r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a9f1d4d98705c281fed3b60343463200
db6f8aa98d2eda4e5473b116a222c3055568bb78
164d11173045b569cafb32e300e4c1ec6d6ab177fd34d0414cc40c541268779f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "164D11173045B569CAFB32E300E4C1EC6D6AB177FD34D0414CC40C541268779F"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9688
Expires: Fri, 25 Nov 2022 12:37:22 GMT
Date: Fri, 25 Nov 2022 09:55:54 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4244
Cache-Control: max-age=92761
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:55:54 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:41:55 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2532
Expires: Fri, 25 Nov 2022 10:38:06 GMT
Date: Fri, 25 Nov 2022 09:55:54 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 09:17:26 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2308
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: /m81I/z6vPSB/al8/RjuRWnqlpDL56otUvTVXdyiKPj5ikDyApf3zcASP3xj1xUsx1eger+2OQ8=
x-amz-request-id: S48EYA0HN79DF90X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 09:40:45 GMT
age: 909
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 09:55:54 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
33rdderryscouts.com/
200 OK 22 kB IP
ASN #20860 Iomart Cloud Services Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1025), with CRLF, LF line terminators
Hash 1bf1d16eb45620960e63e71fa9a6521c
af0d75c0ab54769eff5722195353d6bbbb9605fa
5a8c2d141ca80b5e2b64e47a75baf1f3ed5eb24772349deb90195faec49e3616
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET / HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:54 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
X-Pingback: http://33rdderryscouts.com/xmlrpc.php
Link: <http://33rdderryscouts.com/>; rel=shortlink
Set-Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534; expires=Fri, 25-Nov-2022 10:19:54 GMT; path=/
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
33rdderryscouts.com/wp-content/themes/scouts/style.css
200 OK 7.5 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/style.css
IP
ASN #20860 Iomart Cloud Services Limited
File type ASCII text, with CRLF line terminators
Hash e2ff7cd6966100d6e88cc7af173554a4
e5da07dab6e18c1170c7dfa34f541e19b0b4383f
66afcac3f8ae3fb3fb6a1a554b4f168e4f540b10e5bbeca822352198f780ecfc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/style.css HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2015 19:37:25 GMT
Accept-Ranges: bytes
Content-Length: 7476
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
33rdderryscouts.com/wp-content/themes/scouts/cssmenu/styles.css?ver=4.3.30
200 OK 11 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/cssmenu/styles.css?ver=4.3.30
IP
ASN #20860 Iomart Cloud Services Limited
File type ASCII text, with very long lines (460), with CRLF line terminators
Hash c851f7540cb6fee6ea8304a320f6f95a
2624803b9a7d64b8ebf0827a1c62c67ecff1c01a
35cf34e46ebc1e4e9d09e1d7429db64110c093c19ec32401b888147d5297a295
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/cssmenu/styles.css?ver=4.3.30 HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:35 GMT
Accept-Ranges: bytes
Content-Length: 11375
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
33rdderryscouts.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
200 OK 7.2 kB URL HTTP/1.1 33rdderryscouts.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1
IP
ASN #20860 Iomart Cloud Services Limited
File type ASCII text, with very long lines (7085), with CRLF line terminators
Hash 512b871a2830e44259bc3ce3343afcd0
875bce76a77590c3c438bbc6e014b39c23c8c88d
c4d24f6b27cc7ceea56fbec786bb1f486fdad9a1f998f760f76d1f44671e105c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.2.1 HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Tue, 23 Jul 2013 14:28:26 GMT
Accept-Ranges: bytes
Content-Length: 7200
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
33rdderryscouts.com/wp-content/plugins/simple-responsive-slider/assets/css/responsiveslides.css?ver=4.3.30
200 OK 2.3 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/plugins/simple-responsive-slider/assets/css/responsiveslides.css?ver=4.3.30
IP
ASN #20860 Iomart Cloud Services Limited
File type ASCII text, with CRLF line terminators
Hash 3280d770c291a564bd5b8f2292852889
88a4da65bcd900e0bf336da2e5e8490fc8ba6735
a381a86371a18935c525292f4cf93f548b99c82ea50392715b5d6bb50f43abed
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/simple-responsive-slider/assets/css/responsiveslides.css?ver=4.3.30 HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Mon, 12 Oct 2015 19:40:33 GMT
Accept-Ranges: bytes
Content-Length: 2329
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
33rdderryscouts.com/wp-content/themes/scouts/skeleton.css
200 OK 12 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/skeleton.css
IP
ASN #20860 Iomart Cloud Services Limited
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash 27cd4241f576083e4afa3328a39397b0
b47d2967334f12c455c5ac6cb2a871f86a7b9a82
422c5c8939c53384f1e4da49636e9f9b11b50ff2abb3285361a1c73ede7cbf75
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/skeleton.css HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2015 07:32:29 GMT
Accept-Ranges: bytes
Content-Length: 11869
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
33rdderryscouts.com/wp-content/plugins/simple-responsive-slider/assets/js/responsiveslides.min.js?ver=4.3.30
200 OK 3.4 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/plugins/simple-responsive-slider/assets/js/responsiveslides.min.js?ver=4.3.30
IP
ASN #20860 Iomart Cloud Services Limited
File type HTML document, ASCII text, with very long lines (521), with CRLF, CR line terminators
Hash 439989693bbfa980cf579459929a9a53
819d217673c3d40f4a81d2e58b1ea647c019a612
002d22f846413d0859e6f891ea1b89a0c90554f50b08ba73c17804a62d037ec8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/simple-responsive-slider/assets/js/responsiveslides.min.js?ver=4.3.30 HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Mon, 12 Oct 2015 18:59:16 GMT
Accept-Ranges: bytes
Content-Length: 3413
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
33rdderryscouts.com/wp-content/plugins/simple-responsive-menu/sr-script.js?ver=1.0
200 OK 2.4 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/plugins/simple-responsive-menu/sr-script.js?ver=1.0
IP
ASN #20860 Iomart Cloud Services Limited
File type ASCII text, with CRLF line terminators
Hash 6989c8aad1287aad76b1f7aa1d539b18
cc5be15f3c89e3db282b5c036f367cb3619fe8cb
f7bce00eef8fa4344cb3f14a65e9c5e752bdc2bdbb7468a19fdcc76a9e82b56d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/plugins/simple-responsive-menu/sr-script.js?ver=1.0 HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Fri, 30 Oct 2015 13:19:09 GMT
Accept-Ranges: bytes
Content-Length: 2427
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
33rdderryscouts.com/wp-includes/js/jquery/jquery.js?ver=1.11.3
200 OK 96 kB URL HTTP/1.1 33rdderryscouts.com/wp-includes/js/jquery/jquery.js?ver=1.11.3
IP
ASN #20860 Iomart Cloud Services Limited
File type ASCII text, with very long lines (32038)
Hash 207abeb83412721d556faeba36e00822
c06b7f0b1526037bcdc6639244c9692e2ef3ebdd
ca32702f36da9bdbaa5463f8e3db9b18d82f3ce8a630d18e8bde6b30a2582d20
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-includes/js/jquery/jquery.js?ver=1.11.3 HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sat, 27 Jun 2015 22:40:24 GMT
Accept-Ranges: bytes
Content-Length: 95977
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
33rdderryscouts.com/wp-content/themes/scouts/img/33rdLogo.png
200 OK 67 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/33rdLogo.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 240 x 239, 8-bit/color RGBA, non-interlaced\012- data
Hash 755b9306af12cbe46f23c928f6de984e
af3e6f1ff31bf6df57ff1411ed57dd9e8bf94470
d648f50e68d397f3d37c138f875ef4f69f134e212492ab3495feb3e21efdac2f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/33rdLogo.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:31 GMT
Accept-Ranges: bytes
Content-Length: 66963
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/themes/scouts/img/BeaverIcon.png
200 OK 13 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/BeaverIcon.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 172 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a8436ef075bd24d00ab18098ca954ba
a3909fd6929e63d3f9292afd306160cbbe2a91f2
26f58c3b6fee36317dbfc03437f6a36058ab48bf28dbe7487ba446d8f5d35da1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/BeaverIcon.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:33 GMT
Accept-Ranges: bytes
Content-Length: 13096
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
fonts.googleapis.com/css?family=Open+Sans:400,700
200 OK 639 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:400,700
IP
Hash 6dc4baedd3a6a34b4800ab2056734f87
0085daa1e87ec503a28a7aeb03d74ab24b1004fe
87925a851551ae6e978f673ee9169022699d71ec3011e4a4a84d809e573d0416
GET /css?family=Open+Sans:400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Fri, 25 Nov 2022 09:55:55 GMT
Date: Fri, 25 Nov 2022 09:55:55 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
33rdderryscouts.com/wp-content/uploads/2015/10/4.png
200 OK 290 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/4.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 1000 x 183, 8-bit/color RGBA, non-interlaced\012- data
Size 290 kB (289515 bytes)
Hash e168708e327f657422471fcdde5d829d
a656583f523de15b433637c7703661db17a34747
6718c44bd14c0641e98d006b3219269d183c6964d99557a42073f2797c9c1db9
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/4.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 18 Oct 2015 14:37:30 GMT
Accept-Ranges: bytes
Content-Length: 289515
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/fptitle.png
200 OK 24 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/fptitle.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 524 x 134, 8-bit/color RGBA, non-interlaced\012- data
Hash 755b63e82ddfc386fdc792e70ce2cf94
89dab860747627e16e3ad15fc183132b8f6ae6da
2e552146bb0f458a7d96c71c0c980d1a020bd7b2644e3f167da3aa71d14a40f3
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/fptitle.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 14:25:35 GMT
Accept-Ranges: bytes
Content-Length: 23764
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/3.png
200 OK 304 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/3.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 1000 x 183, 8-bit/color RGBA, non-interlaced\012- data
Size 304 kB (304352 bytes)
Hash 86451457d3a392960a6dcd04c069f33c
375d3c39c8ea9400111173842890c574b449481a
c22cbb916b5b8753235b5f1f012f985e8e0525f44a6b45db79460598d39e02cc
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/3.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 18 Oct 2015 14:37:49 GMT
Accept-Ranges: bytes
Content-Length: 304352
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/bflag-150x150.png
200 OK 38 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/bflag-150x150.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash ecd506e7e92a40b91287c7831f45baa4
575fde1cd983194a8282a8d99ff6c9a1f8feeba5
1e1acfc4e1d17449ba09f9aa7494e2ced23c142c0c4ded3ff45e0f2731fa552f
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/bflag-150x150.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 13:52:58 GMT
Accept-Ranges: bytes
Content-Length: 38131
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/Untitled-21.png
200 OK 383 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/Untitled-21.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 1000 x 183, 8-bit/color RGBA, non-interlaced\012- data
Size 383 kB (382830 bytes)
Hash f761f8817436bc7110d3b240128ddbd2
f5ab4e37f8fd8e18e60c22102bb531ebbe621920
0452591a2d24527c189b43e34f7fb934d7541eaa40ae823a33c85b7cb4f68e96
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/Untitled-21.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Mon, 12 Oct 2015 19:35:32 GMT
Accept-Ranges: bytes
Content-Length: 382830
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/2.png
200 OK 368 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/2.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 1000 x 183, 8-bit/color RGBA, non-interlaced\012- data
Size 368 kB (367826 bytes)
Hash 9bf89d3262f95694d520fed060661a28
2fec255c1a55dfde0c26c8496c0b6a2cd083db88
b171999728d79f7942a41e48d82bcb9b2b9a897133fa839a2f2955db4a04cee5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/2.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 18 Oct 2015 14:38:02 GMT
Accept-Ranges: bytes
Content-Length: 367826
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/themes/scouts/img/ScoutsIcon.png
200 OK 14 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/ScoutsIcon.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 172 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash 9ce43352c20ce2be54978bb5cfe6f780
c59706cbdebed3e2a134d240324efd1be4d69c1f
0b34f6c25b60a24516e93c085ffa13a4caaa6b0693471d34b168e54f728f69c8
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/ScoutsIcon.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:33 GMT
Accept-Ranges: bytes
Content-Length: 14510
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/themes/scouts/img/CubIcon.png
200 OK 14 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/CubIcon.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 172 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash 6887202cd19d1e9e3c70115c12242007
3552585286b2911b1b5fc3de40f547574e0df1a8
ffb48287317033ef809520e274e6ff36e40cb53f200309b95afed874477bc9a1
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/CubIcon.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:34 GMT
Accept-Ranges: bytes
Content-Length: 14173
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/cflag-150x150.png
200 OK 34 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/cflag-150x150.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash fa84edc8f7236a682de9350ba04753e8
ac999f804f4de7e28df073a2693f907578cc1b29
7110d6185bfccf7efcf2d459e4b6aaa3f1f13d583a71569092a4fccaa22cdb0d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/cflag-150x150.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 13:52:59 GMT
Accept-Ranges: bytes
Content-Length: 33935
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/themes/scouts/img/bg_l.jpg
200 OK 680 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/bg_l.jpg
IP
ASN #20860 Iomart Cloud Services Limited
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1920x2160, components 3\012- data
Size 680 kB (679816 bytes)
Hash c3fc1f01c715a69522d728066f3277aa
a29493420c80f45f6999b550d213240e274130c7
4803323d73d4e78e4365052b666bb515c8faa437c933da22469ac7ecf9fd018d
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/bg_l.jpg HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/wp-content/themes/scouts/style.css
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:32 GMT
Accept-Ranges: bytes
Content-Length: 679816
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/jpeg
33rdderryscouts.com/wp-content/themes/scouts/img/RoverIcon.png
200 OK 14 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/RoverIcon.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 172 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash e2737d5e5ff49809160c554ba501313e
44fbf60c9ecdb8498570b7eff03497918adcffd5
f770ccab5bbbb4a8b2bac7ad11032f3fca70112fbf4db10dfd60a3d81890b340
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/RoverIcon.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:34 GMT
Accept-Ranges: bytes
Content-Length: 13958
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/themes/scouts/img/VentureIcon.png
200 OK 18 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/themes/scouts/img/VentureIcon.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 172 x 172, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b6dd265a479f04af33151e398d17289
b172188778d73e25ab107aee5f96d2ebb82f52af
bfa4f81c08b6cfd55ecd257cf851c69e6c652cbe845ad6175b26315b23a5af2c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/themes/scouts/img/VentureIcon.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Wed, 07 Oct 2015 15:59:35 GMT
Accept-Ranges: bytes
Content-Length: 18044
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/sflag-150x150.png
200 OK 35 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/sflag-150x150.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash e72365c66ac658d9cdb81c8795e80d7c
cf4034f2bbcfc6f352a118561d2f7a51827ffa32
4003b6bd6049725b8b5e5c5b3fb5c10557baea905fa817db0dcc1b6890952654
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/sflag-150x150.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 13:53:03 GMT
Accept-Ranges: bytes
Content-Length: 34740
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/rflag-150x150.png
200 OK 33 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/rflag-150x150.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 6765ceb0a9f8c2b14e5c84ac5aad7f1e
b132e2503a024171e8780678c16aed82acf84a62
91d2ae700435087c14f7d7e59e2d006c4307a0d424e5dd497977d613bfcbdd11
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/rflag-150x150.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 13:53:02 GMT
Accept-Ranges: bytes
Content-Length: 32611
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/lflag-150x150.png
200 OK 35 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/lflag-150x150.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 04e1030d796bbae6f78744688509c6fa
3f469917608af0bcbd66be558e28dd5051f5e1b1
1a6745c075cc7143082e5624488eaacdc4059a6a5f20f108fcbdf0e8e4ce33f5
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/lflag-150x150.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 13:53:00 GMT
Accept-Ranges: bytes
Content-Length: 34984
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
33rdderryscouts.com/wp-content/uploads/2015/10/vflag1-150x150.png
200 OK 35 kB URL HTTP/1.1 33rdderryscouts.com/wp-content/uploads/2015/10/vflag1-150x150.png
IP
ASN #20860 Iomart Cloud Services Limited
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash be1fccbb1720dc6900bae3107678d584
5006cb88b7a075e7e0b7da0e34f9575347d079e1
c8bd06e6474c9ad0e0c85d434b18ee421b4c0aab4f22a95b023a4400cc20db9c
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /wp-content/uploads/2015/10/vflag1-150x150.png HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
Last-Modified: Sun, 25 Oct 2015 14:30:17 GMT
Accept-Ranges: bytes
Content-Length: 35225
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: image/png
connect.facebook.net/en_US/sdk.js
200 OK 1.7 kB URL HTTP/1.1 connect.facebook.net/en_US/sdk.js
IP
File type ASCII text, with very long lines (1957)
Hash d8bb03712b34f12493583f2fcce1ac9d
7fbbb17e26b8bbc1f08706872bce540e39ba5fe2
cc7de5b776ece0025fe6a24aae53fc17a0eab1413961270d456705a99006964d
GET /en_US/sdk.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Expose-Headers: X-FB-Content-MD5
x-fb-content-md5: c13b7933d4c878fe61118f68e286d9fc
ETag: "6b4f9edf4e83dcb9035c9c93c3ed36e2"
Content-Type: application/x-javascript; charset=utf-8
timing-allow-origin: *
Access-Control-Allow-Origin: *
cross-origin-resource-policy: cross-origin
Expires: Fri, 25 Nov 2022 10:00:05 GMT
Cache-Control: public,max-age=1200,stale-while-revalidate=3600
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
X-Content-Type-Options: nosniff
x-fb-rlafr: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-MD5: 2LsDcSs08SSTWD8vzOGsnQ==
X-FB-Debug: +z0GJ9LveoAHta8v4eCfgntgs/Ev/egLs6eiefByBiUoruT+bAqkorFA6NzQKiC0e64n5UWM9GeCCNF++pyFuQ==
Priority: u=1,i
X-FB-TRIP-ID: 1679558926
Date: Fri, 25 Nov 2022 09:55:55 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1688
33rdderryscouts.com/favicon.ico
200 OK 0 B URL HTTP/1.1 33rdderryscouts.com/favicon.ico
IP
ASN #20860 Iomart Cloud Services Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert mnemonic_dns Sinkholed
quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 33rdderryscouts.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Cookie: nf_wp_session=a4c69d146f9a324c9dad823ce8d6eadc%7C%7C1669371594%7C%7C1669371534
HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 09:55:55 GMT
Server: Apache
X-Powered-By: PHP/5.2.17
Content-Length: 0
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
ocsp.digicert.com/
200 OK 471 B IP
Hash 4014b3f4adf5c5373118894c244afb12
1198e79d0e1e14408e3c0084a3f479122020a723
affc5983ee364e0310c082b225a90cff4ba2d01b68d2cdaf6b5ecbe780cad66d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3325
Cache-Control: max-age=158762
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:55:55 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:01:57 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 09:08:53 GMT
cache-control: public,max-age=3600
age: 2822
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/en_US/sdk.js?hash=7c1b4212fe879aa89e949d03a5904a55
200 OK 88 kB URL HTTP/2 connect.facebook.net/en_US/sdk.js?hash=7c1b4212fe879aa89e949d03a5904a55
IP
File type ASCII text, with very long lines (18530)
Hash 099c2c9d0583984f946c84da26927f5c
40a4c6dfb227e751560d2400c9bb9af76e22e5b5
df81b92ee1e58c802fa8ac1feb8433c5307635a8eb062cf8cac4db9e7761961c
GET /en_US/sdk.js?hash=7c1b4212fe879aa89e949d03a5904a55 HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://33rdderryscouts.com
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
access-control-expose-headers: X-FB-Content-MD5
x-fb-content-md5: 5297bb5db3163783f4960ad10c9b7b8f
etag: "48c228b82a8292bfab96473a37ff8b30"
content-type: application/x-javascript; charset=utf-8
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
expires: Sat, 25 Nov 2023 09:11:17 GMT
cache-control: public,max-age=31536000,stale-while-revalidate=3600,immutable
document-policy: force-load-at-top
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-fb-rlafr: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
content-md5: CZwsnQWDmE+UbITaJpJ/XA==
x-fb-debug: 3E932i9Q2D6y9ekno81iXgfzZjt/AA9fh8FaKYDa1rJo1GBVEYKap4MQ1YET1ivZQtBgzlQOJgamPPknnjNmtg==
priority: u=3,i
content-length: 88359
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:55 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 4014b3f4adf5c5373118894c244afb12
1198e79d0e1e14408e3c0084a3f479122020a723
affc5983ee364e0310c082b225a90cff4ba2d01b68d2cdaf6b5ecbe780cad66d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3325
Cache-Control: max-age=158762
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:55:55 GMT
Etag: "63804d58-1d7"
Expires: Sun, 27 Nov 2022 06:01:57 GMT
Last-Modified: Fri, 25 Nov 2022 05:06:32 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
200 OK 471 B IP
Hash fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4481
Cache-Control: max-age=87935
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 09:55:55 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:21:30 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 471
static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
200 OK 830 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (724)
Hash d63a02ce87c07ffcfa869fef7fc5f233
cae745fef84088abe3525bb77f75c55cd1d4cc2c
bf9d4d71541a0a1f31b10be351add847ee935da6de355756314c8ca96512444d
GET /rsrc.php/v3/yn/l/0,cross/-HGPTKcj37t.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Sat, 18 Nov 2023 18:24:38 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 1joCzofAf/z6hp/vf8XyMw==
x-fb-debug: Kj7wDR4ZUhOCqpydHIir3jrZeY0lgM+7J9w/C7ydajKnbRQOLDivzqfww/dDUDhdoi+4Uz0SpoApq3vwuwWS0A==
content-length: 830
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
200 OK 1.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (1984)
Hash 16f083b23b565db9d2f20d1ad75933c1
6d74ad139c96b1e3fc9d541419788b5b4893ec9a
36b909cd9132a8996a1bbb221d05217c31506a6951bb408deeea6aa612dc4200
GET /rsrc.php/v3/yv/r/GG1Y0sYc7My.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:07:00 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FvCDsjtWXbnS8g0a11kzwQ==
x-fb-debug: bP7Hn62kFAjWr7jSa5xbIHjvtrymCc5+/BWiU8jmZWvoE9UNywvxV+fazhrnkAfvO75toNN1+8hqwJRQpK4bpw==
content-length: 1657
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz
200 OK 5.1 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (4431)
Hash 1edd6626ecc1fe1c708fe86319f5bc22
dd58cc72446f8658aac8f9c46075874d5df96b6a
afb2ce31a60811eac42759964232e5b0f6d23463b318c21677bff49f1ef71b9c
GET /rsrc.php/v3/yp/l/0,cross/oJI2v4nsT1A.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: text/css; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 24 Nov 2023 18:45:23 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: Ht1mJuzB/hxwj+hjGfW8Ig==
x-fb-debug: Ne8hjCb1Wi8nV30MsIucv1btJPTzvPzf0BPF4YklJfmkDr6VcEK7+MJSceq5ShE19wiwjTayjaDbWg2TZp11QA==
priority: u=2
content-length: 5146
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
200 OK 91 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (18622)
Hash 151e87d38f4f425e44d9c851c9aecf05
762111e5095f5354be95b98ad476f6e7161ce6b1
f236f289f38c8081b496e0537ed3b2c66822e7a743f5d9d4959f955c64b0b2b0
GET /rsrc.php/v3/y8/r/qc0dVyw0ZD0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Fri, 17 Nov 2023 16:54:49 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: FR6H049PQl5E2chRya7PBQ==
x-fb-debug: XKYCuFqqNH0kZrgnBK9d939R6pWs+fcIzk26id8p6lRkOvr6n2vQtYYz0yMcJoZ8xMvN0Ztyy0Cqwk+0Rwgf4Q==
content-length: 91088
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
200 OK 12 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (5542)
Hash 0765d76d746716156d53d36ee6f80836
17e1546f87cc6417615caa10dcbbcb699c59471a
f1e6af63ae9ff0385126b72a492b0d34709514dd4c00074a1be28272c253d4f8
GET /rsrc.php/v3/y6/r/8LoDHCcRMmF.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 03:38:47 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: B2XXbXRnFhVtU9Nu5vgINg==
x-fb-debug: wiiQpSv+hINmxdmDh50qRYLH0Cc0/G7L/Ii7uM69ujJ9255olUBP7wXxq1ttCrD/GuMczOSWMrxFCttWIBEa7Q==
priority: u=3,i
content-length: 12369
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
200 OK 16 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz
IP
File type C source, ASCII text, with very long lines (8741)
Hash dfb29285817fca7b068ba0ec98aa2392
78cd49585da28a245a096781c8e0fada59cf2b72
2c4a3a46d7dfaf97bbc16a2b93470d1b3382c0da3f44dca0c987a3384cee43d3
GET /rsrc.php/v3/yR/r/bPhRbIw5d4Y.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Mon, 13 Nov 2023 06:07:01 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: 37KShYF/ynsGi6DsmKojkg==
x-fb-debug: W8oNQ20RRci19DZRKo9uDRApdh+0a2rAY6qTH85H4Hi9P5kV6tLh8k37VYg3Sb5ZwVDl6wz3D24n8ZMMRcEPrQ==
content-length: 16262
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
200 OK 338 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (327)
Hash 76f593e842677f73cd0a06232874b2c3
25a13f79478d5a0e286a2299dca2f3b296463079
74dcbe026002f10b703960a500b50dabe518862e568a9e689dec7afa243fa44d
GET /rsrc.php/v3/yF/r/p55HfXW__mM.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:07:54 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dvWT6EJnf3PNCgYjKHSyww==
x-fb-debug: GDGRfZeyuE1OHpy9ahIhaU0kclOXpFQYQ7/1M/D5cI7JUQ4Ew0DXCSWEFfX2Lc8mzeEZzI90+YEWxbLFPyoGUw==
content-length: 338
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
200 OK 8.4 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (2905)
Hash 7734711815478192096a4df90abbfa01
ea16129c6f54227d9d01bf3421e68863e75ffd7a
22cf4b88ca3b9208f44974e02dc6f784021871877121c7d03b310d7264ced0e3
GET /rsrc.php/v3iLl54/yh/l/en_US/m3C9wUm7Rze.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:17:26 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: dzRxGBVHgZIJak35Crv6AQ==
x-fb-debug: SwZtxprWZfXl+rO+YaOOqR2xLBF38ZPg8Y+cP7WtlQTkjvtMYyRnl3hNc9Mm0TJ9+/36SgDNG/isJ/X1ydzT6w==
priority: u=3,i
content-length: 8360
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
200 OK 8.7 kB URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz
IP
File type ASCII text, with very long lines (9885)
Hash 71e8e93b5e55f2010013b0814f4e3ae5
4732ba3acc539a0e9ff12d08c1b5a16f535bd594
b710ea52f812ac39c5195f0c170142bfcfcc274aa6b250a29a1ed1c59ea58556
GET /rsrc.php/v3/y-/r/y841rZ2iNa0.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:39:12 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: cejpO15V8gEAE7CBT0465Q==
x-fb-debug: H2PI3oGS9Y4J9xsW92eZpy446nXHTXfc0oS1Ip5KPRUh1uSqu1kjsSpEPgFjjn+tiZ3P/nPgRYBruWBygKDW9g==
content-length: 8748
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
www.facebook.com/v2.4/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3f8cd043abd456%26domain%3D33rdderryscouts.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F33rdderryscouts.com%252Ff942015647aaa%26relation%3Dparent.parent&container_width=300&height=500&hide_cover=false&href=https%3A%2F%2Ffacebook.com%2F33rd-Derry-Ballinascreen-scouts-1629097857379060%2F&locale=en_US&sdk=joey&show_facepile=true&tabs=timeline&width=300
200 OK 39 kB URL HTTP/2 www.facebook.com/v2.4/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3f8cd043abd456%26domain%3D33rdderryscouts.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F33rdderryscouts.com%252Ff942015647aaa%26relation%3Dparent.parent&container_width=300&height=500&hide_cover=false&href=https%3A%2F%2Ffacebook.com%2F33rd-Derry-Ballinascreen-scouts-1629097857379060%2F&locale=en_US&sdk=joey&show_facepile=true&tabs=timeline&width=300
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (20657)
Hash 786b21e7a0c71a0cc804ef01cbce6415
d63a8373ea1a17ef80f33b0a89eef7535991f00d
d9d56a2b04e2b565b4e759379f10530d41f452056cbaa295f57af88f3a50b6d1
GET /v2.4/plugins/page.php?adapt_container_width=true&app_id=&channel=https%3A%2F%2Fstaticxx.facebook.com%2Fx%2Fconnect%2Fxd_arbiter%2F%3Fversion%3D46%23cb%3Df3f8cd043abd456%26domain%3D33rdderryscouts.com%26is_canvas%3Dfalse%26origin%3Dhttp%253A%252F%252F33rdderryscouts.com%252Ff942015647aaa%26relation%3Dparent.parent&container_width=300&height=500&hide_cover=false&href=https%3A%2F%2Ffacebook.com%2F33rd-Derry-Ballinascreen-scouts-1629097857379060%2F&locale=en_US&sdk=joey&show_facepile=true&tabs=timeline&width=300 HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://33rdderryscouts.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: br
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-opener-policy: unsafe-none
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
facebook-api-version: v9.0
strict-transport-security: max-age=15552000; preload
content-type: text/html; charset="utf-8"
x-fb-debug: 08LNYxQtBjVh2k1Xvm99MjSxxvoFygFgqaShQ3ys4vnVYaz2fpptj5NVmc6QQ2udC8FPQKR9isN87teor2g0kA==
date: Fri, 25 Nov 2022 09:55:56 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17763
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 09:55:57 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17763
Expires: Fri, 25 Nov 2022 14:52:00 GMT
Date: Fri, 25 Nov 2022 09:55:57 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c8f6118fc03f31862ff68fef8a2b9a7f
318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73
cdd4d44f05cc524d7f2b1d6d792ecd8a9a933e52ecb7685a7d7ea786a510ef39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0a474c96-6cd7-4e42-a54a-02217768182e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8089
x-amzn-requestid: f4b5f150-a5dc-40bf-93b9-394c294a51cb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEmkRFSnIAMF5vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e8481-74454bee1a1ec6d506f3d75b;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 20:37:21 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ZVv8iTGCYV-IiBJ6KwNSG1ZWSEwClaQopUejSqZq0S1wd782lRoyKA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:07:32 GMT
age: 42505
etag: "318c5d7acd0d36c816b09fcf1b7dc4bfb5ec7e73"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6292a2988fb4505d0098553b8e99ddc
9b8aafcda0e22edcc16d3048f4b88659d3b42419
16b7b473229c5e519ab81b385c50277424f3f3b2a5d7647035e84ba58e44f3be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9e23502-5ace-42f4-a990-42412dc7e04e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6385
x-amzn-requestid: 4c2a84f7-f038-4f5a-86c2-5c8ce1a48c6e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cI5NVFMAoAMFn7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63803bee-45c6411c2430e2375f530dd8;Sampled=0
x-amzn-remapped-date: Fri, 25 Nov 2022 03:52:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Fj82i9qJmEiUy2DOkkowq8WRyzupMwNyQqu110sJ3o72HEW4yb7bjQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 07:35:26 GMT
age: 8431
etag: "9b8aafcda0e22edcc16d3048f4b88659d3b42419"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d43ec6824d4fdc4d31b8c245bf8c5849
81f85633fca39972d8e0bf9a4ec7cd999e54564f
b0e521b23879af86102f46a9ec412faf6345df31a97a7b58880f63f81fdcd0c6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3ad933c0-8cbe-40eb-920c-38b8ae531c9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7900
x-amzn-requestid: a9d184b1-3b4a-4ca6-9ad2-ce3aac10f422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB91H2IIAMFjGw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38b-5732361f36c023c22c922ee9;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: cRreyOCHys8rW4UWA3JSMhtOiiltT6ULxxgi9aLM7sw07UruCXgPkQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 22:13:14 GMT
age: 42163
etag: "81f85633fca39972d8e0bf9a4ec7cd999e54564f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 04:23:00 GMT
age: 19977
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5863138af1ddbba34a7856242a7b3a06
2eba66ff6539388c48562503e8d11ff0e060350a
d1543e1b803a07095148b743925eebbbf21f566a2df9b785a1a9d48c5604496c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F981a8e9a-f018-45b6-af7e-199dc4c02c27.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8917
x-amzn-requestid: 10f3b269-9437-476d-ae4f-a0ac3fb78491
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8wEIwoAMF8uA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-4cfeecf4553b26381ed11875;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lr9z8FWWpMGtxtvcYzeT-ewuydSzpma8I06pszLDQIICotFkB_SZlA==
via: 1.1 2241406ac19fffc8f35d6ddef8e22f56.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:55:30 GMT
age: 43227
etag: "2eba66ff6539388c48562503e8d11ff0e060350a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 43272
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
200 OK 0 B URL HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz
IP
GET /rsrc.php/v3/yW/r/0aTHA2C1d6g.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Host: static.xx.fbcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.facebook.com
Connection: keep-alive
Referer: https://www.facebook.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: br
content-type: application/x-javascript; charset=utf-8
last-modified: Mon, 01 Jan 2001 08:00:00 GMT
expires: Tue, 14 Nov 2023 04:13:17 GMT
cache-control: public,max-age=31536000,immutable
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
timing-allow-origin: *
content-md5: VxcAtaHo24jV15AHqRC5Yg==
x-fb-debug: toyuB3SAldiJbPiFmTzqS82YUXCgo1xj24kbDL0MQa9hnhIbaWdcJ2i2753fIkvf+ZVJbaC46+TMmqv8MGguuA==
content-length: 7238
x-fb-trip-id: 1679558926
date: Fri, 25 Nov 2022 09:55:56 GMT
access-control-allow-origin: https://www.facebook.com
vary: Origin
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
5.77.41.150
23.36.77.32
34.102.187.140
157.240.200.14
0.0.0.0