb3c08
c97fb23045a9448fe2c133974635516f0d83cceb
e2b0e7711f589dfb7ba385a2b8ee51e3757da42383d5c6c0d162bfcc4a7dd1cd

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6188
Cache-Control: max-age=106281
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Etag: "63edeb38-1d7"
Expires: Sat, 18 Feb 2023 10:20:20 GMT
Last-Modified: Thu, 16 Feb 2023 08:37:12 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
79e3b3c5467f9d44e279d8ec65025467
ec3611dae7f4d2af4cc4328c2d4de378b1587cb3
e7110ecb7f49693d69cd9f748b1270586d75b546c7bef49daf911d279444eecf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
feadcaa14bc5417ba021bd74d767c791
5ada0117694bc51df0c2dfa9f98e2740d2b12f83
19f768e330c53a08b0b97f86daf3b4644ecb9a4ebe867e0b04b725dbb2403876

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
9128ca3e5e7d4becd3311db7a5ddf777
79cf1850b67c355562b3d134f4c6b7075cf70dae
d21c8be4454f42173fea50ef59009e842144fa02c26f8bb7d01f747c218bae54

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5644
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 17 Feb 2023 04:48:59 GMT
Etag: "63ee2eac-13a"
Last-Modified: Fri, 17 Feb 2023 03:14:55 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 314

cdn.taboola.com/libtrc/unip/1466290/tfa.js

151.101.65.44

200 OK

18 kB

URL HTTP/2
cdn.taboola.com/libtrc/unip/1466290/tfa.js
IP
151.101.65.44:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (59742)
Size
18 kB (18370 bytes)
Hash
d5afbb40b4af9a4b2491bd953ee3723b
9162d8a6aac58f702398695d1e0542974defd0f4
7d232bf67604d56b84f0b0eea3d51710b4aa705857f298139bd4acc23b8eefbd

HTTP Headers

GET /libtrc/unip/1466290/tfa.js HTTP/1.1
Host: cdn.taboola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: jQii7HdYKc93DDGQ/C5wEwJ4MVshS98M2QdYl/glffBTpwMwLTHMYayFJeWb/TIoXnPxu/9TZyo=
x-amz-request-id: RAC4ZKZ19R87NK5W
x-amz-replication-status: COMPLETED
last-modified: Sun, 12 Feb 2023 11:19:29 GMT
etag: "34de4b4c5ad588a94c503b90a190043f"
x-amz-version-id: ieqA3M0l.iuCiBOiBnU81ZE8JL_usRgs
content-type: application/javascript; charset=utf-8
server: AmazonS3
content-encoding: gzip
accept-ranges: bytes
date: Fri, 17 Feb 2023 04:48:59 GMT
via: 1.1 varnish
age: 0
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1676609340.621433,VS0,VE189
cache-control: private,max-age=14401
vary: Accept-Encoding
abp: 2
access-control-allow-origin: *
content-length: 18370
X-Firefox-Spdy: h2

t.co/i/adsct?bci=3&eci=2&event_id=6fb44aa6-6924-4487-932f-718e7bbc3f1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60045adf-5830-4650-8327-5d8ce02f437a&tw_document_href=https%3A%2F%2Fausu.lol%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6hvl&type=javascript&version=2.3.29

104.244.42.197

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=6fb44aa6-6924-4487-932f-718e7bbc3f1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60045adf-5830-4650-8327-5d8ce02f437a&tw_document_href=https%3A%2F%2Fausu.lol%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6hvl&type=javascript&version=2.3.29
IP
104.244.42.197:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=6fb44aa6-6924-4487-932f-718e7bbc3f1b&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=60045adf-5830-4650-8327-5d8ce02f437a&tw_document_href=https%3A%2F%2Fausu.lol%2F&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o6hvl&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 17 Feb 2023 04:48:59 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=56c24226-962c-450c-90f2-c416c4e75211; Max-Age=63072000; Expires=Sun, 16 Feb 2025 04:48:59 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 0a37c9185e393813
strict-transport-security: max-age=0
x-response-time: 105
x-connection-hash: c4201b0ff1f28e17ef2fc6a7ffcb3df570a9ebd6834586d49010fdde06550b1a
X-Firefox-Spdy: h2

js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html

54.230.111.62

200 OK

200 B

URL HTTP/2
js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
IP
54.230.111.62:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Size
200 B (200 bytes)
Hash
93afeeb17bc37e711759584dbfc50d47
bbbc9e5d68854172c90b993064df560996a2a433
f22005da41e15b7adb453814b37a794f7c6b955f086a6c5fc9980e3c3f6c8bca

HTTP Headers

GET /v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=utf-8
content-length: 200
last-modified: Wed, 15 Feb 2023 16:06:52 GMT
accept-ranges: bytes
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
timing-allow-origin: *
date: Fri, 17 Feb 2023 03:50:17 GMT
cache-control: max-age=31536000
etag: "93afeeb17bc37e711759584dbfc50d47"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: fuCbmLeGScKpPX-umTEm-nn0lkd01srDu7Nqgsg09c7yZwwj10dRmA==
age: 3524
X-Firefox-Spdy: h2

js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js

54.230.111.62

200 OK

631 B

URL HTTP/2
js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
IP
54.230.111.62:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (526)
Size
631 B (631 bytes)
Hash
f8f6a4584135f737b26927596ce6e0a7
609ea9e9c46563fb1dc78a7967c926394e73ffab
250a0782da875705bd206ee23c2a46abf90656645a81e084126c5e8c53eeb9d6

HTTP Headers

GET /v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
content-length: 631
last-modified: Wed, 15 Feb 2023 16:06:51 GMT
accept-ranges: bytes
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
date: Fri, 17 Feb 2023 04:11:42 GMT
cache-control: max-age=31536000
etag: "f8f6a4584135f737b26927596ce6e0a7"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WNYV1Go9TJl7SZKGCpfM2oQjtL5HLFdngsQQGt4CpbSyNVH_IDdb4w==
age: 2244
X-Firefox-Spdy: h2

m.stripe.network/inner.html

151.101.192.176

200 OK

527 B

URL HTTP/2
m.stripe.network/inner.html
IP
151.101.192.176:0
ASN
#54113 FASTLY

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Size
527 B (527 bytes)
Hash
e02352ef72e8a9563463c07174b0e50f
7a41613f7eae0819d1a4785eae3617fdbb33b9b3
2275fff71f8cbf1f25a1af7f7bbe5ecbc868ed0b16d345a8ce31770f66fc8ea5

HTTP Headers

GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Fri, 17 Feb 2023 04:49:01 GMT
via: 1.1 varnish
age: 81
x-request-id: 8d981d67-fcbb-46dd-9290-82b2dd804150
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 11
x-timer: S1676609341.309811,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 527
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e7fbdeb-eb4b-4286-a70d-97d02418dfbd.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9184 bytes)
Hash
78a74ecdc0f128d21cc83a686396fa17
7901f09dcafaa293ee25d77ab87fd059b1e572f9
661c19ebad767b529e9a83161471cf548e120ce6eebb0799a358c77bb3d4c728

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4e7fbdeb-eb4b-4286-a70d-97d02418dfbd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 9184
x-amzn-requestid: eb381e91-0e81-4a55-8f23-2cf97313c10f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AD1lnGFloAMFraw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e49c8a-53f24d474b03802863a95444;Sampled=0
x-amzn-remapped-date: Thu, 09 Feb 2023 07:11:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: R4uBnfIk13DkWhhFhP8Lkb5QUJmGhrpzwfCIYfcgT0lRuL_Ejyt1Wg==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Thu, 16 Feb 2023 19:13:59 GMT
age: 34503
etag: "7901f09dcafaa293ee25d77ab87fd059b1e572f9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

js.stripe.com/v3

54.230.111.62

200 OK

0 B

URL HTTP/2
js.stripe.com/v3
IP
54.230.111.62:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /v3 HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
last-modified: Thu, 16 Feb 2023 19:06:13 GMT
server: Cloudfront
access-control-allow-origin: *
x-content-type-options: nosniff
strict-transport-security: max-age=31556926; includeSubDomains; preload
timing-allow-origin: *
content-encoding: br
date: Fri, 17 Feb 2023 04:48:43 GMT
cache-control: max-age=60
etag: W/"707cf6eca3a2e246449dbc089439d607"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ifRvrHUVH-Zwmf5iFKCBeNSKvt0MekGyZHLbo1M4a5yA2AXcyn5xFg==
age: 14
X-Firefox-Spdy: h2

propeller-tracking.com/fv.js?t=91032

139.45.197.240

200 OK

0 B

URL HTTP/2
propeller-tracking.com/fv.js?t=91032
IP
139.45.197.240:0
ASN
#9002 RETN Limited

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /fv.js?t=91032 HTTP/1.1
Host: propeller-tracking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://ausu.lol/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 17 Feb 2023 04:48:56 GMT
content-type: text/javascript; charset=utf8
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
pragma: no-cache
cache-control: no-transform, no-store, no-cache, must-revalidate, max-age=0
expires: Tue, 11 Jan 1994 10:00:00 GMT
x-trace-id: bad91fd24828e598ea52bb512348d48c
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL