Report - domwin-y95s4du4-3.github.io/auth

Report Overview

Visited public
2024-07-10 03:55:51
Tags
URL
domwin-y95s4du4-3.github.io/auth
Finishing URL
domwin-y95s4du4-3.github.io/auth/#/fb-web
IP / ASN
185.199.111.153
#54113 FASTLY
Title
FacebookLogin

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
domwin-y95s4du4-3.github.io	unknown	2013-03-08	2024-03-19 15:29:22	2024-03-19 15:29:22	3.8 kB	210 kB	185.199.108.153
api.ipify.org	3267	2014-01-05	2014-10-06 14:38:43	2024-07-09 02:13:24	483 B	267 B	104.26.12.205
o.pki.goog	unknown	2016-06-13	2024-04-24 13:44:57	2024-07-08 18:24:16	650 B	1.4 kB	142.250.74.131
firestore.googleapis.com	1961	2005-01-25	2017-10-10 16:33:50	2024-07-09 15:06:12	1.5 kB	2.7 kB	142.250.74.106
static.xx.fbcdn.net	661	2007-05-03	2012-12-01 14:12:13	2024-07-08 18:25:53	459 B	5.4 kB	31.13.72.12
r10.o.lencr.org	unknown	2020-06-29	2024-06-06 21:45:11	2024-07-08 18:12:20	2.3 kB	6.2 kB	23.36.76.226

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2024-07-10 03:55:26	low	Client IP	104.26.12.205	ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (3)

	URL	From	Size	First Seen	Last Seen
	domwin-y95s4du4-3.github.io/auth/polyfills-es2015.a0fa45e0fa52702b64f0.js	ScriptElement	37 kB	2023-03-07	2025-05-11
Pretty URL domwin-y95s4du4-3.github.io/auth/polyfills-es2015.a0fa45e0fa52702b64f0.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02 Last Seen2025-05-11 15:50 Times Seen63 Hash c13545a4366187eaeb662de603fb44f9 72ad4ccc0a3916ae4598199447cdeadd6d380570 3cff92ecbf327e17b4ae0069b7f20b79ee5c593ad5754d6856b81471e71d05a8 Loading...

	domwin-y95s4du4-3.github.io/auth/main-es2015.3a970dab20b0325286ae.js	ScriptElement	661 kB	2024-06-03	2024-08-19
Pretty URL domwin-y95s4du4-3.github.io/auth/main-es2015.3a970dab20b0325286ae.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-06-03 22:29 Last Seen2024-08-19 20:52 Times Seen6 Hash 9041530c8be8a0f1ad0fcab21eb11471 883e5c4ff307b03dc77d0c30970785fe23199b5a 5b8d7f8bf74e86337f8c4ed6701309e8f3544fe08422f112602694ea7d4ea89f Loading...

	domwin-y95s4du4-3.github.io/auth/runtime-es2015.409e6590615fb48d139f.js	ScriptElement	1.5 kB	2023-03-07	2025-05-11
Pretty URL domwin-y95s4du4-3.github.io/auth/runtime-es2015.409e6590615fb48d139f.js IP 185.199.108.153 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-05-11 15:50 Times Seen666 Hash 1244d3f2f28ecc6619157927aca95200 a9aafcf49f49145093fc831efd9b8e2f6c71bb9c 6c5acbb82a46a4971660f65131241dffcc28828f4dbd76b8ec7bab0b468250f8 Loading...

HTTP Transactions (21)

	URL	IP	Response	Size
	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash c2f3e4e1f94efa7a80f9deeb3d459176 7a8f013a3d13ffe4241b8e2a8b9ca63daeeace53 5f9feb641b1e74a7c14eee1104953d1e9faa0341d1f27fdbd50fa8207e6c0ac8 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "5F9FEB641B1E74A7C14EEE1104953D1E9FAA0341D1F27FDBD50FA8207E6C0AC8" Last-Modified: Tue, 09 Jul 2024 15:27:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6861 Expires: Wed, 10 Jul 2024 05:49:46 GMT Date: Wed, 10 Jul 2024 03:55:25 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash b34ca6af54e2b9fea57d418f5d1928f7 510b69f4470789a573217726d6f1a3d6ee765460 41e6a348aac9e9db44bfa14b3aa29d411f4489b375ae1f1be6b0d280af98541d HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "41E6A348AAC9E9DB44BFA14B3AA29D411F4489B375AE1F1BE6B0D280AF98541D" Last-Modified: Mon, 08 Jul 2024 01:53:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=9046 Expires: Wed, 10 Jul 2024 06:26:11 GMT Date: Wed, 10 Jul 2024 03:55:25 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash e7492695b5254a3a63fcffb4f1ee8cec 0361713c6d8129210245347284c7c6babfd28fb7 5d1bc1c01894fd88a0d4680490977488d6458bb58a98ace24ef8aa103538bc1f HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "5D1BC1C01894FD88A0D4680490977488D6458BB58A98ACE24EF8AA103538BC1F" Last-Modified: Tue, 09 Jul 2024 23:47:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10448 Expires: Wed, 10 Jul 2024 06:49:33 GMT Date: Wed, 10 Jul 2024 03:55:25 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash fc076d7a99abd74b9da6b35304bb93e9 9d541501d5141dcf7b4d839d6fcffabec81e1a14 c86804eff01a7bb9ff866508bfdb1b071cfa4a26617d11094b9f5226e1a4b970 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "C86804EFF01A7BB9FF866508BFDB1B071CFA4A26617D11094B9F5226E1A4B970" Last-Modified: Tue, 09 Jul 2024 16:18:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7022 Expires: Wed, 10 Jul 2024 05:52:27 GMT Date: Wed, 10 Jul 2024 03:55:25 GMT Connection: keep-alive`

	domwin-y95s4du4-3.github.io/auth	185.199.108.153	301 Moved Permanently	162 B
URL User Request GET HTTP/2 domwin-y95s4du4-3.github.io/auth IP 185.199.108.153:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type HTML document, ASCII text, with CRLF line terminators Size 162 B (162 bytes) Hash 4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a HTTP Headers `GET /auth HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Upgrade-Insecure-Requests: 1 Connection: keep-alive Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 301 Moved Permanently server: GitHub.com content-type: text/html permissions-policy: interest-cohort=() location: https://domwin-y95s4du4-3.github.io/auth/ access-control-allow-origin: strict-transport-security: max-age=31556952 expires: Wed, 10 Jul 2024 04:05:25 GMT cache-control: max-age=600 x-proxy-cache: MISS x-github-request-id: 8EC6:8619C:3EC0674:4083C63:668E0629 accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:25 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583726.720359,VS0,VE128 vary: Accept-Encoding x-fastly-request-id: f02990f975259a34bca9d2f17df30eb729b7c53b content-length: 162 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/auth/	185.199.108.153	200 OK	404 B
URL User Request GET HTTP/2 domwin-y95s4du4-3.github.io/auth/ IP 185.199.108.153:443 ASN #54113 FASTLY Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type HTML document, ASCII text, with very long lines (455) Size 404 B (404 bytes) Hash a3786a744cd5da6641b93cc72abae599 a30b3a78a962b24e2ae9ef3d1b19975249ba3d9c 8142a944e0e4231f788e918b5d685e1da573de04bbf1d609f9136c4e96e46895 HTTP Headers `GET /auth/ HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: text/html; charset=utf-8 permissions-policy: interest-cohort=() x-origin-cache: HIT last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: strict-transport-security: max-age=31556952 etag: W/"5f5ed57f-339" expires: Wed, 10 Jul 2024 04:05:25 GMT cache-control: max-age=600 content-encoding: gzip x-proxy-cache: MISS x-github-request-id: A973:292984:15E0B62:1673D9F:668E062D accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:26 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583726.885522,VS0,VE130 vary: Accept-Encoding x-fastly-request-id: 06d08481f3c1a8b8f23d7ee320c9aebec22a0952 content-length: 404 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/auth/runtime-es2015.409e6590615fb48d139f.js	185.199.108.153	200 OK	719 B
URL GET HTTP/2 domwin-y95s4du4-3.github.io/auth/runtime-es2015.409e6590615fb48d139f.js IP 185.199.108.153:443 ASN #54113 FASTLY Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (1485), with no line terminators Size 719 B (719 bytes) Hash 1244d3f2f28ecc6619157927aca95200 a9aafcf49f49145093fc831efd9b8e2f6c71bb9c 6c5acbb82a46a4971660f65131241dffcc28828f4dbd76b8ec7bab0b468250f8 HTTP Headers `GET /auth/runtime-es2015.409e6590615fb48d139f.js HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/auth/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: application/javascript; charset=utf-8 permissions-policy: interest-cohort=() x-origin-cache: HIT last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: * strict-transport-security: max-age=31556952 etag: W/"5f5ed57f-5cd" expires: Wed, 10 Jul 2024 04:05:26 GMT cache-control: max-age=600 content-encoding: gzip x-proxy-cache: MISS x-github-request-id: 8EC6:8619C:3EC06C5:4083CB7:668E062D accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:26 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583726.279964,VS0,VE122 vary: Accept-Encoding x-fastly-request-id: 357126f29e1a7856dd1acdb934a0bd32ca77305e content-length: 719 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/auth/polyfills-es2015.a0fa45e0fa52702b64f0.js	185.199.108.153	200 OK	12 kB
URL GET HTTP/2 domwin-y95s4du4-3.github.io/auth/polyfills-es2015.a0fa45e0fa52702b64f0.js IP 185.199.108.153:443 ASN #54113 FASTLY Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (36993), with no line terminators Size 12 kB (12521 bytes) Hash c13545a4366187eaeb662de603fb44f9 72ad4ccc0a3916ae4598199447cdeadd6d380570 3cff92ecbf327e17b4ae0069b7f20b79ee5c593ad5754d6856b81471e71d05a8 HTTP Headers `GET /auth/polyfills-es2015.a0fa45e0fa52702b64f0.js HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/auth/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: application/javascript; charset=utf-8 permissions-policy: interest-cohort=() last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: * strict-transport-security: max-age=31556952 etag: W/"5f5ed57f-9081" expires: Wed, 10 Jul 2024 04:05:26 GMT cache-control: max-age=600 content-encoding: gzip x-proxy-cache: MISS x-github-request-id: 0CF6:317377:3D22A43:3ED928F:668E062D accept-ranges: bytes date: Wed, 10 Jul 2024 03:55:26 GMT via: 1.1 varnish age: 0 x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583726.280738,VS0,VE127 vary: Accept-Encoding x-fastly-request-id: 808b9ccf6676ea6bd9f77536b1782836e326d0f9 content-length: 12521 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/auth/styles.7d5ff173b8db0faa2071.css	185.199.108.153	200 OK	40 B
URL GET HTTP/2 domwin-y95s4du4-3.github.io/auth/styles.7d5ff173b8db0faa2071.css IP 185.199.108.153:443 ASN #54113 FASTLY Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type ASCII text, with no line terminators Size 40 B (40 bytes) Hash 6bb8659e4975b81e2e72fbe3336c0355 a0ef6ed0f6e976cb64f3dfba2035311164c5c149 012ad7f0fe79cfe8aefaaef7a3beb9be399c8e205a706d8c73f5e91d0a1b7509 HTTP Headers `GET /auth/styles.7d5ff173b8db0faa2071.css HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/auth/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: text/css; charset=utf-8 permissions-policy: interest-cohort=() x-origin-cache: HIT last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: strict-transport-security: max-age=31556952 etag: "5f5ed57f-28" expires: Wed, 10 Jul 2024 04:05:26 GMT cache-control: max-age=600 x-proxy-cache: MISS x-github-request-id: A973:292984:15E0B9B:1673DD9:668E062E accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:26 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583726.279613,VS0,VE131 vary: Accept-Encoding x-fastly-request-id: 6e80c53868ad162767c8a6ef12eeab69533ed3fc content-length: 40 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/auth/main-es2015.3a970dab20b0325286ae.js	185.199.108.153	200 OK	189 kB
URL GET HTTP/2 domwin-y95s4du4-3.github.io/auth/main-es2015.3a970dab20b0325286ae.js IP 185.199.108.153:443 ASN #54113 FASTLY Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators Size 189 kB (188723 bytes) Hash 9041530c8be8a0f1ad0fcab21eb11471 883e5c4ff307b03dc77d0c30970785fe23199b5a 5b8d7f8bf74e86337f8c4ed6701309e8f3544fe08422f112602694ea7d4ea89f HTTP Headers `GET /auth/main-es2015.3a970dab20b0325286ae.js HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/auth/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: application/javascript; charset=utf-8 permissions-policy: interest-cohort=() last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: * strict-transport-security: max-age=31556952 etag: W/"5f5ed57f-a1773" expires: Wed, 10 Jul 2024 04:05:26 GMT cache-control: max-age=600 content-encoding: gzip x-proxy-cache: MISS x-github-request-id: 58C8:8619C:3EC06C6:4083CB8:668E062E accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:26 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583726.283614,VS0,VE150 vary: Accept-Encoding x-fastly-request-id: 7440cd67b97d8a515a88f34dce18cdd44c883d9c content-length: 188723 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/assets/i18n/en.json	185.199.108.153	200 OK	211 B
URL GET HTTP/2 domwin-y95s4du4-3.github.io/assets/i18n/en.json IP 185.199.108.153:443 ASN #54113 FASTLY Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type JSON text data Size 211 B (211 bytes) Hash 84cbdcd1c4d765da97326c5cfe3cbbc0 8021822a33692c06ca4020d0176c851a77860d99 e41a6a939c69e3d64a1db1145cf61fada03a47ec9a8e1f9accb95abb48f59378 HTTP Headers `GET /assets/i18n/en.json HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, /* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/auth/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: application/json; charset=utf-8 permissions-policy: interest-cohort=() x-origin-cache: HIT last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: * strict-transport-security: max-age=31556952 etag: W/"5f5ed57f-152" expires: Wed, 10 Jul 2024 04:05:26 GMT cache-control: max-age=600 content-encoding: gzip x-proxy-cache: MISS x-github-request-id: DD09:3AB50B:336D4EE:34D4BD9:668E062E accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:26 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583727.681219,VS0,VE128 vary: Accept-Encoding x-fastly-request-id: b530ece819a210885aa2039ae54688869bd79cf4 content-length: 211 X-Firefox-Spdy: h2

	api.ipify.org/?format=json	104.26.12.205	200 OK	21 B
URL GET HTTP/2 api.ipify.org/?format=json IP 104.26.12.205:443 ASN #13335 CLOUDFLARENET Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerGoogle Trust Services LLC Subjectipify.org FingerprintD7:26:8F:42:EA:20:0D:40:EC:E2:9C:42:DD:94:45:64:2A:B8:C6:CE ValiditySun, 19 May 2024 23:17:57 GMT - Sat, 17 Aug 2024 23:17:56 GMT File type JSON text data Size 21 B (21 bytes) Hash 7d69c71af0f191e9a72db6153f8018d1 f67c5f2887bc05654b47f76e9621e53a4091aed1 5bac6e06cf0e1ad38c55f9f9d12122272bf4b8157877629fe68cd33fe2133c65 HTTP Headers `GET /?format=json HTTP/1.1 Host: api.ipify.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json, text/plain, / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://domwin-y95s4du4-3.github.io DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` `HTTP/2 200 OK date: Wed, 10 Jul 2024 03:55:26 GMT content-type: application/json content-length: 21 access-control-allow-origin: * vary: Origin cf-cache-status: DYNAMIC server: cloudflare cf-ray: 8a0d9e442bb0b509-OSL X-Firefox-Spdy: h2`

	o.pki.goog/wr2	142.250.74.131		472 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2faef6967f894b435b4fd45838e9098b da2578c7a0eb274763211b0bb15895ae94af6662 1b3e1b330151a1b5c56aca9c203ecd080f86901b23914d8fb3c53c9ff5e8ab92 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 10 Jul 2024 03:55:26 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fboard-y95s4du4%2Fdatabases%2F(default)&VER=8&RID=88404&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F7.15.5%0D%0A&zx=jzewipgbg0yo&t=1	142.250.74.106	200 OK	71 B
URL POST HTTP/2 firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fboard-y95s4du4%2Fdatabases%2F(default)&VER=8&RID=88404&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F7.15.5%0D%0A&zx=jzewipgbg0yo&t=1 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerGoogle Trust Services Subjectedgecert.googleapis.com Fingerprint71:61:BE:9E:36:C4:16:14:E7:D1:F6:C9:B8:75:08:A0:37:38:37:79 ValidityThu, 13 Jun 2024 16:52:03 GMT - Thu, 05 Sep 2024 16:52:02 GMT File type ASCII text Size 71 B (71 bytes) Hash 12a3923d3fae86fca3bcd66a53d13f77 a442575d28ad91fe8e2fd5b7cc9d428890d86066 5c07c7628618ce05a27a1a18632d52e2a9184fc51a4142b3e0ae452cfbe6fe62 HTTP Headers POST /google.firestore.v1.Firestore/Listen/channel?database=projects%2Fboard-y95s4du4%2Fdatabases%2F(default)&VER=8&RID=88404&CVER=22&X-HTTP-Session-Id=gsessionid&%24httpHeaders=X-Goog-Api-Client%3Agl-js%2F%20fire%2F7.15.5%0D%0A&zx=jzewipgbg0yo&t=1 HTTP/1.1 Host: firestore.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/x-www-form-urlencoded Content-Length: 286 Origin: https://domwin-y95s4du4-3.github.io DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache HTTP/2 200 OK x-client-wire-protocol: h2 x-http-session-id: DGX97-j6odSkHYSi3mYfcAth3zCymEZGT_qF3HRQTHQ content-type: text/plain; charset=utf-8 content-encoding: gzip date: Wed, 10 Jul 2024 03:55:27 GMT server: ESF cache-control: private content-length: 71 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff access-control-allow-origin: https://domwin-y95s4du4-3.github.io vary: origin access-control-allow-credentials: true access-control-expose-headers: x-client-wire-protocol,x-http-session-id alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	static.xx.fbcdn.net/rsrc.php/v3/yJ/r/qXIFW2wh207.png	31.13.72.12	404 Not Found	0 B
URL GET HTTP/2 static.xx.fbcdn.net/rsrc.php/v3/yJ/r/qXIFW2wh207.png IP 31.13.72.12:443 ASN #32934 FACEBOOK Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.facebook.com Fingerprint04:07:8A:0C:BA:15:84:D8:A5:9C:D8:8D:D6:B1:A8:19:E9:98:47:20 ValidityThu, 18 Apr 2024 00:00:00 GMT - Wed, 17 Jul 2024 23:59:59 GMT File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /rsrc.php/v3/yJ/r/qXIFW2wh207.png HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache` HTTP/2 404 Not Found x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * reporting-endpoints: permissions_policy="https://www.xx.facebook.com/ajax/browser_error_reports/" report-to: {"max_age":21600,"endpoints":[{"url":"https:\/\/www.xx.facebook.com\/ajax\/browser_error_reports\/"}],"group":"permissions_policy"} content-security-policy-report-only: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' blob: data: 'self' 'unsafe-eval';style-src 'unsafe-inline';connect-src .fbcdn.net wss://.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' blob: data: 'self' 'unsafe-eval';style-src 'unsafe-inline';connect-src .fbcdn.net wss://.fbcdn.net attachment.fbsbx.com blob: 'self';img-src data: blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; document-policy: force-load-at-top permissions-policy: accelerometer=(), attribution-reporting=(), autoplay=(), battery=(self), bluetooth=(), camera=(), ch-device-memory=(), ch-downlink=(), ch-dpr=(), ch-ect=(), ch-rtt=(), ch-save-data=(), ch-ua-arch=(), ch-ua-bitness=(), ch-viewport-height=(), ch-viewport-width=(), ch-width=(), clipboard-read=(), clipboard-write=(), compute-pressure=(), display-capture=(), encrypted-media=(), fullscreen=(self), gamepad=(), geolocation=(), gyroscope=(), hid=(), idle-detection=(), interest-cohort=(), keyboard-map=(), local-fonts=(), magnetometer=(), microphone=(), midi=(), otp-credentials=(), payment=(), picture-in-picture=(), private-state-token-issuance=(), publickey-credentials-get=(), screen-wake-lock=(), serial=(), shared-storage=(), shared-storage-select-url=(), private-state-token-redemption=(), usb=(), usb-unrestricted=(), unload=(self), window-management=(), xr-spatial-tracking=();report-to="permissions_policy" cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 content-type: text/html; charset="utf-8" x-fb-debug: Rz4FMjDaXCUMhWqWDKh6Wulj18oQydkPOaCuxEyDB3izXmdSI/a4TnEJq+wwQadzbEGulqSby19UOS2RPQx50g== content-length: 0 proxy-status: http_request_error; e_proxy="AcIQiPFjKmolAEmWfeA-NCbdGoANTsx81VlO1LD07dkwXwqFTES5vLECyS92vhyjyX3hPYcntseBmyDU9x1e"; e_fb_binaryversion="AcJ7uH8rDizhDRSXn4urSKG1DmdrdtdC9-9zqFEJNLruiP4rXmzjM_n6XzhlC-H3v725YhxVdJVZPb0lOQD63qFwMMSnUSAAc84"; e_fb_httpversion="AcJpHsHgv52SngRIuYRnzenpuR2r4keIIwQcS-kwhavxwEr-LEe-HFFYck33"; e_fb_responsebytes="AcIR8Er9uCTxIBQy4H9vst9lVUs9AUDNtyrR1gbFdZd-vExQJN18LZ4QmQ"; e_fb_requesttime="AcJ4g1gDK5sp30x0MKLhhtfUZezE9rrlJF9BFrwCKeDhd0yHu8g2YujVdiP7kvYpOO2vjVA9iw"; e_fb_requesthandler="AcLu5chSbacf7pNiNhkxy1vHrwt89JgH3ZE2KGjjAHjlCyESISYq-a6qNPaoKv3R7h8YHrsCNOE"; e_fb_hostheader="AcJ22_YrrrkZi_qzaLc8PclrS2DTt6XLiZu3oTMgFurNdO5WU5S0Onj43h6swiUsME5LDEv_aq83e6GmZw"; e_fb_requestsequencenumber="AcL1xLEFdHuPm17SjI25rK9YdwoQPxgk8_eTF1QunM_5v4hZHRLiN_mXutQ"; e_upip="AcKRDiLJGc1oVfLrfwt90xTebu0M3Iul2UZT6cNPQMTlRP2lRCp7lhdy2vC_Wa3-sIvIndGqk40t94hQaAfIY9kmqGg2S6gY3SyYlQ"; e_fb_builduser="AcLNjYZzx5nXof7f_HU610fs6MY5xfihXUV_ElKFQSbwz-Rg2dhShjUT58L79zoaq5c"; e_fb_vipport="AcJHyYogmS4qpY0qIJ5gFcTxuG6-eBFbHUU6y3KlW5EAmNkJBJJyV0-qrQw2"; e_clientaddr="AcKder_lKROtHJ8NvwO1JZjFW_GGaJcb7op-SB5diW_0eu_Vtj5NS9iw9d2q0KKeCI79-Z4NtYdjhlsndq7e-O4uWcJBHeKD1jOPwzLRd0IQzaMNdQ"; e_fb_vipaddr="AcKGtQ64SgqO6W8KZLwnYvJ7nG2VujyZXwCuTxDL65C5DkslMj0UKhvOPze83OcMpYyEukS0-XmtPtZtuDnczVS5VxdHpJwm7w"; e_fb_configversion="AcL5VZEn1LiCSm0fX0SrYD5-i0EV71TBt0JnF6Z2ic6WhbqlGoX402EWY7eGQg", http_request_error; e_proxy="AcLbXTAP9h43r-WU7hCidRPNQUOfsgp36bw67L-8AtYdKci18vJpF9RjB6mhzsfsiOb_M6lqQgx6B_c"; e_fb_binaryversion="AcJc5d_-NSt9XyUQoTmuww0zvKXxm8PcYqYmNJV8omVbtkYLW_mHcFepac3Z6302UYbqp3HsXt_Fm4A6guhv5xiO08XD_ZZ8uEA"; e_fb_httpversion="AcIWWlY7vtPqjjQlus1rnqSV-CT-EnX5sdkoyVNAxGZbIeVUjJOpgNVGWu_G"; e_fb_responsebytes="AcIgBZoxLVmPiOKp4CwEKyVGmPiWAVHxCVu1LmEEo0OJM7LUgmgihK8NOA"; e_fb_requesttime="AcIL9uGq6WBRvAyaCxyFTcBDuvtWW8TAvDKV5ws2cB2Uw1f32ILDdjsJxaX3G2jdp-IEl-T1_Q"; e_fb_requesthandler="AcJctk-yICUGljFELVwcxhGxcf6EYWDQpo3Ztrik4w6Z4r2oLF69EFwf_f018-mFTI8j6NA71Vz4ZQ"; e_fb_hostheader="AcInLgiyuDsAv0JkSQXWNd4NfVxfWoUnCAiIS7nvLby5zriiGsvlrfEfglw_drVOt4rpaDdG0yS8B5iOyg"; e_fb_requestsequencenumber="AcII6DeBI1nk-J3jfAREbtYFVgDqrym1Tastf7uZ6n_3jPJigOEA2ATlVA"; e_upip="AcL_2zV9qJHwQNzMXQWNC_R26g9K6G-T-WEfWoFBawwnQ1M2WSv_ywgDGcnrTanMuM0Fr4qt4O3KkLZfh3SJ8BrrDw6xxtHcxg"; e_fb_builduser="AcKpWFd6bOZYcbMXl7rglIQNllaIhPbZ9qg6zV3pXglT4FbGoX-FksepEvntuM6W5ig"; e_fb_vipport="AcLanWBg02w8doOHD7iGqajmNEca8DqYj6tHsKGPQIv6pbOWONnseg6lY8WT"; e_clientaddr="AcIb1H8xA5B8xqZS6-VEXQ8JDekB-Oz7c47drgp_xAU3NOla6zIIqT5NOTY74NsY4pef0_ihBptkjy0N"; e_fb_vipaddr="AcL_5cDHL9YkHuGCh409Ukh_0iZcwxtTDL8YikqfSl078ygwJMAhRdP_GRkuvxVwc5hIipI"; e_fb_configversion="AcIV-0h5WIn1In9GCLuetOZVLn67X3T8-kEKFAKpe34H1BbmwAHwoM7VqjLVFQ" date: Wed, 10 Jul 2024 03:55:27 GMT x-fb-connection-quality: EXCELLENT; q=0.9, rtt=7, rtx=0, c=16, mss=1380, tbw=3386, tp=-1, tpl=-1, uplat=142, ullat=0 alt-svc: h3=":443"; ma=86400 X-Firefox-Spdy: h2

	domwin-y95s4du4-3.github.io/auth/favicon.ico	185.199.108.153	200 OK	971 B
URL GET HTTP/2 domwin-y95s4du4-3.github.io/auth/favicon.ico IP 185.199.108.153:443 ASN #54113 FASTLY Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerDigiCert Inc Subject.github.io Fingerprint97:D8:C5:70:0F:12:24:6C:88:BC:FA:06:7E:8C:A7:4D:A8:62:67:28 ValidityFri, 15 Mar 2024 00:00:00 GMT - Fri, 14 Mar 2025 23:59:59 GMT File type PNG image data, 28 x 30, 8-bit/color RGBA, non-interlaced Size 971 B (971 bytes) Hash 1fbdf735a0dd3e8321c5e0828a45a4d5 22f6a4a3bcaafafb0254e0f2fa4ceb89e505e8b2 2d0a4f5a77c788b084919b1b8cad5713d9dfc3388ef29969c4cb66c28092e683 HTTP Headers `GET /auth/favicon.ico HTTP/1.1 Host: domwin-y95s4du4-3.github.io User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/* Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/auth/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin Pragma: no-cache Cache-Control: no-cache TE: trailers` HTTP/2 200 OK server: GitHub.com content-type: image/vnd.microsoft.icon permissions-policy: interest-cohort=() x-origin-cache: HIT last-modified: Mon, 14 Sep 2020 02:29:19 GMT access-control-allow-origin: * strict-transport-security: max-age=31556952 etag: W/"5f5ed57f-3b4" expires: Wed, 10 Jul 2024 04:05:27 GMT cache-control: max-age=600 content-encoding: gzip x-proxy-cache: MISS x-github-request-id: 9D6B:2FE69B:151C3D5:15AB30E:668E062E accept-ranges: bytes age: 0 date: Wed, 10 Jul 2024 03:55:27 GMT via: 1.1 varnish x-served-by: cache-hel1410029-HEL x-cache: MISS x-cache-hits: 0 x-timer: S1720583727.026072,VS0,VE114 vary: Accept-Encoding x-fastly-request-id: 914fe6dc378a2ae3e1302116d2b2b69595602572 content-length: 971 X-Firefox-Spdy: h2

	o.pki.goog/wr2	142.250.74.131		472 B
URL o.pki.goog/wr2 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 2faef6967f894b435b4fd45838e9098b da2578c7a0eb274763211b0bb15895ae94af6662 1b3e1b330151a1b5c56aca9c203ecd080f86901b23914d8fb3c53c9ff5e8ab92 HTTP Headers `POST /wr2 HTTP/1.1 Host: o.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 10 Jul 2024 03:55:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash d7b2c37e4b6c062d80ad32046f42d3d8 131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c 317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2" Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6835 Expires: Wed, 10 Jul 2024 05:49:22 GMT Date: Wed, 10 Jul 2024 03:55:27 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash d7b2c37e4b6c062d80ad32046f42d3d8 131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c 317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2" Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6835 Expires: Wed, 10 Jul 2024 05:49:22 GMT Date: Wed, 10 Jul 2024 03:55:27 GMT Connection: keep-alive`

	r10.o.lencr.org/	23.36.76.226		504 B
URL r10.o.lencr.org/ IP 23.36.76.226:0 ASN #20940 Akamai International B.V. File type data Size 504 B (504 bytes) Hash d7b2c37e4b6c062d80ad32046f42d3d8 131cd5c2ca2a258c3cf11746f94cfd43a6a4f04c 317f60a1498c7b52833955e8a54a0ba66b5b8dc9e9862c2ac262b874d491fce2 HTTP Headers `POST / HTTP/1.1 Host: r10.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 504 ETag: "317F60A1498C7B52833955E8A54A0BA66B5B8DC9E9862C2AC262B874D491FCE2" Last-Modified: Mon, 08 Jul 2024 05:32:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6835 Expires: Wed, 10 Jul 2024 05:49:22 GMT Date: Wed, 10 Jul 2024 03:55:27 GMT Connection: keep-alive`

	firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fboard-y95s4du4%2Fdatabases%2F(default)&gsessionid=DGX97-j6odSkHYSi3mYfcAth3zCymEZGT_qF3HRQTHQ&VER=8&RID=rpc&SID=CwOTTg_-27bpEzKAAoqcDQ&CI=0&AID=0&TYPE=xmlhttp&zx=kcegv8d63mav&t=1	142.250.74.106	400 Bad Request	1.6 kB
URL GET HTTP/2 firestore.googleapis.com/google.firestore.v1.Firestore/Listen/channel?database=projects%2Fboard-y95s4du4%2Fdatabases%2F(default)&gsessionid=DGX97-j6odSkHYSi3mYfcAth3zCymEZGT_qF3HRQTHQ&VER=8&RID=rpc&SID=CwOTTg_-27bpEzKAAoqcDQ&CI=0&AID=0&TYPE=xmlhttp&zx=kcegv8d63mav&t=1 IP 142.250.74.106:443 ASN #15169 GOOGLE Requested by https://domwin-y95s4du4-3.github.io/auth/ Certificate IssuerGoogle Trust Services Subjectedgecert.googleapis.com Fingerprint71:61:BE:9E:36:C4:16:14:E7:D1:F6:C9:B8:75:08:A0:37:38:37:79 ValidityThu, 13 Jun 2024 16:52:03 GMT - Thu, 05 Sep 2024 16:52:02 GMT File type HTML document, Unicode text, UTF-8 text, with very long lines (1136) Size 1.6 kB (1566 bytes) Hash 90fba15f85654beb963d66cf6788fa46 e062b36bab3022a99fdf8ac13199a4e3490cc826 046f4a44111341fa57748b7a865f5b8e9220851578aed66edf473d9464a0e72f HTTP Headers GET /google.firestore.v1.Firestore/Listen/channel?database=projects%2Fboard-y95s4du4%2Fdatabases%2F(default)&gsessionid=DGX97-j6odSkHYSi3mYfcAth3zCymEZGT_qF3HRQTHQ&VER=8&RID=rpc&SID=CwOTTg_-27bpEzKAAoqcDQ&CI=0&AID=0&TYPE=xmlhttp&zx=kcegv8d63mav&t=1 HTTP/1.1 Host: firestore.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://domwin-y95s4du4-3.github.io DNT: 1 Connection: keep-alive Referer: https://domwin-y95s4du4-3.github.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache TE: trailers `HTTP/2 400 Bad Request date: Wed, 10 Jul 2024 03:55:27 GMT content-type: text/html; charset=UTF-8 server: ESF content-length: 1566 x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff access-control-allow-origin: https://domwin-y95s4du4-3.github.io vary: origin access-control-allow-credentials: true alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2`

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (3)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (21)

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL

IP

ASN

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL User Request GET HTTP/2

IP

ASN

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/2