Report - kddgsw.hhb369.com/

Report Overview

Submitted URL
kddgsw.hhb369.com/
IP
107.154.76.179
ASN
#19551 INCAPSULA
Submitted
2023-03-25 17:04:19
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
kddgsw.hhb369.com	unknown	2022-09-05T18:47:16Z	2023-03-25T18:04:06Z	14 kB	151 kB	107.154.76.179
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-29T05:09:12Z	3.2 kB	45 kB	34.120.237.76
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-29T08:59:28Z	680 B	1.9 kB	172.64.155.188
kdhbvf.hhb369.com	unknown	2022-09-08T18:47:04Z	2023-02-19T18:17:31Z	403 B	1.3 kB	163.171.140.79
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-29T05:09:11Z	2.0 kB	5.3 kB	23.36.77.32
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-29T05:09:03Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-29T05:09:31Z	333 B	391 B	34.117.237.239
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-29T05:09:31Z	413 B	5.9 kB	34.160.144.191
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-29T05:09:32Z	606 B	127 B	35.163.49.154
kdssl.hhb369.com	unknown	2022-09-10T18:46:40Z	2023-03-19T18:04:13Z	403 B	1.3 kB	163.171.140.79

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-25 17:04:24	medium	107.154.76.179	Client IP	ETPRO HUNTING Observed Suspicious Hex Encoded String Inbound (decodeURIComponent)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (70)

	URL	Size	First Seen	Last Seen
	kddgsw.hhb369.com/preloadImages.js	842 B	2023-03-09	2023-06-17
Pretty URL kddgsw.hhb369.com/preloadImages.js IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:10:55 Last Seen2023-06-17 18:48:39 Times Seen7 Hash 8f0210bf8b6bb949d61b84ee672b0cbd 598fc7f29194d5094d7bb84ab0fd955cf0cbf36d ead33a2734daa265f4139fc1a3bfdc03600dc4ca6856716a7308e4d4ae9336d4 Loading...

	kddgsw.hhb369.com/_index_kd.jsp	48 B	2023-03-09	2023-03-29
Pretty URL kddgsw.hhb369.com/_index_kd.jsp IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:10:55 Last Seen2023-03-29 22:28:12 Times Seen3 Hash d68da3a77226d5ed5159e88d8dd8b0da e06ee12d2d40e3e72e63849133f09b5ab3ce2f0b 951ba7abb348038314a0da49a44800cf743b7df89f5ce4adfd32724a729795c3 Loading...

	kddgsw.hhb369.com/	57 B	2023-03-29	2023-03-29
Pretty URL kddgsw.hhb369.com/ IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:28:12 Last Seen2023-03-29 22:28:12 Times Seen1 Hash 5926ea9540937884ef6cb1be65aa5035 c4fdaec526fd6821896a2b8f87a325033bd78c33 fd95e085022310a96ea12acdf3e1bc59e46a3ad21393befb28a6a57a0449bca9 Loading...

	kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5	31 B	2023-03-29	2023-03-29
Pretty URL kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5 IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:28:12 Last Seen2023-03-29 22:28:12 Times Seen1 Hash 0c63f73439f60c5d2aa94032bc607dba 7a678425e51c43d2e25ee862bbe2546bbe000684 1430a197000c54c3e4d28c8bdfd3b69f8e6c7280d17bf5ac0fe9c63881ffe35c Loading...

	kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5	35 B	2023-03-09	2023-03-29
Pretty URL kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5 IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:10:55 Last Seen2023-03-29 22:28:12 Times Seen3 Hash 6a7c967c18360a2ab47edf4f174a8be1 018c77b937a26539c4240d82178798af1bd8349a a251fe29dcfb39e398a408c7fa230fd3116edf7ee93fc6ffa509ff4b8ae3bc4a Loading...

	kddgsw.hhb369.com/mask.js	4.4 kB	2023-03-09	2023-06-17
Pretty URL kddgsw.hhb369.com/mask.js IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:10:55 Last Seen2023-06-17 18:48:39 Times Seen7 Hash 380c574c334bc35922cd47ce2366aa4b b96ae0779a1ab147fcac4d38ca1cc28dbedbd9b5 fae2d5c268ff51cf89f721172f286da862ab70767e57fe2e62e5b3f623de0756 Loading...

	kddgsw.hhb369.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=6&cb=459247078	146 kB	2023-03-29	2023-03-29
Pretty URL kddgsw.hhb369.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=6&cb=459247078 IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-29 22:28:12 Last Seen2023-03-29 22:28:12 Times Seen1 Hash 77e6f107e0deb015199faddec8b1430f 0228e96ac84d74988858cb18b3f779cab6a4610c 74bf8e4e74cb401a7b03f8679cc4d15e86170c4d85e79cb4ddedddc2285c3178 Loading...

	kddgsw.hhb369.com/js/_index.js	8.1 kB	2023-03-09	2023-06-17
Pretty URL kddgsw.hhb369.com/js/_index.js IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:10:55 Last Seen2023-06-17 18:48:39 Times Seen11 Hash d05c988920011d4d47f447dfa0fc4297 6433abd9f51ce4dcc621d591b99cdb0c8365dd94 08fa5bd69f9a0b15d32e632c0d955e7d75fe4de39b36059b73dc8242b91160d2 Loading...

	kddgsw.hhb369.com/js/jquery/jquery-1.8.3.min.js	94 kB	2023-03-07	2024-04-25
Pretty URL kddgsw.hhb369.com/js/jquery/jquery-1.8.3.min.js IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:21 Last Seen2024-04-25 05:10:02 Times Seen7155 Hash e1288116312e4728f98923c79b034b67 8b6babff47b8a9793f37036fd1b1a3ad41d38423 ba6eda7945ab8d7e57b34cc5a3dd292fa2e4c60a5ced79236ecf1a9e0f0c2d32 Loading...

	kddgsw.hhb369.com/_index_kd.jsp	431 B	2023-03-13	2023-03-29
Pretty URL kddgsw.hhb369.com/_index_kd.jsp IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 02:25:41 Last Seen2023-03-29 22:28:12 Times Seen2 Hash a4f90ecf2f213551d42a5d1c6be8a0f0 bed9f7f58730e6a5145e6771449fe0f7622ea013 3ecde3203a767a3cd6af3b8a211ab03964e63f2d0019ac9443317f712c2d68db Loading...

	kddgsw.hhb369.com/js/drop_down.js	419 B	2023-03-09	2023-06-17
Pretty URL kddgsw.hhb369.com/js/drop_down.js IP 107.154.76.179 ASN #19551 INCAPSULA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 21:10:55 Last Seen2023-06-17 18:48:39 Times Seen11 Hash 76d14236efef170457ac1e203776384b fd0157ae262555fcd9f9a7466bed103e7089fc38 b3ba0f3f215a9476ea354fd58974d25cd09d19bf21695dc3e717f5b8e55840af Loading...

		Size	First Seen	Last Seen
	#1 Eval - dfbbad69e20de0e28eb4f617f88da39d	11 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9917 Hash dfbbad69e20de0e28eb4f617f88da39d aada8c761c9839de74c9e0a3f646245903ade635 ab60c1ca8ca90078c97602a13b894dc646ed6938845f76ca4de0b82daed10677 Loading...

	#2 Eval - 70dabbe009e701d4dea689692cfacf96	15 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9880 Hash 70dabbe009e701d4dea689692cfacf96 3ae4bba61f049941854984320b05ee05b0333c72 fead589f4fcd300fa99db8a6dcd98de5c6a7c7e0b6294f58fbaf6d49c76ee4a8 Loading...

	#3 Eval - f864b35ac95430bc6aeb496bf2ed082f	27 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9941 Hash f864b35ac95430bc6aeb496bf2ed082f 354f87b56a53e82a01a9f4046d14f6a252a7306b 637b9222317e0e767545e9a30e37b345aedd784b494c7ca1deb4f3394590ef28 Loading...

	#4 Eval - 60190cb2b5a1d64c6c22fdda4d9e29e0	6 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9919 Hash 60190cb2b5a1d64c6c22fdda4d9e29e0 40102dbf908059999bc913f7bf15496897be5abc d8e60ebbbb2b1a9d5f0dd2cfc7e810688583ad8afb626fcc6c357f756e799530 Loading...

	#5 Eval - 6d0bcc7d16cddf092b92a81a88d46ae2	37 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9912 Hash 6d0bcc7d16cddf092b92a81a88d46ae2 058f5aad922e59188daa5803859c34e2fafb4b08 2df3a2b97bb192deb2588839c6973f323182e3e7ada29dd28dd7af8a25ccb647 Loading...

	#6 Eval - ea2e4cc9df5be8e71813e64bc3f6192d	27 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:23 Times Seen9881 Hash ea2e4cc9df5be8e71813e64bc3f6192d 8f4ede67838d6b98d12f9f4023b7d1a6fe0a3d03 39fafa61c757866eb313e3096b7cbdef2a30c83e80c7830de58011ac6f762220 Loading...

	#7 Eval - 9d4812d7408ddf7de197527dc539f128	29 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9886 Hash 9d4812d7408ddf7de197527dc539f128 e2aba3504ad22fc1e85c060f454e9e7dc454d830 13ffc640d7bb981cd2fa3a3a76f2119b60155413b0a4c9911b881c3d8694ffc2 Loading...

	#8 Eval - 1622caeb74e094da6ab9e76bab8ee308	29 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:24 Times Seen9882 Hash 1622caeb74e094da6ab9e76bab8ee308 54872bed6489c41b6bd5c7ea479863d01101ac1f a33815e7ee33a5e2e993b07a8089370b73f4ab17c28173674a2a4bf68f360a34 Loading...

	#9 Eval - 54e57903f8bac0a9aa37299ad5f2377e	46 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9875 Hash 54e57903f8bac0a9aa37299ad5f2377e 914abde16cef88a9ec6440ad2bba9fa03e56cc58 60addc42b8dd987986e799c1d9f22ba70067eb2fda2202edde66578d2db0cc8a Loading...

	#10 Eval - c9f7198c57735fa7a7a8ac2cc18dd542	9 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:02:46 Last Seen2024-04-25 10:48:14 Times Seen24919 Hash c9f7198c57735fa7a7a8ac2cc18dd542 d78ec33d89c7283a59982f10f71e7e305fa1ce93 ebf49dcd836f810084c14e0f2dab4dc1768bbdc5980481bf201fcf76771dff7a Loading...

	#11 Eval - ac408718f90b4869b863ddc727d91e3b	11 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9918 Hash ac408718f90b4869b863ddc727d91e3b 25371f581459458b7dd1ed30aead59658d9489bf 5da5924441330ccd35db945b25fec66d4cdfdcaa94a8370184d93abf1c70bf69 Loading...

	#12 Eval - 350052386c44f930fe96151db3383ace	12 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-25 10:48:14 Times Seen19114 Hash 350052386c44f930fe96151db3383ace 9979e0947b58f29a711ad5afed356853b921e9ac bc1a6bd7f4ddbcd78987ea609d4595bdf2422cb1be9e85af5d6c199f62000d6c Loading...

	#13 Eval - 20c24fc3f9b9c1f8a608a323f9b6d5ac	5 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:24 Times Seen9873 Hash 20c24fc3f9b9c1f8a608a323f9b6d5ac 5cb7b7fda365bd6a45a964bf0564f728b64ae9ab f016276bfd9d0c87d462da1ded531041858fb1d9de3c2847d6da2f0083d7493f Loading...

	#14 Eval - 8400e05902a35980362b8678710c6652	18 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-25 10:48:14 Times Seen19166 Hash 8400e05902a35980362b8678710c6652 f8b855e4e73f2379f26b0691dc179bdfa4fa9eaa addd231a2f2807fb0b4ebdadd2bc23ae2a1cb93a92b07fa6e20ee9af832a8b47 Loading...

	#15 Eval - 2e9e3b99016016e8d228bec54dda989c	9 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9908 Hash 2e9e3b99016016e8d228bec54dda989c 694883bf8e6a3b2c41b5eebb886d6239fb28f7b1 e6d77b37a3426cf302697c5cd4e87be6c4a86ba4c75f3323933851f88996818a Loading...

	#16 Eval - ec8bf516fafa51927e71233e18e82503	6 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9919 Hash ec8bf516fafa51927e71233e18e82503 a882f143d6c53ffe9108554f617f716e0119580d 5ec9c2c2913538bbedadd97c25943dc5fedf8617e6bed980714f5e9a9b2e24e6 Loading...

	#17 Eval - ede734df353b9e562a963297ba7c87c0	30 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9912 Hash ede734df353b9e562a963297ba7c87c0 e361269d3adbed83677ff3a95c6850aff9fcdef0 11a1ee0bde5a782d084d961b98a42edff5b26bedf9dc24360b24932b44a1e5e3 Loading...

	#18 Eval - b7d4d94e84fbad8d7040a0e25458b40a	14 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9895 Hash b7d4d94e84fbad8d7040a0e25458b40a 5c21041c93822166c14ecdc78a09a41f2b6baffa 4de935da6bb4d5db50f69ff2b445ca9a775965951cf5687c2778d1712529bda4 Loading...

	#19 Eval - cf8eb3a6281bbc5283df73117e15ee6b	24 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-25 10:48:14 Times Seen18536 Hash cf8eb3a6281bbc5283df73117e15ee6b 555b973dafe65782e867452d16afa9fec784b020 ae3766b014bf6a5b6452d14a9f1de103d584e98933db2577122c136bfb9eb0c6 Loading...

	#20 Eval - 1333ef87bbe31f545269a9544c6a3756	16 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-25 10:48:15 Times Seen18582 Hash 1333ef87bbe31f545269a9544c6a3756 33f5ccdefacf248ad39b8f3f9a5da1ffbf03f854 d17194a96291e963420dd3361221101c8fdb7d8d382fc8993563576d3fd29dd6 Loading...

	#21 Eval - 85824de2ddcbac40e643761e7a9bbea1	13 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9880 Hash 85824de2ddcbac40e643761e7a9bbea1 aa12de0b2a946197b8eab089c61c7cce0f140827 fd7946685ac9cb0c883a6bf17e87cadbb42a9587607228abd40ba2d7e9d3a843 Loading...

	#22 Eval - 3428957f1e9334006e8f58235b13e756	8 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9917 Hash 3428957f1e9334006e8f58235b13e756 5932ec3b29ebe803fd4c2ea4c6466594a8d26e98 8bd555867ffc79c51b068d10c968024c8c89764bfc1328af639db13f7772dc14 Loading...

	#23 Eval - d68edf5b9de9ee4efc99d3d8b7c32cce	12 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9922 Hash d68edf5b9de9ee4efc99d3d8b7c32cce 960bd0f68e6c299ec70b9a5875cd07f566ee13ae fc46e7c5e303e1d0c08399ca0cfd0f41f900785c48767b83c3dec78c3071d5cf Loading...

	#24 Eval - 5fb4aaaca9dcd7e4bdd13e6cb525f5f2	17 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9890 Hash 5fb4aaaca9dcd7e4bdd13e6cb525f5f2 3125298847e22983a3ffa5a336858fd47f04ac26 76db878eaef5c327d799591407f672bd85c802f631d227331107830b1674096a Loading...

	#25 Eval - ada87d459740200b714fc82782d2d74d	21 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9910 Hash ada87d459740200b714fc82782d2d74d 2b8aca3e1389f6d9bea8e6c1ae0b85b51f01cb8f 0f9d76bc0eb53ebd5f3b05bbaa9b2af8ed4c568387b8a05ad5bceb6c672c08de Loading...

	#26 Eval - 9ed987966c06808b50f9fddc24931bd1	5 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:24 Times Seen9925 Hash 9ed987966c06808b50f9fddc24931bd1 6feda84dcc2663ca33e76e422493a0b516d69899 f79926c01dc6dfc2c3b562072c8b86353e1ef6b41f9f314ea82639fb5a05e659 Loading...

	#27 Eval - 1442d6a776e2fbc53ea37426f652cf06	15 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:24 Times Seen9918 Hash 1442d6a776e2fbc53ea37426f652cf06 d8d4bb76c6420dd34955c75ad515836498b03a67 85d394336cd42ecfc5456a8da2f7d48cd2758a0b282781643b5f950013fbc014 Loading...

	#28 Eval - 1ac192483dc9109c58d614be646b53d4	9 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9916 Hash 1ac192483dc9109c58d614be646b53d4 e727e7bd5f6f8c596d3f18c28ab3adf1e1f648f6 a7ee4ff8c5a8c59e9d3aa188d886da9a46115dd1eef5b1f630c30707eb9edf56 Loading...

	#29 Eval - 91b21cf9c70987d6e7ada8f7dd71333e	84 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9876 Hash 91b21cf9c70987d6e7ada8f7dd71333e 750a123249b1f096176e7453c1518c2ae271d103 088e93e9a3b72b7b10673f7851072230b6c1ba25d30961ed6d4e02b663df55bc Loading...

	#30 Eval - cb71c7ef87fda3f07fca16ff0e5dfc7a	39 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9876 Hash cb71c7ef87fda3f07fca16ff0e5dfc7a f9685d28562d64f3dc682e295925dcd6989d331c aeda8791c13855121ae691baa0b4e5eb5f9711c28ecd354ba09e1a421eff3636 Loading...

	#31 Eval - 7d99c2b827c44bd336e6dbbccecdd3fd	17 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen10496 Hash 7d99c2b827c44bd336e6dbbccecdd3fd 0c442b9b39bde00818aaee29e9f5e321205ab863 512cd32f64ec1e7adec9996902a58e18dcac185384dcc9280b1d4cff5f71aad0 Loading...

	#32 Eval - 554838a8451ac36cb977e719e9d6623c	6 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9928 Hash 554838a8451ac36cb977e719e9d6623c b90d94578d1a527500b3c0a2970f0a6515fcc70d 9390ef32addf32bfdea786bc1e20679592498068bcbfcd357ea10ab64ea35e47 Loading...

	#33 Eval - 61b5c50094a59006dbee6a76fc45f403	23 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9917 Hash 61b5c50094a59006dbee6a76fc45f403 2d7806f38716a43e8c137edf6a2ce743a37dd269 0b50f6dc0f1e1ec1df8092c7a6a7b6cb12a032061b0b6b3fab819579d3379935 Loading...

	#34 Eval - c59832b8df36b9a820c7ef7a60ab60a9	22 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9881 Hash c59832b8df36b9a820c7ef7a60ab60a9 15a1a6f1d05b144ab14a200f5ecec1e57d63ca46 9bf439f32692df2a181814f6a6eda509e2c2744d7ff70bdcfe5b305673bceef2 Loading...

	#35 Eval - b08ee3ad14c1a7a65db935e55aa3b319	17 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9881 Hash b08ee3ad14c1a7a65db935e55aa3b319 8d8772cbf089eb1b99b01faeb9de2ba0790e67ae 59bfdf19bd92f0ff92dc0c493ff43a19ab288a9d364f1ee6a6576319ed93106b Loading...

	#36 Eval - a56bc3ed1e00c38138422e4768d8eb3b	39 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9877 Hash a56bc3ed1e00c38138422e4768d8eb3b 686e034128dba9ba481128d60d7216686578bdd4 17f93f34acd3f5bfcdcb7ec122710f0455b5eaddca9d291e00f117f63dd3cdb9 Loading...

	#37 Eval - d65c067152080cc10b1022e2831a36a7	13 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9880 Hash d65c067152080cc10b1022e2831a36a7 7e2a6260e988dd49a70bea58f2b4751b2ddc83ba b110746fdd7b8851db5401bc6bed1ed5e640132a131b1a04f8ad6e419a9288b9 Loading...

	#38 Eval - bd4b9558232620979858ba87b82d0002	18 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:23 Times Seen9883 Hash bd4b9558232620979858ba87b82d0002 1d744a2ef2ec756f361bb6c8faeee7ca311b955f cb7ef195b9f3a7e3322007d9e9920c57db176770fdebac24d052724f69628502 Loading...

	#39 Eval - ec41c3cbe04113c06bcb49cff7ece6b7	23 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9907 Hash ec41c3cbe04113c06bcb49cff7ece6b7 46b800206c9d3a1a83ab95f817885256f25a06e3 22b04595352775e334273c710ce6651d314362c4740ce9bedef51926084592ea Loading...

	#40 Eval - 11e6cd860ee0f7d4257038a253d303cd	78 B	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 21:08:49 Last Seen2023-03-29 23:04:27 Times Seen60 Hash 11e6cd860ee0f7d4257038a253d303cd 0b30beeec8f1e89aa2219693b1dc47bb112d7d40 b86eac2cd6e020d06115484cc0fc31c9efe81661228a2912c9d24c017d87662e Loading...

	#41 Eval - d6c664e097b9852e2741d2d5e845d17b	19 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9945 Hash d6c664e097b9852e2741d2d5e845d17b 0f1c8bb4616b837ab5c48b0396366b2db885d97b e9f512b04d36507ea3084f0f9d0b34a56ea913205bee762e3822276bfa03a8c0 Loading...

	#42 Eval - ec3f2a2f7c1cd40ee4c35dd8e31bd6ed	20 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9931 Hash ec3f2a2f7c1cd40ee4c35dd8e31bd6ed 721bb42fa91e4f0a795b4633ceec390fd77e293f ed2f592c334f968423c64f8a2d6d40969aa1638c7b112d1404135f8c19c5c112 Loading...

	#43 Eval - 4dcc5875245f6ca176841b738fec3229	73 kB	2023-03-29	2023-03-29
Pretty Observations First Seen2023-03-29 22:28:12 Last Seen2023-03-29 22:28:12 Times Seen1 Hash 4dcc5875245f6ca176841b738fec3229 3bb706fa947d1b79300c8820210584e7d2b8859a 0aa034c76ca02eb305853c9c0fe2c9b43fd812fb8c381ceb343d0759203110b4 Loading...

	#44 Eval - 27b9e8ee937beec0809fb34fda1ddf7b	20 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9912 Hash 27b9e8ee937beec0809fb34fda1ddf7b 7c3612f7bd867e6391dc0c335e4e86b895311c2f 376af77bec228136fe68820159cdd85e7dee88e8d4012f271a7c7e3fa8cb961b Loading...

	#45 Eval - 5c7d8e264462855c136d5418414eba0d	21 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9915 Hash 5c7d8e264462855c136d5418414eba0d 1ad08c07d2a4c32c51eae77a3c9c708380eb4aa8 557f660ab468b60da17465750f7cc68df8b0776844c6aaca8ebeb26bee13da93 Loading...

	#46 Eval - 678ced14fe07222e7546fa5e791e5ea4	16 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9879 Hash 678ced14fe07222e7546fa5e791e5ea4 bc9b0c4f2e64c35c0092586c9c731eb7d1c781d5 1fda644c37854aff9560145e4274a952961e41aeb8107d5351a696ee61a4c089 Loading...

	#47 Eval - 24deed6e1d4b688cb9b4ed7e4122c41c	13 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9917 Hash 24deed6e1d4b688cb9b4ed7e4122c41c 65e447c54305dd9339396c154db07818f9675b34 4deae959aff553f287e3236a8660b8897f8752000468d2e2cf12b341fb0cdd80 Loading...

	#48 Eval - 0db30215cd2704e5b00dc2375563eab4	15 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:05 Last Seen2024-04-25 10:48:14 Times Seen19133 Hash 0db30215cd2704e5b00dc2375563eab4 e3d7cdb911d32f5d178ef1d7aaf3c14d945f0920 de7f7b137340e1d218833d7afef73ea711325f139a4428eed317ca0374f67c91 Loading...

	#49 Eval - 9a51c7bc5f4a7355c5a95df917f8562b	28 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9915 Hash 9a51c7bc5f4a7355c5a95df917f8562b 1bf0f7c215c58ec44d159d7a3896542b78b572a2 5be03a981cd3ea43ae469e444e0c2044fd1f62ff756c66af704b41bfb8a534cf Loading...

	#50 Eval - b875641d35848453d748e30f507257d8	39 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9880 Hash b875641d35848453d748e30f507257d8 b4ed0326a975d65d7f0ff6684d10f76b5f0c70bb f5662777f3170bb676c0ebf3b6a5ca9e47d520f6dc36857a9366ace59f9373f6 Loading...

	#51 Eval - 8c7367acff313b8cc92167e9cf6377a4	11 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9896 Hash 8c7367acff313b8cc92167e9cf6377a4 051061c35dede06e751f127657cfd8dabc9b47ce 3cc64514d3abed3dc3b2e415611859ab78d3b9603db4ea43cea997437a1d3c94 Loading...

	#52 Eval - 05b8e35f93bc745e61dd7e2cd1f57880	3 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9919 Hash 05b8e35f93bc745e61dd7e2cd1f57880 d5a998f82b079627752459766aff20e69379c835 7732fd718939ed21d789c661fe8cb1396221570f4f1ad183b99ecd5cfab0a0a1 Loading...

	#53 Eval - 638c9916678ee8a7daa19512cc1d2730	22 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:23 Times Seen9915 Hash 638c9916678ee8a7daa19512cc1d2730 ab83830091905ec484220e15372611e52518dc10 b61450ba5bafc525e2d88f4cadc1ad21e2f9c4677b2a536a24a5a0feafe945e6 Loading...

	#54 Eval - 3f29eaeb153e9810192934758710b772	22 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:12 Last Seen2024-04-25 08:44:23 Times Seen10210 Hash 3f29eaeb153e9810192934758710b772 016fe1c086bd726733148487bc8f52427c16b408 cf96000c74802c69ff15429ce2cfaa3826f3da79125fa1b27c7bff8ae539dccf Loading...

	#55 Eval - a689097727785bb0e94e7a64d6745480	13 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:03 Last Seen2024-04-25 10:48:14 Times Seen19108 Hash a689097727785bb0e94e7a64d6745480 270ab5e5a178a457e9b7ba8c3f4ad4b4014bdceb 56e57af29d4af8b1fb7008dbfdf84a764970a6673f1f19165f1a8498ce903d93 Loading...

	#56 Eval - f67e7c912ad8aad97ee08ad5ab012d35	19 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9880 Hash f67e7c912ad8aad97ee08ad5ab012d35 07b4fcf97d3d497c44356dfaa6e4b13455f9ab03 188f286466468be490176215d19fa0a4a14f0cd759c2f53271fa7e4f7f0f42c2 Loading...

	#57 Eval - ea0d3f3a3c2fe62e86536d6c69a71134	14 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:24 Times Seen9894 Hash ea0d3f3a3c2fe62e86536d6c69a71134 b4c056cfffae51e3eb0572bfb8ab77b2433d64a0 ffdf9f8beda9c02931b5cc25f6739cc6572a555ff75bd193bd73cf0fa9c9b197 Loading...

	#58 Eval - f25cc9bf81bc9b72290565687a011dd4	18 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:03:04 Last Seen2024-04-25 10:48:14 Times Seen18579 Hash f25cc9bf81bc9b72290565687a011dd4 98d624e473eecad652ddd8505917825d8f219296 793401a4baa2fb67b2049b633d5ebb8c25d2dc67d41071aabd7c180ddbdd2599 Loading...

	#59 Eval - 8ef0d95da6323915a544f519142a2fed	26 B	2023-03-07	2024-04-25
Pretty Observations First Seen2023-03-07 01:07:11 Last Seen2024-04-25 08:44:23 Times Seen9880 Hash 8ef0d95da6323915a544f519142a2fed cdf7a1be8bf82a6dbf3bdcd1e7e07e817b37aa55 bd1a5e40de88be784b132db124269458f1f2147147203184d78db5f6d3c10b7b Loading...

HTTP Transactions (39)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14939
Expires: Sat, 25 Mar 2023 21:13:07 GMT
Date: Sat, 25 Mar 2023 17:04:08 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10088
Expires: Sat, 25 Mar 2023 19:52:16 GMT
Date: Sat, 25 Mar 2023 17:04:08 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 16:15:27 GMT
content-type: application/json
age: 2921
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1313ee2f06606d09c45b06ff9e8e1001
285ca89d1d3ea45d35832bc6d9827f834b3bfe21
63463447d29550c3734f621be02ec85290fbdf4612f79f9fad7e94f7e066dcb0

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "63463447D29550C3734F621BE02EC85290FBDF4612F79F9FAD7E94F7E066DCB0"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4476
Expires: Sat, 25 Mar 2023 18:18:44 GMT
Date: Sat, 25 Mar 2023 17:04:08 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 96hzb1V4Nmv3dHHBIx8yFde1AmB4DfD2mM7iGQ7uykQFQkkimuGGZ9L9poj8R5Os+1CfAfUOZcg=
x-amz-request-id: PDTRJ3CBJCAANHRA
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 16:54:59 GMT
age: 549
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 17:04:08 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 16:14:33 GMT
age: 2976
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

kddgsw.hhb369.com/

107.154.76.179

200

74 B

URL HTTP/1.1
kddgsw.hhb369.com/
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
HTML document, ASCII text, with no line terminators
Size
74 B (74 bytes)
Hash
a0d1eb39d34d10ad77daee2a7b85153c
a69914bcef7f18e5ac2d2b0fab5cb851944dfc27
18d97faef1a321a10110b2d404cdc78ee4bb1cd5672db598b84a3a4cbf2498ee

HTTP Headers

GET / HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
cache-control: NO-CACHE
pragma: NO-CACHE
Connection: close
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:08 GMT
Set-Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; domain=hhb369.com; Path=/; HttpOnly; Comment=CABIBCBC
visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; expires=Sat, 23 Mar 2024 22:43:02 GMT; HttpOnly; path=/; Domain=.hhb369.com
nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; path=/; Domain=.hhb369.com
incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==; path=/; Domain=.hhb369.com
X-CDN: Imperva
Transfer-Encoding: chunked
X-Iinfo: 1004-16410997-16410999 NNNN CT(290 -1 0) RT(1679763847979 0) q(0 1 4 14) r(7 7) U24

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
70300b32357c46f3448d567189b64cb3
6ba66a5cf63cdbfeaec59b936151cc812bac56df
5a2b4f9fc5ebaa8062058bf68eae75fc28e06c6ef6a0e79c3c761c1d92f81cb9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5A2B4F9FC5EBAA8062058BF68EAE75FC28E06C6EF6A0E79C3C761C1D92F81CB9"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8411
Expires: Sat, 25 Mar 2023 19:24:20 GMT
Date: Sat, 25 Mar 2023 17:04:09 GMT
Connection: keep-alive

push.services.mozilla.com/

35.163.49.154

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.163.49.154:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: NRtJROnU7BvJjZFyKDH6jw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qcD6V+7eJaJQhqxla3RvWjgASMk=

kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5

107.154.76.179

200

607 B

URL HTTP/1.1
kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
607 B (607 bytes)
Hash
0d1d4fddb1ae5211bc4451c7ace1d09b
8e438c012aa0e2360bc7d2bc4fb5580e6f3dc3db
8b6de80ff8c7909b5a11d33a9888e2ccae4904209d671ef8c41becac08037671

HTTP Headers

GET /?58fbe28e-1397-47f3-811c-f07735c45fb5 HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Content-Type: text/html;charset=utf-8
Date: Sat, 25 Mar 2023 17:04:09 GMT
X-CDN: Imperva
Transfer-Encoding: chunked
X-Iinfo: 4-16410998-16411025 NNNN CT(290 -1 0) RT(1679763847979 726) q(0 0 2 -1) r(5 5) U24

kddgsw.hhb369.com/_index.jsp

107.154.76.179

302

0 B

URL HTTP/1.1
kddgsw.hhb369.com/_index.jsp
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /_index.jsp HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 
Location: /_index_kd.jsp
Content-Type: text/html;charset=utf-8
Content-Length: 0
Date: Sat, 25 Mar 2023 17:04:09 GMT
X-CDN: Imperva
X-Iinfo: 4-16410998-16411025 SNNN RT(1679763847979 1353) q(0 0 0 -1) r(3 3) U24

kddgsw.hhb369.com/tlbcp

107.154.76.179

200

0 B

URL HTTP/1.1
kddgsw.hhb369.com/tlbcp
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /tlbcp HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
CACHE-CONTROL: NO-CACHE
PRAGMA: NO-CACHE
Connection: close
Content-Type: text/html;charset=UTF-8
Content-Length: 0
Date: Sat, 25 Mar 2023 17:04:09 GMT
X-CDN: Imperva
X-Iinfo: 7-3598493-3598494 NNNN CT(289 -1 0) RT(1679763849340 0) q(0 0 3 -1) r(6 6) U24

kddgsw.hhb369.com/_index_kd.jsp

107.154.76.179

200

2.8 kB

URL HTTP/1.1
kddgsw.hhb369.com/_index_kd.jsp
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1333), with CRLF, LF line terminators
Size
2.8 kB (2752 bytes)
Hash
5ca4770754f6d88ae06e96b6b186a1a2
8d593bdcec81eb7d709900cd6bab06969676ff86
3873236f89d6ee7dc6d4918598275ea087a1c71e0727654a87811519f0ec7768

HTTP Headers

GET /_index_kd.jsp HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5
Connection: keep-alive
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 
Content-Type: text/html;charset=utf-8
Date: Sat, 25 Mar 2023 17:04:09 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-encoding
X-CDN: Imperva
X-Iinfo: 4-16410998-16411025 SNNN RT(1679763847979 1655) q(0 0 0 -1) r(3 3) U24

kddgsw.hhb369.com/favicon.ico

107.154.76.179

404

3 B

URL HTTP/1.1
kddgsw.hhb369.com/favicon.ico
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
ASCII text, with no line terminators
Size
3 B (3 bytes)
Hash
4f4adcbf8c6f66dcfc8a3282ac2bf10a
c35a9fc52bb556c79f8fa540df587a2bf465b940
6b3c238ebcf1f3c07cf0e556faa82c6b8fe96840ff4b6b7e9962a2d855843a0b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/?58fbe28e-1397-47f3-811c-f07735c45fb5
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 404 
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:09 GMT
X-CDN: Imperva
Transfer-Encoding: chunked
X-Iinfo: 10-11797027-11797028 NNNN CT(289 -1 0) RT(1679763849441 1) q(0 0 3 -1) r(6 6) U24

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8475
Expires: Sat, 25 Mar 2023 19:25:25 GMT
Date: Sat, 25 Mar 2023 17:04:10 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8475
Expires: Sat, 25 Mar 2023 19:25:25 GMT
Date: Sat, 25 Mar 2023 17:04:10 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg

34.120.237.76

200 OK

5.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.3 kB (5296 bytes)
Hash
aecd210f66f83c73c3450d047ae7448a
d68861e96e12e8a3f293dbae8b687f05b6e15afb
22b69c41c56e5538d91f824d5dc2e63ab5563f99ae8e429c9166f4b397cacd0e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca67e232-d39a-48ac-a0be-316741df0c53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5296
x-amzn-requestid: 11fdf0c8-244c-4cd5-bfa7-4c77d777174f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiuzEqkIAMFXOw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17f8-5c241d63598dbf595b54ead5;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:36:56 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: b1KWFmKdRQ4DU0v5JmC7AJatpv2B5FAHKVWL7pFiyh13fqYDA5qydA==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:13 GMT
age: 68817
etag: "d68861e96e12e8a3f293dbae8b687f05b6e15afb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.5 kB (6511 bytes)
Hash
02e0767e0c72d95e30337ad42f5d15b3
79aa21ca35c9d98ea7d0713d219e9b67083bdc05
7991a0c4d409cca49259cb626d0de39684635f14fad72e074b303235026673a9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdaf1038f-e1d8-41a0-a039-85a85d278271.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6511
x-amzn-requestid: 38d33f4d-2b85-4666-b778-04f4b4dfdf10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihSFIdIAMFRjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a1-036a28e75189d05209396933;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:29 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: eYAgUDZFGkaskq0A77VgX54hvvjtQtClrFyED3COkankS76uD7hTAQ==
via: 1.1 53ee82a7eb57de316cba44c26680b4a6.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:52 GMT
age: 69618
etag: "79aa21ca35c9d98ea7d0713d219e9b67083bdc05"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6185 bytes)
Hash
dd191e3a122d6e31f81e6e9d434c58d6
aec88022970c93289434f8097e4a663da33e5271
1f00c901ef479637ec703d7924526a970cb13dd2635b2bbb68b285df9d98e011

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6f9abe8-74dc-41f6-984c-4a9e53a6198a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6185
x-amzn-requestid: 223de50b-9a7e-4ac7-9305-336658eec4ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTiwYHoLoAMFXtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e1802-226bd8524ade75234053ff50;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:37:06 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: Ye0ADORg1hFVLxcNVj-qS60tlfguOEtyTx_XFU4ooJOcDHqNsqV3kw==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:57:14 GMT
age: 68816
etag: "aec88022970c93289434f8097e4a663da33e5271"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7800 bytes)
Hash
5773974a7341690f006b052ad02c94db
1b11316c952e2195da1646dd94671669e7e3bc2b
a06b72138745500cacc919fea29536ebd4188a1c483f6123e3402458e299f16a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4af2ab94-b5c3-4517-b9d7-97ddb369f62d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7800
x-amzn-requestid: bad99b1e-3923-4de9-8bea-4dd04e96f7cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTigfFGcIAMFdBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e179c-0826b92d4c4af16553503600;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:24 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 9AGLmjvUSTKIsYIWECOR8QwdF4PP1tP1TweUm0VYvxQ0qskqj3YuLA==
via: 1.1 3698a5f586d9ecca74d570e41f4c8516.cloudfront.net (CloudFront), 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:43:53 GMT
age: 69617
etag: "1b11316c952e2195da1646dd94671669e7e3bc2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8635 bytes)
Hash
73f9697594d173d623b331b5c35eab8d
6323f751f6b7517f062a0442480f672086ea02a1
116cb71658b31e87f19c390b242c684f6505cc8edf90b7fc934ac726fc7ddd18

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bda2583-e595-45ff-852f-d4b6bd713109.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8635
x-amzn-requestid: fc715b03-f48f-4300-b752-ab157a684f08
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CTihcETyIAMFhYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641e17a2-68f685ec0f50dae026ea3f64;Sampled=0
x-amzn-remapped-date: Fri, 24 Mar 2023 21:35:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: i6dsVaC_gPijsRqh_EL5tZYZpjNEbQJvKIpPq501TIJZzcLUWeRz9w==
via: 1.1 ba490acb2ea716cd57876286ed686786.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 24 Mar 2023 21:45:56 GMT
age: 69494
etag: "6323f751f6b7517f062a0442480f672086ea02a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (4000 bytes)
Hash
85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:56:24 GMT
age: 40066
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

kddgsw.hhb369.com/CSS/frontend/master_frontend.css

107.154.76.179

200

2.0 kB

URL HTTP/1.1
kddgsw.hhb369.com/CSS/frontend/master_frontend.css
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
ASCII text, with CRLF line terminators
Size
2.0 kB (2039 bytes)
Hash
50f314baac2fe9a2a48340e07908a12e
501747bc50e31c829d56a7bf1ad78aff2f2cdbb5
b18c1c4df374ae76948f6d49af689c23bc10806b085e8e80bb35917a2ad9288b

HTTP Headers

GET /CSS/frontend/master_frontend.css HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"6849-1609828466000"
Last-Modified: Tue, 05 Jan 2021 06:34:26 GMT
Content-Type: text/css
Date: Sat, 25 Mar 2023 17:04:09 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-encoding
X-CDN: Imperva
X-Iinfo: 4-16410998-16411025 SNNN RT(1679763847979 1966) q(0 0 0 -1) r(3 3) U24

kddgsw.hhb369.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=6&cb=459247078

107.154.76.179

200 OK

20 kB

URL HTTP/1.1
kddgsw.hhb369.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=6&cb=459247078
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
ASCII text, with very long lines (65536), with no line terminators
Size
20 kB (20395 bytes)
Hash
62e36e052038321de04f0484351748e6
387cf30da40a5483bbfbae403be2ec0d80228390
07c50bb4e2270629fa59f8ad9bd80c915f9e5eed62d7bc6c290e71594aebd7e6

Detections

NIDS	Severity	Alert
suricata	medium	ETPRO HUNTING Observed Suspicious Hex Encoded String Inbound (decodeURIComponent)

HTTP Headers

GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3&ns=6&cb=459247078 HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: application/javascript
Content-Encoding: gzip
X-Robots-Tag: noindex
Content-Length: 20395

kddgsw.hhb369.com/js/_index.js

107.154.76.179

200

2.3 kB

URL HTTP/1.1
kddgsw.hhb369.com/js/_index.js
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
ASCII text, with CRLF line terminators
Size
2.3 kB (2300 bytes)
Hash
032c1422f854beaf49f5cf45b72379d7
85e3cd4047be32d64b135bccbffb41dbdc0e94f9
707c3aee5d6b235c74caa695a8c08ba71eb3e23bcd0cd0bd5b9bea615806a208

HTTP Headers

GET /js/_index.js HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"8117-1655258840000"
Last-Modified: Wed, 15 Jun 2022 02:07:20 GMT
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:10 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-encoding
X-CDN: Imperva
X-Iinfo: 10-11797027-11797028 SNNN RT(1679763849441 590) q(0 0 0 -1) r(3 3) U24

kddgsw.hhb369.com/mask.js

107.154.76.179

200

1.2 kB

URL HTTP/1.1
kddgsw.hhb369.com/mask.js
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
1.2 kB (1151 bytes)
Hash
fa5b38a6fea39def62d8427d09e544de
3d2ec779ab45b1e13bff513f2f6b12ae5c20fc56
4d0e9bcc3da522d2662900ac91de972496783560ddbf61435701196ecd95375c

HTTP Headers

GET /mask.js HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"4357-1421744670000"
Last-Modified: Tue, 20 Jan 2015 09:04:30 GMT
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:10 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-encoding
X-CDN: Imperva
X-Iinfo: 5-27234900-27234901 NNNN CT(286 -1 0) RT(1679763849955 0) q(0 0 3 -1) r(6 6) U24

kddgsw.hhb369.com/preloadImages.js

107.154.76.179

200

845 B

URL HTTP/1.1
kddgsw.hhb369.com/preloadImages.js
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size
845 B (845 bytes)
Hash
524702202f912668c8219f01dcc53b4b
4f61720860ffb3ddaf5b3a090fc56428e856eb10
41b37b07967b8f462344e103865b1507e542fca3ec02b263f56bdb2c6282fea3

HTTP Headers

GET /preloadImages.js HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"845-1421744450000"
Last-Modified: Tue, 20 Jan 2015 09:00:50 GMT
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:10 GMT
X-CDN: Imperva
Transfer-Encoding: chunked
X-Iinfo: 2-7511379-7511380 NNNN CT(289 -1 0) RT(1679763849956 0) q(0 0 3 -1) r(6 6) U24

kddgsw.hhb369.com/js/drop_down.js

107.154.76.179

200

419 B

URL HTTP/1.1
kddgsw.hhb369.com/js/drop_down.js
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
ASCII text, with CRLF line terminators
Size
419 B (419 bytes)
Hash
76d14236efef170457ac1e203776384b
fd0157ae262555fcd9f9a7466bed103e7089fc38
b3ba0f3f215a9476ea354fd58974d25cd09d19bf21695dc3e717f5b8e55840af

HTTP Headers

GET /js/drop_down.js HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"419-1421744620000"
Last-Modified: Tue, 20 Jan 2015 09:03:40 GMT
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:10 GMT
X-CDN: Imperva
Transfer-Encoding: chunked
X-Iinfo: 7-3598498-3598499 NNNN CT(296 -1 0) RT(1679763849956 0) q(0 0 3 -1) r(6 6) U24

kddgsw.hhb369.com/js/jquery/jquery-1.8.3.min.js

107.154.76.179

200

34 kB

URL HTTP/1.1
kddgsw.hhb369.com/js/jquery/jquery-1.8.3.min.js
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
ASCII text, with very long lines (65482), with CRLF line terminators
Size
34 kB (33929 bytes)
Hash
31a719e42068ec34e850e0e8d92462f3
9017ba4cdb1a0bda51870abfee8e8394ae4d2cc1
ae6e5502dc7390c198fd7fd3ee8cbfcd5d32c48541344a472e79a2d725daebab

HTTP Headers

GET /js/jquery/jquery-1.8.3.min.js HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"93637-1421744620000"
Last-Modified: Tue, 20 Jan 2015 09:03:40 GMT
Content-Type: text/html;charset=UTF-8
Date: Sat, 25 Mar 2023 17:04:10 GMT
Transfer-Encoding: chunked
Content-Encoding: gzip
Vary: Accept-encoding
X-CDN: Imperva
X-Iinfo: 4-16411106-16411107 NNNN CT(299 -1 0) RT(1679763849954 0) q(0 0 3 -1) r(6 6) U24

kddgsw.hhb369.com/_Incapsula_Resource?SWKMTFSR=1&e=0.15163934498460618

107.154.76.179

200 OK

1 B

URL HTTP/1.1
kddgsw.hhb369.com/_Incapsula_Resource?SWKMTFSR=1&e=0.15163934498460618
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b

HTTP Headers

GET /_Incapsula_Resource?SWKMTFSR=1&e=0.15163934498460618 HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==; ___utmvc=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

HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: text/plain
X-Robots-Tag: noindex
Content-Length: 1

kddgsw.hhb369.com/img.jpg?0.24115740407330244

107.154.76.179

200

3.6 kB

URL HTTP/1.1
kddgsw.hhb369.com/img.jpg?0.24115740407330244
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 205x45, components 3\012- data
Size
3.6 kB (3585 bytes)
Hash
5efd627c29d308649a4147e5016df640
f1b65e53cee74edb4d4dd2f5a0ce12c4ca8b93dc
090dd0a5aef7eb3d70175ea5d4fe59edabc4f3816fce393d9ba7e1ebb1bbe617

HTTP Headers

GET /img.jpg?0.24115740407330244 HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/_index_kd.jsp
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Content-Type: image/jpg;charset=UTF-8
Content-Length: 3585
Date: Sat, 25 Mar 2023 17:04:11 GMT
X-CDN: Imperva
X-Iinfo: 10-11797027-11797028 SNNN RT(1679763849441 2052) q(0 0 0 -1) r(3 3) U24

kddgsw.hhb369.com/images/icon_all.gif

107.154.76.179

200

54 B

URL HTTP/1.1
kddgsw.hhb369.com/images/icon_all.gif
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
GIF image data, version 89a, 20 x 4\012- data
Size
54 B (54 bytes)
Hash
834f4a370c7cd95a5ab1cc749eac7ad8
8601ab4e042a6d021547abd510b1e4fe610d0be7
2d4759fcd7bbb9015dd90060eba88413e54655219e48bff2c01e47ec5f2faffa

HTTP Headers

GET /images/icon_all.gif HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/CSS/frontend/master_frontend.css
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"54-1421744510000"
Last-Modified: Tue, 20 Jan 2015 09:01:50 GMT
Content-Type: image/gif
Content-Length: 54
Date: Sat, 25 Mar 2023 17:04:11 GMT
X-CDN: Imperva
X-Iinfo: 5-27234900-27234901 SNNN RT(1679763849955 1543) q(0 0 0 -1) r(3 3) U24

kddgsw.hhb369.com/frontend_images/browser_icon.png

107.154.76.179

200

7.0 kB

URL HTTP/1.1
kddgsw.hhb369.com/frontend_images/browser_icon.png
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
PNG image data, 26 x 112, 8-bit/color RGBA, interlaced\012- data
Size
7.0 kB (7046 bytes)
Hash
e2f01fcad75d22936cb13f2a8efcaa6b
da733142d6091355524e1e3cdfa0bab54c027ca5
11cd56848295d6ca12a4cca3efa88361cd531957b305da5a0ba8c0477332e662

HTTP Headers

GET /frontend_images/browser_icon.png HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/CSS/frontend/master_frontend.css
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"7046-1606197944000"
Last-Modified: Tue, 24 Nov 2020 06:05:44 GMT
Content-Type: image/png
Content-Length: 7046
Date: Sat, 25 Mar 2023 17:04:11 GMT
X-CDN: Imperva
X-Iinfo: 2-7511379-7511380 SNNN RT(1679763849956 1543) q(0 1 1 -1) r(3 3) U24

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
d6e7003919eb0959c0d5b5633a945580
4953d00a351feea530c1c0fed09192b85a26144a
e36c871d86d12413d499f164e902d6e56d52c03518048a5e450fa52bdc0fd92d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 17:04:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 20:40:58 GMT
Expires: Wed, 29 Mar 2023 20:40:57 GMT
Etag: "4953d00a351feea530c1c0fed09192b85a26144a"
Cache-Control: max-age=358004,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad8bb5109fc1bfe-OSL

ocsp.sectigo.com/

172.64.155.188

200 OK

471 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
471 B (471 bytes)
Hash
d6e7003919eb0959c0d5b5633a945580
4953d00a351feea530c1c0fed09192b85a26144a
e36c871d86d12413d499f164e902d6e56d52c03518048a5e450fa52bdc0fd92d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 17:04:13 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 22 Mar 2023 20:40:58 GMT
Expires: Wed, 29 Mar 2023 20:40:57 GMT
Etag: "4953d00a351feea530c1c0fed09192b85a26144a"
Cache-Control: max-age=358003,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7ad8bb510fb5b511-OSL

kddgsw.hhb369.com/images/loginBg.jpg

107.154.76.179

200

70 kB

URL HTTP/1.1
kddgsw.hhb369.com/images/loginBg.jpg
IP
107.154.76.179:0
ASN
#19551 INCAPSULA

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1920x1200, components 3\012- data
Size
70 kB (70456 bytes)
Hash
0c1333ef02b4e2a0d35e6b0630b40d1d
03bdc58b7c8be4df8f673f5938ade95b3ca110cf
caa1b0ae2eb19c27531a00a520935d68cad88c6c4f0273ef2ee48a93620e2359

HTTP Headers

GET /images/loginBg.jpg HTTP/1.1
Host: kddgsw.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/CSS/frontend/master_frontend.css
Cookie: JSESSIONID=AA24ABCC7A555AA3762FF8D09146E4C4.sode06; visid_incap_2806257=+lzBDOCATKekb8Faga93vYgpH2QAAAAAQUIPAAAAAAAYvDmw1JvE7veZBuIEGEaE; nlbi_2806257=IznPefntoADWYU6T7JikaQAAAADycRkp34tRvPRnH5wgtYXv; incap_ses_632_2806257=DrA5fScIOH5keRb0kVHFCIgpH2QAAAAAQTV1pm8dQJ0e7WTPoK+OCw==

HTTP/1.1 200 
Accept-Ranges: bytes
ETag: W/"70456-1609828466000"
Last-Modified: Tue, 05 Jan 2021 06:34:26 GMT
Content-Type: image/jpeg
Content-Length: 70456
Date: Sat, 25 Mar 2023 17:04:11 GMT
X-CDN: Imperva
X-Iinfo: 4-16411106-16411107 SNNN RT(1679763849954 1538) q(0 0 0 -1) r(3 3) U24

kdssl.hhb369.com/pixel.png?0.47801040770557324

163.171.140.79

200 OK

862 B

URL HTTP/1.1
kdssl.hhb369.com/pixel.png?0.47801040770557324
IP
163.171.140.79:0
ASN
#54994 QUANTILNETWORKS

File type
PNG image data, 7 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
862 B (862 bytes)
Hash
7c38a9e85ce9e97141ad826c8ea99e3e
220a24256d2851e67dde1ef10b4a9335fe256e32
b20fd0a47ebc87e989079dfdefcc3f308dfcf06baf00f7b2e35b51cbee4d8046

HTTP Headers

GET /pixel.png?0.47801040770557324 HTTP/1.1
Host: kdssl.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 17:04:13 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ETag: W/"3617-1421744572000"
Last-Modified: Tue, 20 Jan 2015 09:02:52 GMT
Content-Encoding: gzip
Via: 1.1 PS-FRA-01Qsa154:9 (W), 1.1 PShlamstdAMS1se91:17 (W)
X-Px: ms PShlamstdAMS1se91AMS,ms PS-FRA-01Qsa154FRA(origin)
X-Ws-Request-Id: 641f298d_PShlamstdAMS1se91_8651-48524
Server: PWS/8.3.1.0.8

kdhbvf.hhb369.com/pixel.png?0.1863007916125966

163.171.140.79

200 OK

862 B

URL HTTP/1.1
kdhbvf.hhb369.com/pixel.png?0.1863007916125966
IP
163.171.140.79:0
ASN
#54994 QUANTILNETWORKS

File type
PNG image data, 7 x 30, 8-bit/color RGBA, non-interlaced\012- data
Size
862 B (862 bytes)
Hash
7c38a9e85ce9e97141ad826c8ea99e3e
220a24256d2851e67dde1ef10b4a9335fe256e32
b20fd0a47ebc87e989079dfdefcc3f308dfcf06baf00f7b2e35b51cbee4d8046

HTTP Headers

GET /pixel.png?0.1863007916125966 HTTP/1.1
Host: kdhbvf.hhb369.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://kddgsw.hhb369.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 17:04:13 GMT
Content-Type: text/html;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
ETag: W/"3617-1421744572000"
Last-Modified: Tue, 20 Jan 2015 09:02:52 GMT
Content-Encoding: gzip
Via: 1.1 PShlamstdAMS1se91:17 (W)
X-Px: ms PShlamstdAMS1se91AMS(origin)
X-Ws-Request-Id: 641f298d_PShlamstdAMS1cc96_27181-27058
Server: PWS/8.3.1.0.8

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (70)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML