Report - srv.mailazy.net/i/6380d07f076200ebadaa9195/click/aAB9wZzSxjDnQUIO3QL3waCf0utCCJRWdNw8w_L6eA7e1DWdTBjvA8bfoBMHvcejEVVWX7Foi_aGxzIakVDadTG0VBZG5vBSdGnvYAVxl2lIM3zmty27a87UFx3UExQ1Y4Bay5x18kpQqA0vWSUw-o3ZocTq6CFLeafPpEIJipYEIYWBWYozFACG5-na0-SyNxPzeD2P5ogrHT0gAqANumuYMXU=

Report Overview

Submitted URL
srv.mailazy.net/i/6380d07f076200ebadaa9195/click/aAB9wZzSxjDnQUIO3QL3waCf0utCCJRWdNw8w_L6eA7e1DWdTBjvA8bfoBMHvcejEVVWX7Foi_aGxzIakVDadTG0VBZG5vBSdGnvYAVxl2lIM3zmty27a87UFx3UExQ1Y4Bay5x18kpQqA0vWSUw-o3ZocTq6CFLeafPpEIJipYEIYWBWYozFACG5-na0-SyNxPzeD2P5ogrHT0gAqANumuYMXU=
IP
18.220.218.93
ASN
#16509 AMAZON-02
Submitted
2022-11-25 15:26:28
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
bulkmail.nazmulfreelancer.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	557 B	916 B	104.21.76.157
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.7 kB	3.5 kB	93.184.220.29
mancium.io	47245	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	15 MB	141.95.126.22
cdn.jsdelivr.net	439	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	432 B	25 kB	151.101.85.229
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	501 B	14 kB	216.58.207.195
srv.mailazy.net	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	600 B	248 B	18.220.218.93
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.20.226
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	54 kB	34.120.237.76
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	166 kB	142.250.74.10
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.5 kB	23.36.77.32
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	378 B	77 kB	142.250.74.168
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	52.42.148.177
www.google.com	7	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	362 B	1.2 kB	142.250.74.164
unpkg.com	11693	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	784 B	1.6 kB	104.16.126.175
static.ads-twitter.com	614	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	359 B	16 kB	151.101.84.157
t.co	569	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	709 B	593 B	104.244.42.197
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
cdnjs.cloudflare.com	235	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	801 B	32 kB	104.17.25.14
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	5.6 kB	142.250.74.3
analytics.twitter.com	526	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	726 B	613 B	104.244.42.3
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	627 B	557 B	216.239.32.36

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-25	medium	srv.mailazy.net/i/6380d07f076200ebadaa9195/click/aAB9wZzSxjDnQUIO3QL3waCf0utCCJRWdNw8w_L6eA7e1DWdTBjvA8bfoBMHvcejEVVWX7Foi_aGxzIakVDadTG0VBZG5vBSdGnvYAVxl2lIM3zmty27a87UFx3UExQ1Y4Bay5x18kpQqA0vWSUw-o3ZocTq6CFLeafPpEIJipYEIYWBWYozFACG5-na0-SyNxPzeD2P5ogrHT0gAqANumuYMXU=	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files detected

URL
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22
ASN
#16276 OVH SAS

File type
PDF document, version 1.6, 43 pages\012- data
Size
14 MB (14154430 bytes)
Hash
1e1bab468f9a5741ee38c0319e521c13
767758b2a7ae78ca1a91d8bf3588f0504b13a835
956b6bd8549ad9e05118071ca18d710df5fa1b7f154b2bf85620289dbc96aa7b

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (11)

	URL	Size	First Seen	Last Seen
	pdf.js/web/viewer.js	374 kB	2023-03-07	2023-04-05
Pretty URL pdf.js/web/viewer.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2023-04-05 02:12:01 Times Seen1357 Hash 7f28003dcd68438eee3f0fb20757243c 7f119fdc77292f13ea6d6a72d0e16373e1d7bb23 f9a11592ab64edfa8c23f7f97c7ab331c689185292fdb490d039b89c70fb01b0 Loading...

	www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js	409 kB	2023-03-08	2023-03-17
Pretty URL www.gstatic.com/recaptcha/releases/Km9gKuG06He-isPsP6saG8cn/recaptcha__en.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash b2507198388fcc94ca9e94ed4c5561c5 8853fc86f1c616bd20a73e3e24442036fd90fd2f 02c7565a86d6d3a80295b85161d78fc88d8c79a0e314c0c7777570237a365ed0 Loading...

	static.ads-twitter.com/uwt.js	58 kB	2023-03-08	2024-04-20
Pretty URL static.ads-twitter.com/uwt.js IP 151.101.84.157 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:46 Last Seen2024-04-20 17:48:03 Times Seen4329 Hash 32ad004436155ec972bc50e6238b5b67 9b2cdb645c2fa5b98a9d05dcdca521fed4a17b7b cf7fcc9f75c8717897bfaef72f303fab423ce1b70c98512aeb3677e4af988dee Loading...

	cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js	59 kB	2023-03-07	2024-04-24
Pretty URL cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:23:52 Last Seen2024-04-24 18:19:29 Times Seen3272 Hash 259e416ef6833be43801b8b68a93b008 19080c3b817985336aab5e1ce6925c99803f2efd 70c3d690bdc5ce3b9a1527c46044989a3176e610882fa99f4523e75bc395bcce Loading...

	mancium.io/js/helpers.js	706 kB	2023-03-11	2023-03-11
Pretty URL mancium.io/js/helpers.js IP 141.95.126.22 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:10:12 Last Seen2023-03-11 20:10:12 Times Seen1 Hash d09d4b4c113a2531ce15518cd3bb09f1 f6faaf5f84abf054dfb4a0755d1c128eca4e820e 32c0c2c55875a98bb2d1caf62b9cb04bcf5ae26d750b9993ea1b48090861b16b Loading...

	mancium.io/litepaper	483 B	2023-03-11	2023-03-11
Pretty URL mancium.io/litepaper IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:10:12 Last Seen2023-03-11 20:10:12 Times Seen1 Hash 912c9d6687b82bd280be4cab1c95c0eb dd2f0ea156a58ea714992d6637182b524c8cd95f 696bed87f5bdc609993899ee6344923dc50ba61c88896bf31b85ac782328cb33 Loading...

	www.google.com/recaptcha/api.js?	850 B	2023-03-08	2023-03-17
Pretty URL www.google.com/recaptcha/api.js? IP 142.250.74.164 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:22:03 Last Seen2023-03-17 23:14:58 Times Seen1 Hash a6d9f11246866ef6247a51ae9116cf53 1ba0ec4e57dd5d3845edb729fea44e6f709c7aca 60eac53947f6a289ca775891e56b3a4a1084cb8763fe2bf4220b759a58761f1d Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 07:48:15 Times Seen37056493 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	mancium.io/litepaper	201 B	2023-03-11	2023-03-11
Pretty URL mancium.io/litepaper IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:10:12 Last Seen2023-03-11 20:10:12 Times Seen1 Hash 168c8979de2af8e8caf4ec0c4d499ffa 8798d13f715c0bf3e850d003cbe938f1fe63603e f950eece89d4084b0b97f5abd9972ac324bd89d39240760cfd918c05d29feaea Loading...

	mancium.io/litepaper	474 B	2023-03-11	2023-03-11
Pretty URL mancium.io/litepaper IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 20:10:12 Last Seen2023-03-11 20:10:12 Times Seen1 Hash 7762fba9f2656f0fc478b5ffeee3d6c9 3190a0d9832ef8a9d389e5eda023251d045e9be1 8d4ff022e12cf3f69590f1a84a17a14484102f491ac26ccb1a1707e5635375ed Loading...

	pdf.js/build/pdf.js	322 kB	2023-03-07	2023-04-05
Pretty URL pdf.js/build/pdf.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:22 Last Seen2023-04-05 02:12:01 Times Seen1311 Hash 42ee10ee09176e186c5846bab608c4a8 03d49a21c62fc1e134d08cd62593dac460e9981b 7049dcd5d0dc1e88a111356c01ccf1098990dbece884a0d8f3b5f3cafd9f0e81 Loading...

HTTP Transactions (61)

URL IP Response Size

srv.mailazy.net/i/6380d07f076200ebadaa9195/click/aAB9wZzSxjDnQUIO3QL3waCf0utCCJRWdNw8w_L6eA7e1DWdTBjvA8bfoBMHvcejEVVWX7Foi_aGxzIakVDadTG0VBZG5vBSdGnvYAVxl2lIM3zmty27a87UFx3UExQ1Y4Bay5x18kpQqA0vWSUw-o3ZocTq6CFLeafPpEIJipYEIYWBWYozFACG5-na0-SyNxPzeD2P5ogrHT0gAqANumuYMXU=

18.220.218.93

302 Found

0 B

URL HTTP/1.1
srv.mailazy.net/i/6380d07f076200ebadaa9195/click/aAB9wZzSxjDnQUIO3QL3waCf0utCCJRWdNw8w_L6eA7e1DWdTBjvA8bfoBMHvcejEVVWX7Foi_aGxzIakVDadTG0VBZG5vBSdGnvYAVxl2lIM3zmty27a87UFx3UExQ1Y4Bay5x18kpQqA0vWSUw-o3ZocTq6CFLeafPpEIJipYEIYWBWYozFACG5-na0-SyNxPzeD2P5ogrHT0gAqANumuYMXU=
IP
18.220.218.93:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /i/6380d07f076200ebadaa9195/click/aAB9wZzSxjDnQUIO3QL3waCf0utCCJRWdNw8w_L6eA7e1DWdTBjvA8bfoBMHvcejEVVWX7Foi_aGxzIakVDadTG0VBZG5vBSdGnvYAVxl2lIM3zmty27a87UFx3UExQ1Y4Bay5x18kpQqA0vWSUw-o3ZocTq6CFLeafPpEIJipYEIYWBWYozFACG5-na0-SyNxPzeD2P5ogrHT0gAqANumuYMXU= HTTP/1.1
Host: srv.mailazy.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Fri, 25 Nov 2022 15:26:15 GMT
Content-Length: 0
Connection: keep-alive
Location: https://bulkmail.nazmulfreelancer.com/index.php/campaigns/fm204v9zfb8f4/track-url/rw631bo8rt891/d7dd5161a8417afb2ce8258ed3ee4752b78f0f38

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13675
Expires: Fri, 25 Nov 2022 19:14:10 GMT
Date: Fri, 25 Nov 2022 15:26:15 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
10730f388c028d64e19b8a48d414768f
e43b104e57e5ea7ff8568835776858cf2ede6f00
f3c30c6d139288f1bfe13fce85c6ddc1514e1639fcf4d31a6012a3309ed1d50d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3006
Cache-Control: max-age=158105
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:15 GMT
Etag: "63809972-1d7"
Expires: Sun, 27 Nov 2022 11:21:20 GMT
Last-Modified: Fri, 25 Nov 2022 10:31:14 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
d130218d0e2841f39c99610fe1a2ab90
29fbe1e177ee55c7a61ae0a206afff271cf5f945
6b6d74dccf10c2bc98a91c3388280d7ba1d9596bf8cadd7db0e2f63720b3d152

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 15:19:09 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 426
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11699
Expires: Fri, 25 Nov 2022 18:41:14 GMT
Date: Fri, 25 Nov 2022 15:26:15 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: ptvcpJtNCwwtwwDpGa1EWL8TDV8Z1CbZjppuZTEnHlYKOfLP7DsH00RMn3vY5BNFP15LbFuEbIc=
x-amz-request-id: XN8PW00BVYPWZY6Y
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 14:40:50 GMT
age: 2725
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
31b7f342fe1529d49e15e6471ae16cdd
064b4bfdf5ef2b7ce580bf95ea4096612e47fcf2
50c5a624c28ae8ef4a31c185d2cf14c11ff61ea407cf53321b5b6e90c86a4e45

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "50C5A624C28AE8EF4A31C185D2CF14C11FF61EA407CF53321B5B6E90C86A4E45"
Last-Modified: Thu, 24 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18020
Expires: Fri, 25 Nov 2022 20:26:35 GMT
Date: Fri, 25 Nov 2022 15:26:15 GMT
Connection: keep-alive

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 15:26:15 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.77.32

200 OK

346 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
346 B (346 bytes)
Hash
31b7f342fe1529d49e15e6471ae16cdd
064b4bfdf5ef2b7ce580bf95ea4096612e47fcf2
50c5a624c28ae8ef4a31c185d2cf14c11ff61ea407cf53321b5b6e90c86a4e45

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 346
ETag: "50C5A624C28AE8EF4A31C185D2CF14C11FF61EA407CF53321B5B6E90C86A4E45"
Last-Modified: Thu, 24 Nov 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18020
Expires: Fri, 25 Nov 2022 20:26:35 GMT
Date: Fri, 25 Nov 2022 15:26:15 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 15:11:11 GMT
cache-control: public,max-age=3600
age: 905
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bca4ab9398136601d37c21b97bd8055f
f6c2fa9e0915e9ecf45b482d60abc7bd18ce0506
389ff96f02994a0af16d186059aa885afc4d76d94942f454c9cdf9ff5340f03e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "389FF96F02994A0AF16D186059AA885AFC4D76D94942F454C9CDF9FF5340F03E"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21561
Expires: Fri, 25 Nov 2022 21:25:37 GMT
Date: Fri, 25 Nov 2022 15:26:16 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
df06e70fc8a35facf1d8db463d18e231
fa8a2975566cc792898f870e48ae7518d3657326
4cef7e704f4d575ce6733f6f2d803d241b597be51ff3fb03f72e5c33a893b504

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6066
Cache-Control: max-age=156101
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Etag: "638085ab-1d7"
Expires: Sun, 27 Nov 2022 10:47:57 GMT
Last-Modified: Fri, 25 Nov 2022 09:06:51 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471

cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js

104.17.25.14

200 OK

15 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (58940)
Size
15 kB (14584 bytes)
Hash
28dbaeb9aa2638e0c4e6d9ffd3d14e9d
3208ed3741e60986bbed3fd759cdfd3b4fa7cf06
ababbb021f57966e125b8e296f9515f38d906b462697f7835e6914465dd0d362

HTTP Headers

GET /ajax/libs/bootstrap/5.1.3/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mancium.io
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: application/javascript; charset=utf-8
content-length: 14584
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6161dfe3-38f8"
last-modified: Sat, 09 Oct 2021 18:30:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 771717
expires: Wed, 15 Nov 2023 15:26:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kOTdn3bqUzFSoj5ufUdT43ZV7q1zUVUksUfyDSKVsTbpIC360wLeMyhQCdHhe3SjUYpKTOxurBrEg0hKaXxjiMNiGEbsJJdhQncV%2FDzo%2B5wYPg2D4boBZ1anubm%2FSWdhgc5L8%2FOr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76fb66d93cc0b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
37421d0455431f58cbdbbd9300326121
bb2f721cf76c55dd3c3e0bcedf7cdeb7d2601261
071386cdf61026fbbfe6c87ba1ea655434735b7fbf4d5c41645fd692f486ea76

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6565
Cache-Control: max-age=91093
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Etag: "637f85c8-117"
Expires: Sat, 26 Nov 2022 16:44:29 GMT
Last-Modified: Thu, 24 Nov 2022 14:55:04 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 279

cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css

104.17.25.14

200 OK

15 kB

URL HTTP/2
cdnjs.cloudflare.com/ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css
IP
104.17.25.14:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (65311)
Size
15 kB (14850 bytes)
Hash
1201d85f25136b687e48b5c47c69e1ab
a054a126169ae99d19e2449de4b5cb8f3f439730
715dd041182920f894f96779030573777c231ec1c97215f6d6d51a3f8cf8cec2

HTTP Headers

GET /ajax/libs/font-awesome/6.0.0-beta3/css/all.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mancium.io
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: text/css; charset=utf-8
content-length: 14850
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "619c057b-3a02"
last-modified: Mon, 22 Nov 2021 21:02:51 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 851043
expires: Wed, 15 Nov 2023 15:26:16 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nN1JAJ2D6JsSYxGo%2FynEBWJMbGlCA6xjyssDDGzahfmxVH4WEqYCKCM%2FpvlrigFmEqutd3C%2BHpDOMEyYu5YePJpUa1DnQtSmYHOGBr9WYxvokqk4XgLpW2zQL0ejjG18l61b6pxO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 76fb66d93cd9b4ff-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

mancium.io/css/app.css

141.95.126.22

200 OK

81 kB

URL HTTP/2
mancium.io/css/app.css
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
assembler source, ASCII text
Size
81 kB (81362 bytes)
Hash
caabc1b43d1941c6bafc257587acfd41
89f3f756d19315e9ab42e46015b464066a421dd7
5be9e0f4a0e00c2171c67ed1843bef5c7b6281725ad42012edd41934ade03b75

HTTP Headers

GET /css/app.css HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/litepaper
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: text/css
content-length: 81362
last-modified: Wed, 28 Sep 2022 14:02:08 GMT
etag: "633453e0-13dd2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
76544babbcf6515110bd81aaee8e7e63
043497692868c67ac84cdfe70d0a484517abd1c2
a19d5958d683662375a2469d1d7e551188469b967eb6f2bae2d5e43dac51a4f0

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
b44543de9922ec7d97f2e0be1865553e
caef856450efd75de0cfae9402903b1f4bd6de4c
d251377b4bc11c32a847ce4dc5dfda92e56031617f5b3eeea54fdcd0945b3eb7

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.google.com/recaptcha/api.js?

142.250.74.164

200 OK

553 B

URL HTTP/2
www.google.com/recaptcha/api.js?
IP
142.250.74.164:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (850), with no line terminators
Size
553 B (553 bytes)
Hash
1309ff133720d219cc98090d66a051ed
b96fc5a893e42be16d687d7abdecdb13d348a019
358683c66634ea5ee3021c93111d8621d583880bcbbfadf3ec2ff87a15ea1038

HTTP Headers

GET /recaptcha/api.js? HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
expires: Fri, 25 Nov 2022 15:26:16 GMT
date: Fri, 25 Nov 2022 15:26:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 553
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css

151.101.85.229

200 OK

24 kB

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@5.1.3/dist/css/bootstrap.min.css
IP
151.101.85.229:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65306)
Size
24 kB (23938 bytes)
Hash
57a992194d8a5b4bbd4ade561fd348bb
bb66f00fe168c6df50af51abdededdfceb15c59f
be95ec6ab71f5fa87401a698cb9566490258fa9012bb0e8467920b0f74163a0a

HTTP Headers

GET /npm/bootstrap@5.1.3/dist/css/bootstrap.min.css HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mancium.io
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: text/css; charset=utf-8
x-jsd-version: 5.1.3
x-jsd-version-type: version
etag: W/"28021-7Ba9Gb9K6bwuIzasQJpQO7varK0"
content-encoding: gzip
accept-ranges: bytes
date: Fri, 25 Nov 2022 15:26:16 GMT
age: 18192132
x-served-by: cache-fra19136-FRA, cache-bma1621-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 23938
X-Firefox-Spdy: h2

mancium.io/js/helpers.js

141.95.126.22

200 OK

706 kB

URL HTTP/2
mancium.io/js/helpers.js
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
ASCII text, with very long lines (338)
Size
706 kB (706400 bytes)
Hash
d09d4b4c113a2531ce15518cd3bb09f1
f6faaf5f84abf054dfb4a0755d1c128eca4e820e
32c0c2c55875a98bb2d1caf62b9cb04bcf5ae26d750b9993ea1b48090861b16b

HTTP Headers

GET /js/helpers.js HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/litepaper
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: application/javascript
content-length: 706400
last-modified: Wed, 28 Sep 2022 14:02:08 GMT
etag: "633453e0-ac760"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-2B6MK0EB70

142.250.74.168

200 OK

77 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-2B6MK0EB70
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (21484)
Size
77 kB (76578 bytes)
Hash
98737920f4d0fb523df346553475112b
c898db7d5a62db4f9994c3e6356049a7f7b8d71e
6900f7d20952389e08bdf890f752ec09ead26663d7b1f643b4a40a1721b99160

HTTP Headers

GET /gtag/js?id=G-2B6MK0EB70 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 25 Nov 2022 15:26:16 GMT
expires: Fri, 25 Nov 2022 15:26:16 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 76578
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1

104.18.20.226

200 OK

1.5 kB

URL HTTP/1.1
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP
104.18.20.226:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
1.5 kB (1462 bytes)
Hash
8f4904430205c29e56a9f274557c3993
286e2e0a8d000cc29e4425f9585780a22cc7e903
a991b40c20d965665aab78413cae5c07439906e516dadca9c5f6a6cc1cd873bc

HTTP Headers

POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 15:26:16 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "3E6B289DB6974E6920FE94567C76D7D6004994C0"
Expires: Sat, 26 Nov 2022 02:00:00 GMT
Last-Modified: Fri, 25 Nov 2022 14:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1459
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76fb66da2b191c0e-OSL

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
65992aeb8efb9a0b8fd59687090733fe
526a2afccc93d32849185d153fafe44b72797df9
b6677984b6c3602d7b62df776158c09a3e57eec4c0edbddafb0624200715f10e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
87de3dd2c7dce12b01a337d1554a222a
30e0bd68bbb78995aa8a0686ac02848fd5a7a699
533c21806ef66401ea5faeeb37366a33f19f0e9052b4fb06f22981ec73b21a59

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

52.42.148.177

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.42.148.177:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tjWms9xBe4LLbFI7O4ioHw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Y5QDeZu8q8QKS3g9mwFN+MH2/Wg=

fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2

216.58.207.195

200 OK

13 kB

URL HTTP/2
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Size
13 kB (12708 bytes)
Hash
b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394

HTTP Headers

GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://mancium.io
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 06:06:20 GMT
expires: Fri, 24 Nov 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 119996
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

unpkg.com/swiper/swiper-bundle.min.css

104.16.126.175

302 Found

529 B

URL HTTP/2
unpkg.com/swiper/swiper-bundle.min.css
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
529 B (529 bytes)
Hash
44891acd301b772cdea5c94ddb813d1e
617450c468c3b4eb666a7610362ea8bf89290a4a
3e944a9816ed4594dcdea9f1aba45f678997ba68516792980ad46f02754e9af4

HTTP Headers

GET /swiper/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 302 Found
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: text/plain; charset=utf-8
access-control-allow-origin: *
cache-control: public, s-maxage=600, max-age=60
location: /swiper@8.4.5/swiper-bundle.min.css
vary: Accept, Accept-Encoding
via: 1.1 fly.io
fly-request-id: 01GJQP14KWQD86RGC508AY9TD0-fra
cf-cache-status: HIT
age: 323
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76fb66d96b13b4f9-OSL
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Orbitron

142.250.74.10

200 OK

163 kB

URL HTTP/2
fonts.googleapis.com/css?family=Orbitron
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (730)
Size
163 kB (163260 bytes)
Hash
e952ba10d2d0529091322bd739279913
574b3f2a5d0ec3f6753f24279be2528cce132abd
00797069a8038a6e2d1ee0aafe968de1a103eb94dbeb0229f4c8f42d52c5717a

HTTP Headers

GET /css?family=Orbitron HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 15:26:16 GMT
date: Fri, 25 Nov 2022 15:26:16 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

static.ads-twitter.com/uwt.js

151.101.84.157

200 OK

15 kB

URL HTTP/2
static.ads-twitter.com/uwt.js
IP
151.101.84.157:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (57596), with no line terminators
Size
15 kB (15375 bytes)
Hash
573e6a7f86f6f3063763360ef0672c01
b12eab3b4ac8872d49ac6e15f9cd17741765c0cf
02445eb022a04139531f0ce8d8980c31083a1c670936f1477f5cfc4d252133f7

HTTP Headers

GET /uwt.js HTTP/1.1
Host: static.ads-twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 27 Oct 2022 18:55:37 GMT
cache-control: no-cache
content-type: application/javascript; charset=utf-8
content-encoding: gzip
etag: "32ad004436155ec972bc50e6238b5b67+gzip+gzip"
accept-ranges: bytes
date: Fri, 25 Nov 2022 15:26:16 GMT
x-served-by: cache-iad-kjyo7100147-IAD, cache-bma1673-BMA
x-cache: HIT, HIT
vary: Accept-Encoding,Host
p3p: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
x-tw-cdn: FT
content-length: 15375
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
e442612397223aaf77f9f8b1b9e94ed5
b619288c487330e9bd8a9bc9ce5c6768cde65a2b
8339b4a2312aa0dd45249f56b7a3571f4d3f6de14416ffa7eab4d4571ccdc98b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3142
Cache-Control: max-age=163244
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:17 GMT
Etag: "6380ad00-139"
Expires: Sun, 27 Nov 2022 12:47:01 GMT
Last-Modified: Fri, 25 Nov 2022 11:54:40 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 313

mancium.io/storage/img/favicon.png

141.95.126.22

200 OK

20 kB

URL HTTP/2
mancium.io/storage/img/favicon.png
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced\012- data
Size
20 kB (20261 bytes)
Hash
81736089ef456dfc526e6fe347a85069
f0e677deac6f9c02d8eafb0518002011375bd62e
91619136d2367bea4aab2ef11f7edf7cbdb5a7e6472d953c8349f1997fafa6c7

HTTP Headers

GET /storage/img/favicon.png HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/litepaper
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: image/png
content-length: 20261
last-modified: Thu, 10 Feb 2022 18:20:42 GMT
etag: "6205577a-4f25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
accept-ranges: bytes
X-Firefox-Spdy: h2

t.co/i/adsct?bci=3&eci=2&event_id=2f46f29e-38c6-4fee-968b-b10f4f5c8138&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=181663ae-e55b-4b44-ac5c-f84a61430b6c&tw_document_href=https%3A%2F%2Fmancium.io%2Flitepaper&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7onw&type=javascript&version=2.3.29

104.244.42.197

200 OK

43 B

URL HTTP/2
t.co/i/adsct?bci=3&eci=2&event_id=2f46f29e-38c6-4fee-968b-b10f4f5c8138&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=181663ae-e55b-4b44-ac5c-f84a61430b6c&tw_document_href=https%3A%2F%2Fmancium.io%2Flitepaper&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7onw&type=javascript&version=2.3.29
IP
104.244.42.197:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=2f46f29e-38c6-4fee-968b-b10f4f5c8138&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=181663ae-e55b-4b44-ac5c-f84a61430b6c&tw_document_href=https%3A%2F%2Fmancium.io%2Flitepaper&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7onw&type=javascript&version=2.3.29 HTTP/1.1
Host: t.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 15:26:17 GMT
perf: 7626143928
server: tsa_o
set-cookie: muc_ads=ddd68bb3-0563-4f93-a108-67d0c50bc2fb; Max-Age=63072000; Expires=Sun, 24 Nov 2024 15:26:17 GMT; Path=/; Domain=t.co; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 27af81e7890ae82e
strict-transport-security: max-age=0
x-response-time: 115
x-connection-hash: 0fb0421e8d30c26f1c047fbf06e27cac7f7eec734c59a97c1e78af07fa2518c7
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

312 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
312 B (312 bytes)
Hash
ca3ccbc12972dcf92a159706314493cf
81117060111ed383b8c1e81cc712015a8559962b
f147a05cd78356854a39e6754d26363c1e4e59d89a5b7e3f0f5f8f5c3adba21e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5057
Cache-Control: max-age=119794
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 15:26:17 GMT
Etag: "637ffbca-138"
Expires: Sun, 27 Nov 2022 00:42:51 GMT
Last-Modified: Thu, 24 Nov 2022 23:18:34 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 312

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bca4ab9398136601d37c21b97bd8055f
f6c2fa9e0915e9ecf45b482d60abc7bd18ce0506
389ff96f02994a0af16d186059aa885afc4d76d94942f454c9cdf9ff5340f03e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "389FF96F02994A0AF16D186059AA885AFC4D76D94942F454C9CDF9FF5340F03E"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21560
Expires: Fri, 25 Nov 2022 21:25:37 GMT
Date: Fri, 25 Nov 2022 15:26:17 GMT
Connection: keep-alive

mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf

141.95.126.22

206 Partial Content

66 kB

URL HTTP/2
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
Unicode text, UTF-8 text, with CRLF, CR, LF line terminators
Size
66 kB (65536 bytes)
Hash
9418d87b01a51fcd743ac81f467e38cc
f99b508d0709d1d59bde78b44ddb3f016177ba86
d4bed3b0ec685bc5582f5bb641e75076becb4ab627cb17e797338157a2a986ba

HTTP Headers

GET /storage/whitepaper/Mancium_Whitepaper.pdf HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mancium.io/litepaper
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
Range: bytes=13762560-13828095
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D; _ga_2B6MK0EB70=GS1.1.1669389976.1.0.1669389976.0.0.0; _ga=GA1.1.2326221.1669389976

HTTP/2 206 Partial Content
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:17 GMT
content-type: application/pdf
content-length: 65536
last-modified: Wed, 16 Nov 2022 09:33:19 GMT
etag: "6374ae5f-d7fabe"
content-range: bytes 13762560-13828095/14154430
X-Firefox-Spdy: h2

analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=2f46f29e-38c6-4fee-968b-b10f4f5c8138&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=181663ae-e55b-4b44-ac5c-f84a61430b6c&tw_document_href=https%3A%2F%2Fmancium.io%2Flitepaper&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7onw&type=javascript&version=2.3.29

104.244.42.3

200 OK

43 B

URL HTTP/2
analytics.twitter.com/i/adsct?bci=3&eci=2&event_id=2f46f29e-38c6-4fee-968b-b10f4f5c8138&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=181663ae-e55b-4b44-ac5c-f84a61430b6c&tw_document_href=https%3A%2F%2Fmancium.io%2Flitepaper&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7onw&type=javascript&version=2.3.29
IP
104.244.42.3:0
ASN
#13414 TWITTER

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957

HTTP Headers

GET /i/adsct?bci=3&eci=2&event_id=2f46f29e-38c6-4fee-968b-b10f4f5c8138&events=%5B%5B%22pageview%22%2C%7B%7D%5D%5D&integration=advertiser&p_id=Twitter&p_user_id=0&pl_id=181663ae-e55b-4b44-ac5c-f84a61430b6c&tw_document_href=https%3A%2F%2Fmancium.io%2Flitepaper&tw_iframe_status=0&tw_order_quantity=0&tw_sale_amount=0&txn_id=o7onw&type=javascript&version=2.3.29 HTTP/1.1
Host: analytics.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 15:26:17 GMT
perf: 7626143928
server: tsa_o
set-cookie: personalization_id="v1_FhasYwvNXPx1DEFt2yKQtA=="; Max-Age=63072000; Expires=Sun, 24 Nov 2024 15:26:17 GMT; Path=/; Domain=.twitter.com; Secure; SameSite=None
content-type: image/gif;charset=utf-8
cache-control: no-cache, no-store, max-age=0
content-length: 43
x-transaction-id: 54eec1ed636c2bc6
strict-transport-security: max-age=631138519
x-response-time: 105
x-connection-hash: ea09e8689b472d2bbaab32132ff987c2e5be4fd950f448ab70801f6165867dc5
X-Firefox-Spdy: h2

mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf

141.95.126.22

206 Partial Content

66 kB

URL HTTP/2
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
66 kB (65536 bytes)
Hash
fc2c22d9c879cacfe1c75e2c9c1b555b
69fca9c8346140a618852ebdeadc853527f16f37
ab99bf5575c5da0a9fa0fdc35235465d494d88d6d92a0bbaf41043b67ccc06a4

HTTP Headers

GET /storage/whitepaper/Mancium_Whitepaper.pdf HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mancium.io/litepaper
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
Range: bytes=13828096-13893631
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D; _ga_2B6MK0EB70=GS1.1.1669389976.1.0.1669389976.0.0.0; _ga=GA1.1.2326221.1669389976

HTTP/2 206 Partial Content
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:17 GMT
content-type: application/pdf
content-length: 65536
last-modified: Wed, 16 Nov 2022 09:33:19 GMT
etag: "6374ae5f-d7fabe"
content-range: bytes 13828096-13893631/14154430
X-Firefox-Spdy: h2

mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf

141.95.126.22

206 Partial Content

66 kB

URL HTTP/2
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
66 kB (65536 bytes)
Hash
ae0332d6683b16f5c292c7c698cb27f6
e70eca2263c2a94994a4b3fd019b562f55594d25
8d15d354e993200536368e73ce236b29c9b23a3f584bac44c2d13f04c64e21ca

HTTP Headers

GET /storage/whitepaper/Mancium_Whitepaper.pdf HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mancium.io/litepaper
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
Range: bytes=13893632-13959167
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D; _ga_2B6MK0EB70=GS1.1.1669389976.1.0.1669389976.0.0.0; _ga=GA1.1.2326221.1669389976

HTTP/2 206 Partial Content
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:17 GMT
content-type: application/pdf
content-length: 65536
last-modified: Wed, 16 Nov 2022 09:33:19 GMT
etag: "6374ae5f-d7fabe"
content-range: bytes 13893632-13959167/14154430
X-Firefox-Spdy: h2

mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf

141.95.126.22

206 Partial Content

66 kB

URL HTTP/2
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
66 kB (65536 bytes)
Hash
935a05b4593694182c46d54a676f45c7
25cca056f4433372e2b434120768a9737165cdc7
d7a6f2163636f237803de400555adf986cdda0e6b005ec29208335377b877363

HTTP Headers

GET /storage/whitepaper/Mancium_Whitepaper.pdf HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mancium.io/litepaper
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
Range: bytes=13959168-14024703
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D; _ga_2B6MK0EB70=GS1.1.1669389976.1.0.1669389976.0.0.0; _ga=GA1.1.2326221.1669389976

HTTP/2 206 Partial Content
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:17 GMT
content-type: application/pdf
content-length: 65536
last-modified: Wed, 16 Nov 2022 09:33:19 GMT
etag: "6374ae5f-d7fabe"
content-range: bytes 13959168-14024703/14154430
X-Firefox-Spdy: h2

region1.google-analytics.com/g/collect?v=2&tid=G-2B6MK0EB70&gtm=2oeb90&_p=1898298415&cid=2326221.1669389976&ul=en-us&sr=1280x1024&_s=1&sid=1669389976&sct=1&seg=0&dl=https%3A%2F%2Fmancium.io%2Flitepaper&dt=Mancium&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-2B6MK0EB70&gtm=2oeb90&_p=1898298415&cid=2326221.1669389976&ul=en-us&sr=1280x1024&_s=1&sid=1669389976&sct=1&seg=0&dl=https%3A%2F%2Fmancium.io%2Flitepaper&dt=Mancium&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-2B6MK0EB70&gtm=2oeb90&_p=1898298415&cid=2326221.1669389976&ul=en-us&sr=1280x1024&_s=1&sid=1669389976&sct=1&seg=0&dl=https%3A%2F%2Fmancium.io%2Flitepaper&dt=Mancium&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://mancium.io
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://mancium.io
date: Fri, 25 Nov 2022 15:26:17 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf

141.95.126.22

200 OK

14 MB

URL HTTP/2
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
PDF document, version 1.6, 43 pages\012- data
Size
14 MB (14154430 bytes)
Hash
1e1bab468f9a5741ee38c0319e521c13
767758b2a7ae78ca1a91d8bf3588f0504b13a835
956b6bd8549ad9e05118071ca18d710df5fa1b7f154b2bf85620289dbc96aa7b

HTTP Headers

GET /storage/whitepaper/Mancium_Whitepaper.pdf HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/litepaper
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: object
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: application/pdf
content-length: 14154430
last-modified: Wed, 16 Nov 2022 09:33:19 GMT
etag: "6374ae5f-d7fabe"
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12746
Expires: Fri, 25 Nov 2022 18:58:44 GMT
Date: Fri, 25 Nov 2022 15:26:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12746
Expires: Fri, 25 Nov 2022 18:58:44 GMT
Date: Fri, 25 Nov 2022 15:26:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12746
Expires: Fri, 25 Nov 2022 18:58:44 GMT
Date: Fri, 25 Nov 2022 15:26:18 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b75c00c21f5854618bc06d14b8d83c40
ae14f585ae9682e6c2fad146c12c00ee4d83e8f3
a8e7585e49b01a64520051f8d38f499c8cb82645e3d146e6ca34378eac684e69

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A8E7585E49B01A64520051F8D38F499C8CB82645E3D146E6CA34378EAC684E69"
Last-Modified: Wed, 23 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12746
Expires: Fri, 25 Nov 2022 18:58:44 GMT
Date: Fri, 25 Nov 2022 15:26:18 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg

34.120.237.76

200 OK

4.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.0 kB (3955 bytes)
Hash
4006a9037ab5f28dca62b0aa7a704c41
74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b
556ae6516a1f272a96569a3637858292731a34e82672b682f6e7442ca68f4b1d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F44e0daff-bc52-4621-aa2f-d9c59da29c1c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3955
x-amzn-requestid: 42c8d309-a8d2-47cc-8d97-c7fa3a63f8cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cCM9NGJHoAMF4sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637d8eba-2a06cda9346bd02c46955444;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 03:08:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5MlzpHpq7auKLSAYikINuPAylXI11VJL3xxIJ9Dyub-7rjQaPfg0WQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 02:07:28 GMT
age: 47930
etag: "74cb2ccd6ae38b171bfbe5a74f0eccb09aa3836b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf

141.95.126.22

206 Partial Content

64 kB

URL HTTP/2
mancium.io/storage/whitepaper/Mancium_Whitepaper.pdf
IP
141.95.126.22:0
ASN
#16276 OVH SAS

File type
ASCII text, with CRLF line terminators
Size
64 kB (64190 bytes)
Hash
03421ab6cb0e0c952e0e1d97162ecf78
5a6862bbf54ae1e395b75546e07e58f6bbea0866
3a49333fcd517e26a6253f1fb439a1817af1d1e84490cafd8208e290228102fa

HTTP Headers

GET /storage/whitepaper/Mancium_Whitepaper.pdf HTTP/1.1
Host: mancium.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mancium.io/litepaper
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
Range: bytes=14090240-14154429
Cookie: XSRF-TOKEN=eyJpdiI6InpaeWZGSVhoSWQyN1Faa2JhcGp6L1E9PSIsInZhbHVlIjoibUxMQlFjTVVtWVpObThJdkdoZWJpdzlVYWRXWmxhVjBxdzd1Z25KVEovRmFVM2VWYkFFNERpTnFHM1dSbjNLb1R5MmlBZmI1YVc2S29pNFY0UkhUZUJGTmtybGFCRk1PaTRwME9KT05BVFZmUG0yZTBndGJxOGdUUlFTalJTbWciLCJtYWMiOiIzODQzZTJjZTgxZWNjNzMyNWMwZmUwNTU3ZTAyMjAxODU5NzA3ZmQ4M2MxYjA5YThhNjBmNjg3ZmE5MGJhMzJlIiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IkkzWi9DYzFheElKM2NkQno2STh5akE9PSIsInZhbHVlIjoiamY1bFYvb2RXaVJXcXdyYjRIYkV6S2FhVTFqMm9rMzNOZ1VQWmd5VENLYWZwYkd6d2xibjFwNXg1VlNVWENRTWx3T2RWM0p1UE1heFRkNWtUWWk3QlV4cjFKSEp5SHVBalhETUptTFZWbk9xa3pPc0s0TWNsUzVxVnJ2UzVkdDIiLCJtYWMiOiJlZGYyODdiODE1N2FlZjM5MGI2NmY3MzZlOWI1NjE0MTk5MDA5OTUwMGMzMjVlOWIyNWJjYWVkMjk4YThmMTBhIiwidGFnIjoiIn0%3D; _ga_2B6MK0EB70=GS1.1.1669389976.1.0.1669389976.0.0.0; _ga=GA1.1.2326221.1669389976

HTTP/2 206 Partial Content
server: nginx/1.20.2
date: Fri, 25 Nov 2022 15:26:18 GMT
content-type: application/pdf
content-length: 64190
last-modified: Wed, 16 Nov 2022 09:33:19 GMT
etag: "6374ae5f-d7fabe"
content-range: bytes 14090240-14154429/14154430
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (8006 bytes)
Hash
8b6ee13d43732f7c764a49500d092865
5d15fd672e968d59b541e4d5d0d01cd5e69f4075
fc3623d527147e1c6aab399251ed8d527e6eefdee6ad7183f00df2613498bfe4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F00e89fb5-5cb3-4f68-936b-5ee31d6061bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8006
x-amzn-requestid: 78aab013-df11-464b-a1c7-ee41b7e77b40
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB-AHSrIAMFvKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe38c-4d795f410a57fc2c21d7075d;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: q53jN1uOtSdeThbk2_0UF6Rl3g4_-_TW7uK1_6Z5oDwSTSRk8XRjyQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:08 GMT
etag: "5d15fd672e968d59b541e4d5d0d01cd5e69f4075"
content-type: image/jpeg
age: 64270
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4270 bytes)
Hash
648677a7e7bab1896a190d2e5fb7243c
6217a262002244ef3f2e8034076a735cafd9888a
72f2913f7c0770ebab0f2683bdc1ec5a5db8872e8f2c62a8fd5c9178b95dbb06

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F216636c8-4200-4f0d-83d2-8579be32f1ac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4270
x-amzn-requestid: 7327f8fb-804b-4d09-83dc-628e35ffa74b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8xFwXoAMFkqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-33f83cea2c585279140f4f59;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:00 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NLXTbS53l_c-lByM8Ym4_tfOlgP2lB-F1dYxOSfdeEfBSM41X0Cpug==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:01 GMT
etag: "6217a262002244ef3f2e8034076a735cafd9888a"
content-type: image/jpeg
age: 64277
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11249 bytes)
Hash
481c033b9ffd030ff0de6e35cf788b47
85d3baad9217af2b5d75c019d2ef95dbb919a788
02443c7869914c2b29892deb0c645395bcf4e8379da3cf20974614ff9c92893b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac98a873-8b46-43f5-9ac0-fc1cc1a0cd81.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 8f679d7f-2ea5-4e47-b78d-79af59435a62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cFPHYHkAIAMFpBg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637ec562-26108a785e910dc3355d58f1;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 01:14:10 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NKwpIdw2RZNZNh69AF5GNvunA_QfRGClvzcRP3zYwn7c8BLBlt097g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 25 Nov 2022 08:37:15 GMT
age: 24543
etag: "85d3baad9217af2b5d75c019d2ef95dbb919a788"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.0 kB (7993 bytes)
Hash
92c78302bcce1568eb6a5563100b932c
43d1dec7fc06879988c9c3cadd800cc8145df988
0dda9914306c8e3a7ea75eade8e762652d93907dd6c5a8cc81707d6d8098b60a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca5cb469-21a0-420a-875c-a81635b33f53.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7993
x-amzn-requestid: 9f0ff853-4819-47cd-959d-658401ea5748
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cEvCsG5mIAMFqAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637e9211-1c48b9223684f2942f8dd42d;Sampled=0
x-amzn-remapped-date: Wed, 23 Nov 2022 21:35:13 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7YSXUV-LZpsI7vciFhuqt1EVr6YRkhxcOgMg8z8bxLcOE01_baf6Gg==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:47:08 GMT
age: 63550
etag: "43d1dec7fc06879988c9c3cadd800cc8145df988"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11743 bytes)
Hash
8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 63093
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

bulkmail.nazmulfreelancer.com/index.php/campaigns/fm204v9zfb8f4/track-url/rw631bo8rt891/d7dd5161a8417afb2ce8258ed3ee4752b78f0f38

104.21.76.157

301 Moved Permanently

0 B

URL HTTP/2
bulkmail.nazmulfreelancer.com/index.php/campaigns/fm204v9zfb8f4/track-url/rw631bo8rt891/d7dd5161a8417afb2ce8258ed3ee4752b78f0f38
IP
104.21.76.157:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /index.php/campaigns/fm204v9zfb8f4/track-url/rw631bo8rt891/d7dd5161a8417afb2ce8258ed3ee4752b78f0f38 HTTP/1.1
Host: bulkmail.nazmulfreelancer.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
date: Fri, 25 Nov 2022 15:26:15 GMT
content-type: text/html; charset=UTF-8
location: https://mancium.io/litepaper
cf-ray: 76fb66d51a381c0a-OSL
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
last-modified: Fri, 25 Nov 2022 15:26:15 GMT
cf-cache-status: DYNAMIC
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
pragma: no-cache
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AzaqQDJGEJRzYEzeiSIclMCSo%2FDzB42Hj9mf1w3%2BEGUlQEwkABe3hVXucwMONz4nn5sDlG%2Fn0uhXQFwzHgDH7ZtqTlMSu8mWASuyR0qeNTevQPFHF6TDTAu%2F9lMxLoPON1ZdwLfYdvypts%2BDTMjxIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Montserrat

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Montserrat
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Montserrat HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 15:26:16 GMT
date: Fri, 25 Nov 2022 15:26:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Nunito:wght@400;600;700&display=swap

142.250.74.10

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css2?family=Nunito:wght@400;600;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css2?family=Nunito:wght@400;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://mancium.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 25 Nov 2022 15:26:16 GMT
date: Fri, 25 Nov 2022 15:26:16 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

unpkg.com/swiper@8.4.5/swiper-bundle.min.css

104.16.126.175

200 OK

0 B

URL HTTP/2
unpkg.com/swiper@8.4.5/swiper-bundle.min.css
IP
104.16.126.175:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /swiper@8.4.5/swiper-bundle.min.css HTTP/1.1
Host: unpkg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://mancium.io/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 15:26:16 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: public, max-age=31536000
last-modified: Sat, 26 Oct 1985 08:15:00 GMT
etag: W/"4056-knQFLPhd7qTFS8igAGqEi45G1Ug"
via: 1.1 fly.io
fly-request-id: 01GJD2PQDR8QGAYE21QZPGM2JK-fra
cf-cache-status: HIT
age: 356128
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 76fb66d97b32b4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (11)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML