Report - urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5

Report Overview

Submitted URL
urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5
IP
137.74.189.147
ASN
#16276 OVH SAS
Submitted
2023-03-30 14:07:38
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
urldxm.easyredmine.org	unknown	2022-05-25T11:13:14Z	2023-03-30T14:11:20Z	13 kB	945 kB	137.74.189.147
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-31T18:12:03Z	2.1 kB	4.2 kB	142.250.74.3
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-31T18:13:52Z	606 B	238 B	34.117.65.55
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-31T20:23:24Z	1.7 kB	2.5 kB	142.250.74.106
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-31T18:12:04Z	2.7 kB	7.1 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-31T18:18:04Z	413 B	5.9 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-31T18:12:09Z	333 B	391 B	34.117.237.239
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-31T18:14:44Z	796 B	2.4 kB	35.241.9.150
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-31T20:44:48Z	510 B	46 kB	216.58.211.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-31T07:51:33Z	3.8 kB	68 kB	34.120.237.76

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (9)

	URL	Size	First Seen	Last Seen
	urldxm.easyredmine.org/assets/js/notify.js?av=7163d7f0	5.6 kB	2023-03-07	2024-04-24
Pretty URL urldxm.easyredmine.org/assets/js/notify.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-04-24 13:09:56 Times Seen1043 Hash 9a19754fbd746ae6b603286c3a971e55 c45b906ec95326202c2a8e13545b5c17e92bbdc7 d1416dc4293eaae9e4aac8d5267fb0d5dcb35d9dbc44b63278f75750a1f9cc22 Loading...

	urldxm.easyredmine.org/frontend/assets/js/app.js?av=7163d7f0	464 B	2023-03-07	2024-04-22
Pretty URL urldxm.easyredmine.org/frontend/assets/js/app.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-04-22 14:23:19 Times Seen1004 Hash 63407331c21d5d542d65b0db1806572b 5571a79924a1a0d063a01ecdd1e16758c05c4e46 da13c80125e8103e470f9982aabe33d0176ae23e6ff5d74a7909fc13e36d73d8 Loading...

	urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery-migrate.min.js	14 kB	2023-03-07	2024-04-24
Pretty URL urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery-migrate.min.js IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:00 Last Seen2024-04-24 13:09:56 Times Seen1109 Hash a36b8e9cbfb4a675225aa408c4d15c0c fcd46de9c99e71ed586a850d877fd3b01e8269fd 16eb18d9c6303cdd50ac58db5b2b116c5dcc4c43c89424f268f6d13fc599fb19 Loading...

	urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery.min.js	90 kB	2023-03-07	2024-04-26
Pretty URL urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery.min.js IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:13 Last Seen2024-04-26 10:51:24 Times Seen261616 Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e Loading...

	urldxm.easyredmine.org/assets/js/adminlte.js?av=7163d7f0	9.8 kB	2023-03-07	2024-04-26
Pretty URL urldxm.easyredmine.org/assets/js/adminlte.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:08 Last Seen2024-04-26 10:42:35 Times Seen1584 Hash add5b3f0900365f3b4240664da17760e 7cbd53bfcf830e7c150d6bb55efcc2832e7543e7 42338bc162a705b04953fc72340216dbefb55cf12ec1a6e7cad04e5e680e26bc Loading...

	urldxm.easyredmine.org/assets/js/cookie.js?av=7163d7f0	4.9 kB	2023-03-07	2024-04-26
Pretty URL urldxm.easyredmine.org/assets/js/cookie.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:08 Last Seen2024-04-26 10:42:35 Times Seen1588 Hash 449dd3907404cead5d8ba6203b3550dc c9bb690411c3f46145f8ea137e6783929d8c27aa 3585a42757908ba2ace27f41b01256f6cf4ffb9679f7ac0ff8957817d5ccfde1 Loading...

	urldxm.easyredmine.org/assets/js/app.js?av=7163d7f0	2.8 kB	2023-03-07	2024-04-24
Pretty URL urldxm.easyredmine.org/assets/js/app.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-04-24 13:09:56 Times Seen893 Hash 3ade0b17b1b7c3d1c27aba12ceeda1d3 f8c1fe63c016a077e1545d123eb4db8e8a690c6d cf55d95ad63c72f2eeb219da669cc848cc3022fa4a4798d62ed19ed342460cbe Loading...

	urldxm.easyredmine.org/assets/js/bootstrap.min.js?av=7163d7f0	29 kB	2023-03-07	2024-04-26
Pretty URL urldxm.easyredmine.org/assets/js/bootstrap.min.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:10 Last Seen2024-04-26 10:42:35 Times Seen9754 Hash ba847811448ef90d98d272aeccef2a95 5814e91bb6276f4de8b7951c965f2f190a03978d 898d05a17f2cfc5120ddcdba47a885c378c0b466f30f0700e502757e24b403a1 Loading...

	urldxm.easyredmine.org/assets/js/knockout.min.js?av=7163d7f0	60 kB	2023-03-07	2024-04-26
Pretty URL urldxm.easyredmine.org/assets/js/knockout.min.js?av=7163d7f0 IP 137.74.189.147 ASN #16276 OVH SAS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:08 Last Seen2024-04-26 10:42:34 Times Seen1169 Hash fa8662c7a8415d0355f444eaff534845 b60c2c301c280378b4d51769cb20a46e65989c73 972f13893b7056c0567637a44ea4c994b1b3dd1b20e185ebf3478ae9086d74cb Loading...

HTTP Transactions (50)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cca063332ba9a89eadd62a8dd7f81a9b d473b2a7a32c964599ff3bac8f98fa578f03d1d1 02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC" Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3913 Expires: Thu, 30 Mar 2023 15:12:40 GMT Date: Thu, 30 Mar 2023 14:07:27 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 7af19a5145a4ee99bdf18831bad04bfd 7bdd2a4785b999ef54a2644211d2b2b7190fb8e1 3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0" Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3160 Expires: Thu, 30 Mar 2023 15:00:07 GMT Date: Thu, 30 Mar 2023 14:07:27 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Thu, 30 Mar 2023 13:16:04 GMT content-type: application/json age: 3083 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 374c9e295a804e605c402f48ae7e2446 967394b36ecdff2dd32842f878887f061024c6b3 7652dfcb9e2d620ce1d033be8ecc53166d2881154c15decd60899415e5ac2706 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "7652DFCB9E2D620CE1D033BE8ECC53166D2881154C15DECD60899415E5AC2706" Last-Modified: Thu, 30 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6819 Expires: Thu, 30 Mar 2023 16:01:06 GMT Date: Thu, 30 Mar 2023 14:07:27 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e7bace7c1e04d44012e37ddffe36e5d5 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: QPmjQwYQd9z7l+SvcICB7o9uR/DlUrDOs21JGSRyhfH5w9L4bNBWRZcSnMBZNYTEzSFdbc5DeMo= x-amz-request-id: D4TW7H8E7R6VGWBQ x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Thu, 30 Mar 2023 14:02:57 GMT age: 270 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 12efab253e42f1a821de989114682def 872af05260994251ae5535ece1dfabdd3e9056aa 23126bd3bbee71c9ecc36348f20c07d3418f6b5814d5e2f13314ebe3462c9d80 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "23126BD3BBEE71C9ECC36348F20C07D3418F6B5814D5E2F13314EBE3462C9D80" Last-Modified: Thu, 30 Mar 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=21512 Expires: Thu, 30 Mar 2023 20:05:59 GMT Date: Thu, 30 Mar 2023 14:07:27 GMT Connection: keep-alive`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Thu, 30 Mar 2023 14:07:27 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-allow-credentials: true strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5	137.74.189.147	404 Not Found	6.3 kB
URL HTTP/1.1 urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 IP 137.74.189.147:0 ASN #16276 OVH SAS File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size 6.3 kB (6296 bytes) Hash 1f172cd940586fa0d36d3649bb61abcf a960d8722254086f21854964be74f770cda395ad 65d5f34be77a3bf9a3c01637148707e2ccc6bbfa0e202d46415dda6063c92e00 HTTP Headers GET /campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/1.1 404 Not Found Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 X-Powered-By: PHP/7.2.34 X-XSS-Protection: 1; mode=block X-Frame-Options: SAMEORIGIN Expires: Thu, 19 Nov 1981 08:52:00 GMT Last-Modified: Thu, 30 Mar 2023 14:07:27 GMT Cache-Control: no-store, no-cache, must-revalidate Pragma: no-cache Set-Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; path=/; HttpOnly mwsid=kf77oi7l08d4ugj62m7aje5gkt; path=/; HttpOnly Content-Length: 6296 Connection: close Content-Type: text/html; charset=UTF-8

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d4fd78e1925a923742815feb55c9dab0 1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb 88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 30 Mar 2023 14:07:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	urldxm.easyredmine.org/assets/css/font-awesome/css/font-awesome.min.css?av=7163d7f0	137.74.189.147	200 OK	28 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/css/font-awesome/css/font-awesome.min.css?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (27303) Size 28 kB (27466 bytes) Hash 4fbd15cb6047af93373f4f895639c8bf 12d6861075de8e293265ff6ff03b1f3adcb44c76 ddd92f10ad162c7449eff0acaf40598c05b1111739587edb75e5326b6697c5d5 HTTP Headers GET /assets/css/font-awesome/css/font-awesome.min.css?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "6b4a-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 27466 Access-Control-Allow-Origin: * Connection: close Content-Type: text/css`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d4fd78e1925a923742815feb55c9dab0 1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb 88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 30 Mar 2023 14:07:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d4fd78e1925a923742815feb55c9dab0 1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb 88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 30 Mar 2023 14:07:27 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	urldxm.easyredmine.org/frontend/assets/css/style.css?av=7163d7f0	137.74.189.147	200 OK	16 kB
URL HTTP/1.1 urldxm.easyredmine.org/frontend/assets/css/style.css?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text Size 16 kB (16326 bytes) Hash 0704fe77a703921a5520c4ef079b3ac4 c8d27d838b3e0f80232e76ffc0ec2c8af08727ce 6a6249eb2886276d28435052d388fe35557ea936825d1e06629849ec700bfd95 HTTP Headers GET /frontend/assets/css/style.css?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:44 GMT ETag: "3fc6-5ef9cfbeb6d00" Accept-Ranges: bytes Content-Length: 16326 Access-Control-Allow-Origin: * Connection: close Content-Type: text/css`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash ae064c74a3769d42109473ad05d56fb9 d48029ab8568cee6ab7416d3b476ed792d780a56 9852216f395a42f7b4792e852f9f9fa83e07d917a979237d5d7406a1d74edc4f HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9852216F395A42F7B4792E852F9F9FA83E07D917A979237D5D7406A1D74EDC4F" Last-Modified: Wed, 29 Mar 2023 05:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=16153 Expires: Thu, 30 Mar 2023 18:36:40 GMT Date: Thu, 30 Mar 2023 14:07:27 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Expires, Backoff, Last-Modified, Alert, Content-Length, Pragma, Cache-Control, Retry-After, ETag, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Thu, 30 Mar 2023 13:17:26 GMT age: 3001 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	urldxm.easyredmine.org/assets/css/ionicons/css/ionicons.min.css?av=7163d7f0	137.74.189.147	200 OK	51 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/css/ionicons/css/ionicons.min.css?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type Unicode text, UTF-8 text, with very long lines (50806) Size 51 kB (51284 bytes) Hash 0d6763b67616cb9183f3931313d42971 f0459300e39155df7aa5e94b3bdb8c8594f49a60 de2bbd8e0b32f53a53c1729bedb350cea59e9115fba4f2bed8e2e3dd1f76d9fa HTTP Headers GET /assets/css/ionicons/css/ionicons.min.css?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "c854-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 51284 Access-Control-Allow-Origin: * Connection: close Content-Type: text/css`

	urldxm.easyredmine.org/assets/css/bootstrap.min.css?av=7163d7f0	137.74.189.147	200 OK	100 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/css/bootstrap.min.css?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (65366) Size 100 kB (99961 bytes) Hash 8a7442ca6bedd62cec4881040b9a9e83 e2d2b846e9ea72a1985458a3748aab4e01a8fb3a e9503448692b738dd260fbd7f7cabf2e11f09b600fa97e6eb3a56eba5b1a7e9b HTTP Headers GET /assets/css/bootstrap.min.css?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "18679-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 99961 Access-Control-Allow-Origin: * Connection: close Content-Type: text/css`

	urldxm.easyredmine.org/assets/css/adminlte.css?av=7163d7f0	137.74.189.147	200 OK	218 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/css/adminlte.css?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text Size 218 kB (218121 bytes) Hash 26b22bb6b4ce34772d4cf7f78b9b90c4 96406f7c9b5c65d51c8cc2fef538f6f198b08bb1 a17610f2bcf697c317767f9fe07d2d52c26206dc9c210d2b28c668c0e71b6388 HTTP Headers GET /assets/css/adminlte.css?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "35409-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 218121 Access-Control-Allow-Origin: * Connection: close Content-Type: text/css`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash d4fd78e1925a923742815feb55c9dab0 1b9fb6bb01a275ea7a74aa4185f39e4640a2c5eb 88bc292164002e5b8c4ea4dd317ff1116051a581997bd74b06d0fb231ea15b0c HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 30 Mar 2023 14:07:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	urldxm.easyredmine.org/assets/css/skin-blue.css?av=7163d7f0	137.74.189.147	200 OK	198 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/css/skin-blue.css?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text Size 198 kB (198302 bytes) Hash 8cb0192be1d37a972b087cfe89ec57d3 4659e63718166ddfd3f08e76f98a9db1652f4e37 7dcecf885e7e1b4753bb6ab4163eee8dbfd977664521d429a4f280a4ed049c65 HTTP Headers GET /assets/css/skin-blue.css?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:27 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "3069e-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 198302 Access-Control-Allow-Origin: * Connection: close Content-Type: text/css`

	urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery-migrate.min.js	137.74.189.147	200 OK	14 kB
URL HTTP/1.1 urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery-migrate.min.js IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (13326) Size 14 kB (13467 bytes) Hash a36b8e9cbfb4a675225aa408c4d15c0c fcd46de9c99e71ed586a850d877fd3b01e8269fd 16eb18d9c6303cdd50ac58db5b2b116c5dcc4c43c89424f268f6d13fc599fb19 HTTP Headers GET /frontend/assets/cache/138cfe0e/jquery-migrate.min.js HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Wed, 14 Dec 2022 19:55:39 GMT ETag: "349b-5efcf1ee7de66" Accept-Ranges: bytes Content-Length: 13467 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery.min.js	137.74.189.147	200 OK	90 kB
URL HTTP/1.1 urldxm.easyredmine.org/frontend/assets/cache/138cfe0e/jquery.min.js IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (65447) Size 90 kB (89501 bytes) Hash 8fb8fee4fcc3cc86ff6c724154c49c42 b82d238d4e31fdf618bae8ac11a6c812c03dd0d4 ff1523fb7389539c84c65aba19260648793bb4f5e29329d2ee8804bc37a3fe6e HTTP Headers GET /frontend/assets/cache/138cfe0e/jquery.min.js HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Wed, 14 Dec 2022 19:55:39 GMT ETag: "15d9d-5efcf1ee7de66" Accept-Ranges: bytes Content-Length: 89501 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/assets/js/bootstrap.min.js?av=7163d7f0	137.74.189.147	200 OK	29 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/js/bootstrap.min.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (28941) Size 29 kB (29110 bytes) Hash ba847811448ef90d98d272aeccef2a95 5814e91bb6276f4de8b7951c965f2f190a03978d 898d05a17f2cfc5120ddcdba47a885c378c0b466f30f0700e502757e24b403a1 HTTP Headers GET /assets/js/bootstrap.min.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:41 GMT ETag: "71b6-5ef9cfbbda640" Accept-Ranges: bytes Content-Length: 29110 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/assets/js/notify.js?av=7163d7f0	137.74.189.147	200 OK	5.6 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/js/notify.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type Unicode text, UTF-8 text Size 5.6 kB (5593 bytes) Hash 9a19754fbd746ae6b603286c3a971e55 c45b906ec95326202c2a8e13545b5c17e92bbdc7 d1416dc4293eaae9e4aac8d5267fb0d5dcb35d9dbc44b63278f75750a1f9cc22 HTTP Headers GET /assets/js/notify.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:43 GMT ETag: "15d9-5ef9cfbdc2ac0" Accept-Ranges: bytes Content-Length: 5593 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/assets/js/knockout.min.js?av=7163d7f0	137.74.189.147	200 OK	60 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/js/knockout.min.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (564) Size 60 kB (59822 bytes) Hash fa8662c7a8415d0355f444eaff534845 b60c2c301c280378b4d51769cb20a46e65989c73 972f13893b7056c0567637a44ea4c994b1b3dd1b20e185ebf3478ae9086d74cb HTTP Headers GET /assets/js/knockout.min.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:42 GMT ETag: "e9ae-5ef9cfbcce880" Accept-Ranges: bytes Content-Length: 59822 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/assets/js/cookie.js?av=7163d7f0	137.74.189.147	200 OK	4.9 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/js/cookie.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text Size 4.9 kB (4938 bytes) Hash 449dd3907404cead5d8ba6203b3550dc c9bb690411c3f46145f8ea137e6783929d8c27aa 3585a42757908ba2ace27f41b01256f6cf4ffb9679f7ac0ff8957817d5ccfde1 HTTP Headers GET /assets/js/cookie.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:41 GMT ETag: "134a-5ef9cfbbda640" Accept-Ranges: bytes Content-Length: 4938 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/assets/js/adminlte.js?av=7163d7f0	137.74.189.147	200 OK	9.8 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/js/adminlte.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text, with very long lines (9373) Size 9.8 kB (9774 bytes) Hash add5b3f0900365f3b4240664da17760e 7cbd53bfcf830e7c150d6bb55efcc2832e7543e7 42338bc162a705b04953fc72340216dbefb55cf12ec1a6e7cad04e5e680e26bc HTTP Headers GET /assets/js/adminlte.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:41 GMT ETag: "262e-5ef9cfbbda640" Accept-Ranges: bytes Content-Length: 9774 Connection: close Content-Type: application/javascript`

	push.services.mozilla.com/	34.117.65.55	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.117.65.55:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: gvrh/5Wk/UREx9xHqvD32A== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: w3U5n9NRrYXy8vpfX/0NS9iJbw8= Date: Thu, 30 Mar 2023 14:07:28 GMT Via: 1.1 google Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000`

	urldxm.easyredmine.org/assets/js/app.js?av=7163d7f0	137.74.189.147	200 OK	2.8 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/js/app.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text Size 2.8 kB (2797 bytes) Hash 3ade0b17b1b7c3d1c27aba12ceeda1d3 f8c1fe63c016a077e1545d123eb4db8e8a690c6d cf55d95ad63c72f2eeb219da669cc848cc3022fa4a4798d62ed19ed342460cbe HTTP Headers GET /assets/js/app.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:41 GMT ETag: "aed-5ef9cfbbda640" Accept-Ranges: bytes Content-Length: 2797 Connection: close Content-Type: application/javascript`

	urldxm.easyredmine.org/frontend/assets/js/app.js?av=7163d7f0	137.74.189.147	200 OK	464 B
URL HTTP/1.1 urldxm.easyredmine.org/frontend/assets/js/app.js?av=7163d7f0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type ASCII text Size 464 B (464 bytes) Hash 63407331c21d5d542d65b0db1806572b 5571a79924a1a0d063a01ecdd1e16758c05c4e46 da13c80125e8103e470f9982aabe33d0176ae23e6ff5d74a7909fc13e36d73d8 HTTP Headers GET /frontend/assets/js/app.js?av=7163d7f0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:44 GMT ETag: "1d0-5ef9cfbeb6d00" Accept-Ranges: bytes Content-Length: 464 Connection: close Content-Type: application/javascript`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 21966d424aed17f9af10f69f1cb82860 87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be 6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 30 Mar 2023 14:07:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	urldxm.easyredmine.org/favicon.ico	137.74.189.147	200 OK	15 kB
URL HTTP/1.1 urldxm.easyredmine.org/favicon.ico IP 137.74.189.147:0 ASN #16276 OVH SAS File type MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data Size 15 kB (15406 bytes) Hash 8d2f961b957abed5fbced28eb7566335 dc7bb7fe680f4864a33f95d66f0ceb0fd036dd00 621dc4f64c621f1b8f01dfba4e642eb4ac268ec24c32ea24c9cac9f99a8708a3 HTTP Headers GET /favicon.ico HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/campaigns/nh721dleydb4/track-url/fy332p1bosbe8/2cdad8014afa174Sd86e43b92db460df2c0c18e5 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Sat, 02 Oct 2021 06:46:29 GMT ETag: "3c2e-5cd590a212262" Accept-Ranges: bytes Content-Length: 15406 Connection: close Content-Type: image/vnd.microsoft.icon`

	fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.211.3	200 OK	45 kB
URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.211.3:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size 45 kB (44856 bytes) Hash 565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db HTTP Headers `GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://urldxm.easyredmine.org Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Fri, 24 Mar 2023 10:26:42 GMT expires: Sat, 23 Mar 2024 10:26:42 GMT cache-control: public, max-age=31536000 last-modified: Mon, 15 Aug 2022 18:20:18 GMT content-type: font/woff2 age: 531646 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash 21966d424aed17f9af10f69f1cb82860 87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be 6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 30 Mar 2023 14:07:28 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	urldxm.easyredmine.org/assets/fonts/glyphicons-halflings-regular.woff	137.74.189.147	200 OK	23 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/fonts/glyphicons-halflings-regular.woff IP 137.74.189.147:0 ASN #16276 OVH SAS File type Web Open Font Format, TrueType, length 23320, version 1.0\012- data Size 23 kB (23320 bytes) Hash 68ed1dac06bf0409c18ae7bc62889170 22037a3455914e5662fa51a596677bdb329e2c5c fc969dc1c6ff531abcf368089dcbaf5775133b0626ff56b52301a059fc0f9e1e HTTP Headers GET /assets/fonts/glyphicons-halflings-regular.woff HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://urldxm.easyredmine.org/assets/css/bootstrap.min.css?av=7163d7f0 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "5b18-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 23320 Access-Control-Allow-Origin: * Connection: close Content-Type: application/font-woff`

	urldxm.easyredmine.org/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0	137.74.189.147	200 OK	67 kB
URL HTTP/1.1 urldxm.easyredmine.org/assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0 IP 137.74.189.147:0 ASN #16276 OVH SAS File type Web Open Font Format (Version 2), TrueType, length 66624, version 4.262\012- data Size 67 kB (66624 bytes) Hash db812d8a70a4e88e888744c1c9a27e89 638c652d623280a58144f93e7b552c66d1667a11 ff82aeed6b9bb6701696c84d1b223d2e682eb78c89117a438ce6cfea8c498995 HTTP Headers GET /assets/css/font-awesome/fonts/fontawesome-webfont.woff2?v=4.5.0 HTTP/1.1 Host: urldxm.easyredmine.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://urldxm.easyredmine.org/assets/css/font-awesome/css/font-awesome.min.css?av=7163d7f0 Cookie: csrf_token=dadd696db14df4f4329ef0fb859bcb2cfad2cbd7s%3A88%3A%22cG9NUmRVNzNvYVFhNjhOR1dXYlI1Y2RGM3dCV3NRVVNdnwg-o2cLTEAnJkxOP0MvAEJHkPYyjebMEkNXh1jfXg%3D%3D%22%3B; mwsid=kf77oi7l08d4ugj62m7aje5gkt Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Thu, 30 Mar 2023 14:07:28 GMT Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9 PHP/7.2.34 Last-Modified: Mon, 12 Dec 2022 08:06:39 GMT ETag: "10440-5ef9cfb9f21c0" Accept-Ranges: bytes Content-Length: 66624 Access-Control-Allow-Origin: * Connection: close`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3243 Expires: Thu, 30 Mar 2023 15:01:32 GMT Date: Thu, 30 Mar 2023 14:07:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3243 Expires: Thu, 30 Mar 2023 15:01:32 GMT Date: Thu, 30 Mar 2023 14:07:29 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 195589ff3c6c50463257f10da16de114 7119aeba010d5c5c224fa544feff6f1761739929 dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B" Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3243 Expires: Thu, 30 Mar 2023 15:01:32 GMT Date: Thu, 30 Mar 2023 14:07:29 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg	34.120.237.76	200 OK	5.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.4 kB (5395 bytes) Hash 76c71571a378e261334e5acb723634ab f1234c280364b6fe1dcf9c6c64edadc235108c4b 97544d600ab1ae204b169c3b7ba2a74df689b6c711a003d72f0934165d8a3e25 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ed4a5c5-fe11-4f30-864e-2116aae51642.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5395 x-amzn-requestid: ff3218dc-8754-4568-8e42-0885cb7e5d06 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkA0BFYNoAMF80w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424ae7f-127129cf3776a60c333d205c;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:47 GMT x-amz-cf-pop: HIO50-C1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: ayBzSVUrRznKMPzI1JYvj1ikLo-arbVQUxdEZDM7KYHWyL2cwT10tA== via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 efcf7b9d0f917f9ebf314db03e52d9b6.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Mar 2023 21:45:03 GMT etag: "f1234c280364b6fe1dcf9c6c64edadc235108c4b" content-type: image/jpeg age: 58946 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg	34.120.237.76	200 OK	9.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.9 kB (9859 bytes) Hash da174e6ccc9451c5071ba10eeb97f6f6 c38827a9ac1218768839877263e1f2984fbdc454 76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9859 x-amzn-requestid: 7571f483-0d57-4f3f-9d86-2f18175cc0b1 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CRP5DG2BoAMFrdg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-641d2d06-400180d700df598366b8b16f;Sampled=0 x-amzn-remapped-date: Fri, 24 Mar 2023 04:54:30 GMT x-amz-cf-pop: SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 8LzPrLvhUnXntYPNCg_QN2LFUvQ-4FL4SMyYBxPOwlGd1sgL3j-Znw== via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 b4085435efbe95a420f374958bd145be.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Mar 2023 00:11:11 GMT age: 50178 etag: "c38827a9ac1218768839877263e1f2984fbdc454" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10271 bytes) Hash 424b55535e5fd622b2fc96aac1246324 cf7cf08aa8969a86bf03695af2129686fd62fe86 c4bb26a7b2c431282b53b4df9999b9cc8e61369a79c606688a76499b31a65127 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b95f765-7590-4263-b0a3-4db9c87a60df.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10271 x-amzn-requestid: db0d1fe4-060a-4e61-90f3-ec9befee1295 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkBoXGh5oAMFfzw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424afce-2e9251552b4acdcb19e02dfc;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:22 GMT x-amz-cf-pop: HIO50-C1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 6lKfWQ4mVZdKDpPhp9KzllP2eyH03CsFufQxXVTUZ1s1t1gQs1OUFA== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Mar 2023 21:44:50 GMT age: 58959 etag: "cf7cf08aa8969a86bf03695af2129686fd62fe86" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg	34.120.237.76	200 OK	4.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.5 kB (4549 bytes) Hash 2021c271f9290204bd14cd2a3a1680fc 39b68cbcaba381d63dc67bc289fb67c849adb9ff a84c5dd1e52d7cd535e04cb455891a1442000eb0e4381031c976b4cf3be96f2f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc2075fc9-4e24-4d01-853a-8aa29cb2b832.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4549 x-amzn-requestid: 70e07309-5fc5-4307-b455-29a187eae0d6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkBoBHFFoAMFx5Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424afcc-298f18fd0cf0b37465a74c13;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:38:20 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: kbG1Llnn0Elhz5ItoJyufkUgoB5FhmvLpk2oQox2HPnSHeBfCOuXXw== via: 1.1 f193acd25f2604e189bfbfaf539aaa06.cloudfront.net (CloudFront), 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Mar 2023 21:44:50 GMT age: 58959 etag: "39b68cbcaba381d63dc67bc289fb67c849adb9ff" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (11118 bytes) Hash 1d109c71a6d804ac43ede46ac74f2065 251d3e3e3eadee46258a4ad9d33d5e9e83aa63b4 de2d781c75abb41ea14c0f4c072df0977562d824d81b5f4ca28c4f635067a17b HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d49d0d0-9e52-48d9-a854-20f49ed18a99.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 11118 x-amzn-requestid: 71508920-b2d8-446d-a498-8bf8708af974 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkA4qHrpoAMF-0A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424ae9d-5191b68a4c7f1ee042a05583;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:33:17 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Hit from cloudfront x-amz-cf-id: 3JIDZJcepJFwPc0anfKz5OO8LZY3cFMI4oljiaft8jBgltzp2iYJiA== via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Mar 2023 21:50:13 GMT age: 58636 etag: "251d3e3e3eadee46258a4ad9d33d5e9e83aa63b4" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f7d2537-a0a5-4a19-9229-144648b886b8.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f7d2537-a0a5-4a19-9229-144648b886b8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12233 bytes) Hash db24198518d1a093c5c03e92e53925a2 288898a60e0a029946e7d770d2b0c64b6f3bf51d 4a15da439fa1a3ccdd3d329f250bacaab581287183293c4e367b05c2a83eb66d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2f7d2537-a0a5-4a19-9229-144648b886b8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12233 x-amzn-requestid: 781fd422-c720-49d7-bc90-6f8b18751caf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkAynHgNoAMFvCA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424ae76-5327bf334c985816289507b9;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:32:38 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: xT4yOqmmDOGyZ-ef--AYRxpuzlFou0jf8p4BWB4qUCDXR1VStct5DA== via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google date: Wed, 29 Mar 2023 21:44:50 GMT etag: "288898a60e0a029946e7d770d2b0c64b6f3bf51d" content-type: image/jpeg age: 58959 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda18d5e-b73e-4202-b1f8-d36a10bc29f6.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda18d5e-b73e-4202-b1f8-d36a10bc29f6.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (6975 bytes) Hash c8de7c61ab5f849628db707ae7587904 f040cba140c3510c5e6fc0ae1e56505c3749d525 492ea40ba548983fcd3bc41a1e29b6337e4e4e83b1248dcccf82cc1e7e22df88 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffda18d5e-b73e-4202-b1f8-d36a10bc29f6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 6975 x-amzn-requestid: bd3a35e2-22bc-4b5d-8c46-74f21205e512 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CkA4qHKCoAMFR4Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6424ae9d-7f1dd1175a4580f75a614254;Sampled=0;lineage=69363f46:0 x-amzn-remapped-date: Wed, 29 Mar 2023 21:33:17 GMT x-amz-cf-pop: HIO52-P1, SEA19-C1 x-cache: Miss from cloudfront x-amz-cf-id: Q39PWwkZfIyNwmE_PBk86LfcqDKgLlbLsU2ewpLgeCv9hehTL9Gvsw== via: 1.1 8731d2a1a7d15f67b588bf58f652f9f0.cloudfront.net (CloudFront), 1.1 d16c3f15bd14953a9d4109eaaa991de2.cloudfront.net (CloudFront), 1.1 google date: Thu, 30 Mar 2023 09:34:34 GMT etag: "f040cba140c3510c5e6fc0ae1e56505c3749d525" content-type: image/jpeg age: 16382 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Roboto:300,400,700,900&av=7163d7f0	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,700,900&av=7163d7f0 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Roboto:300,400,700,900&av=7163d7f0 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 30 Mar 2023 14:07:27 GMT date: Thu, 30 Mar 2023 14:07:27 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&av=7163d7f0	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&av=7163d7f0 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Lato:100,100i,300,300i,400,400i,700,700i,900,900i&av=7163d7f0 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 30 Mar 2023 14:07:28 GMT date: Thu, 30 Mar 2023 14:07:28 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Montserrat:300,400,700	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:300,400,700 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Montserrat:300,400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 30 Mar 2023 14:07:28 GMT date: Thu, 30 Mar 2023 14:07:28 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans:300,400,700&av=7163d7f0	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,700&av=7163d7f0 IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans:300,400,700&av=7163d7f0 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://urldxm.easyredmine.org/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 30 Mar 2023 14:07:28 GMT date: Thu, 30 Mar 2023 14:07:28 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (9)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML