hxxps://www[.]google[.]com

max time kernel
1992s
max time network
2337s
platform
ubuntu-18.04_amd64
resource
ubuntu1804-amd64-20240226-en
resource tags

arch:amd64arch:i386image:ubuntu1804-amd64-20240226-enkernel:4.15.0-213-genericlocale:en-usos:ubuntu-18.04-amd64system
submitted
23/04/2024, 09:34 UTC

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

https://www.google.com

Score

7^/10

antivm spyware stealer

Malware Config

Signatures

Reads user data of web browsers 6 IoCs

Reads stored browser data which can include saved credentials.

spyware stealer

description	ioc
File opened for reading	/root/.mozilla/firefox/hr47oo8l.default-release/places.sqlite-wal
File opened for reading	/root/.mozilla/firefox/hr47oo8l.default-release/favicons.sqlite
File opened for reading	/root/.mozilla/firefox/hr47oo8l.default-release/favicons.sqlite-wal
File opened for reading	/root/.mozilla/firefox/hr47oo8l.default-release/protections.sqlite-journal
File opened for reading	/root/.mozilla/firefox/hr47oo8l.default-release
File opened for reading	/root/.mozilla/firefox/hr47oo8l.default-release/places.sqlite

Changes its process name 64 IoCs

description	ioc	pid	Process
Changes the process name, possibly in an attempt to hide itself	IPC I/O Parent	1586	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPC I/O Parent	1586	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPC I/O Parent	1586	Process not Found
Changes the process name, possibly in an attempt to hide itself	glean.dispatche	1585	Process not Found
Changes the process name, possibly in an attempt to hide itself	Backgro~Pool #1	1591	Process not Found
Changes the process name, possibly in an attempt to hide itself	Backgro~Pool #1	1591	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPDL Background	1590	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPDL Background	1590	Process not Found
Changes the process name, possibly in an attempt to hide itself	Socket Thread	1589	Process not Found
Changes the process name, possibly in an attempt to hide itself	Socket Thread	1589	Process not Found
Changes the process name, possibly in an attempt to hide itself	Netlink Monitor	1588	Process not Found
Changes the process name, possibly in an attempt to hide itself	Netlink Monitor	1588	Process not Found
Changes the process name, possibly in an attempt to hide itself	HTML5 Parser	1592	Process not Found
Changes the process name, possibly in an attempt to hide itself	HTML5 Parser	1592	Process not Found
Changes the process name, possibly in an attempt to hide itself	Timer	1587	Process not Found
Changes the process name, possibly in an attempt to hide itself	Timer	1587	Process not Found
Changes the process name, possibly in an attempt to hide itself	JS Watchdog	1594	Process not Found
Changes the process name, possibly in an attempt to hide itself	JS Watchdog	1594	Process not Found
Changes the process name, possibly in an attempt to hide itself	BGReadURLs	1596	Process not Found
Changes the process name, possibly in an attempt to hide itself	BGReadURLs	1596	Process not Found
Changes the process name, possibly in an attempt to hide itself	Cache2 I/O	1597	Process not Found
Changes the process name, possibly in an attempt to hide itself	Cookie	1598	Process not Found
Changes the process name, possibly in an attempt to hide itself	Cookie	1598	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #1	1599	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #1	1599	Process not Found
Changes the process name, possibly in an attempt to hide itself	TaskCon~ller #1	1601	Process not Found
Changes the process name, possibly in an attempt to hide itself	TaskCon~ller #0	1600	Process not Found
Changes the process name, possibly in an attempt to hide itself	BgIOThr~Pool #1	1602	Process not Found
Changes the process name, possibly in an attempt to hide itself	BgIOThr~Pool #1	1602	Process not Found
Changes the process name, possibly in an attempt to hide itself	QuotaManager IO	1603	Process not Found
Changes the process name, possibly in an attempt to hide itself	QuotaManager IO	1603	Process not Found
Changes the process name, possibly in an attempt to hide itself	IndexedDB #1	1604	Process not Found
Changes the process name, possibly in an attempt to hide itself	IndexedDB #1	1604	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPC Launch	1607	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPC Launch	1607	Process not Found
Changes the process name, possibly in an attempt to hide itself	SandboxReporter	1606	Process not Found
Changes the process name, possibly in an attempt to hide itself	SandboxReporter	1606	Process not Found
Changes the process name, possibly in an attempt to hide itself	Breakpad Server	1605	Process not Found
Changes the process name, possibly in an attempt to hide itself	DOM Worker	1609	Process not Found
Changes the process name, possibly in an attempt to hide itself	DOM Worker	1609	Process not Found
Changes the process name, possibly in an attempt to hide itself	Sandbox Forked	1608	Process not Found
Changes the process name, possibly in an attempt to hide itself	Chroot Helper	1610	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #5	1615	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #5	1615	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #4	1614	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #4	1614	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #3	1613	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #3	1613	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #2	1612	Process not Found
Changes the process name, possibly in an attempt to hide itself	StreamTrans #2	1612	Process not Found
Changes the process name, possibly in an attempt to hide itself	MainThread	1608	firefox
Changes the process name, possibly in an attempt to hide itself	IPC I/O Child	1616	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPC I/O Child	1616	Process not Found
Changes the process name, possibly in an attempt to hide itself	IPC I/O Child	1616	Process not Found
Changes the process name, possibly in an attempt to hide itself	Socket Process	1608	firefox
Changes the process name, possibly in an attempt to hide itself	Socket Thread	1618	Process not Found
Changes the process name, possibly in an attempt to hide itself	Socket Thread	1618	Process not Found
Changes the process name, possibly in an attempt to hide itself	Backgro~Pool #1	1617	Process not Found
Changes the process name, possibly in an attempt to hide itself	Backgro~Pool #1	1617	Process not Found
Changes the process name, possibly in an attempt to hide itself	Timer	1619	Process not Found
Changes the process name, possibly in an attempt to hide itself	Timer	1619	Process not Found
Changes the process name, possibly in an attempt to hide itself	Worker Launcher	1620	Process not Found
Changes the process name, possibly in an attempt to hide itself	Worker Launcher	1620	Process not Found
Changes the process name, possibly in an attempt to hide itself	gmain	1621	Process not Found

Checks CPU configuration 1 TTPs 1 IoCs

Checks CPU information which indicate if the system is a virtual machine.

antivm

Virtualization/Sandbox Evasion

T1497

description	ioc	Process
File opened for reading	/proc/cpuinfo	firefox

Reads CPU attributes 1 TTPs 9 IoCs

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/devices/system/cpu/present	firefox
File opened for reading	/sys/devices/system/cpu/present	firefox
File opened for reading	/sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_max_freq	firefox
File opened for reading	/sys/devices/system/cpu/cpu0/cache/index2/size	firefox
File opened for reading	/sys/devices/system/cpu/cpu0/cache/index3/size	firefox
File opened for reading	/sys/devices/system/cpu/present	Process not Found
File opened for reading	/sys/devices/system/cpu/online	firefox
File opened for reading	/sys/devices/system/cpu/present	firefox
File opened for reading	/sys/devices/system/cpu/present	firefox

Enumerates kernel/hardware configuration 1 TTPs 58 IoCs

Reads contents of /sys virtual filesystem to enumerate system information.

System Information Discovery

T1082

description	ioc	Process
File opened for reading	/sys/bus/pci/devices/0000:00:03.0/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:03.0/irq	firefox
File opened for reading	/sys/devices/pci0000:00/0000:00:02.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:04.0/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.3/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.3/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:02.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.0/device	firefox
File opened for reading	/sys/devices/system/cpu	firefox
File opened for reading	/sys/fs/cgroup/cpu,cpuacct/cpu.cfs_quota_us	firefox
File opened for reading	/sys/devices/system/cpu	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:04.0/irq	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:04.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:04.0/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:00.0/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:00.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.3/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:06.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.0/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.0/irq	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.1/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.1/class	firefox
File opened for reading	/sys/devices/pci0000:00/0000:00:02.0/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:00.0/irq	firefox
File opened for reading	/sys/kernel/security/apparmor/features/dbus/mask	dbus-daemon
File opened for reading	/sys/bus/pci/devices/0000:00:02.0/class	firefox
File opened for reading	/sys/devices/system/cpu	Process not Found
File opened for reading	/sys/bus/pci/devices/0000:00:03.0/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:06.0/device	firefox
File opened for reading	/sys/devices/pci0000:00/0000:00:02.0/subsystem_vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:00.0/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:03.0/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.1/irq	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:06.0/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:02.0/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:05.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.1/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:06.0/irq	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.1/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:05.0/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:02.0/device	firefox
File opened for reading	/sys/bus/pci/devices	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.3/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.3/irq	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:02.0/irq	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:05.0/resource	firefox
File opened for reading	/sys/devices/pci0000:00/0000:00:02.0/subsystem_device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:01.0/class	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:04.0/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:00.0/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:03.0/vendor	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:05.0/device	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:06.0/resource	firefox
File opened for reading	/sys/bus/pci/devices/0000:00:05.0/irq	firefox
File opened for reading	/sys/devices/pci0000:00/0000:00:02.0/uevent	firefox
File opened for reading	/sys/devices/system/cpu	firefox
File opened for reading	/sys/devices/system/cpu	firefox

Reads runtime system information 63 IoCs

Reads data from /proc virtual filesystem.

description	ioc	Process
File opened for reading	/proc/filesystems	xdg-document-portal
File opened for reading	/proc/self/fd/76	firefox
File opened for reading	/proc/1713/statm	firefox
File opened for reading	/proc/self/task/1573/stat	firefox
File opened for reading	/proc/mounts	dbus-daemon
File opened for reading	/proc/self/fd/29	firefox
File opened for reading	/proc/filesystems	xdg-desktop-portal
File opened for reading	/proc/self/fd/33	firefox
File opened for reading	/proc/filesystems	firefox
File opened for reading	/proc/filesystems	dbus-daemon
File opened for reading	/proc/1565/cmdline	dbus-daemon
File opened for reading	/proc/self/fd/45	firefox
File opened for reading	/proc/1652/cmdline	dbus-daemon
File opened for reading	/proc/self/fd/42	firefox
File opened for reading	/proc/self/maps	firefox
File opened for reading	/proc/1691/statm	firefox
File opened for reading	/proc/1691/smaps	firefox
File opened for reading	/proc/filesystems	firefox
File opened for reading	/proc/self/fd/6	firefox
File opened for reading	/proc/self/maps	firefox
File opened for reading	/proc/self/stat	firefox
File opened for reading	/proc/self/fd	firefox
File opened for reading	/proc/self/maps	firefox
File opened for reading	/proc/self/fd/35	firefox
File opened for reading	/proc/self/fd/39	firefox
File opened for reading	/proc/1584/status	dbus-daemon
File opened for reading	/proc/filesystems	gvfsd
File opened for reading	/proc/self/stat	firefox
File opened for reading	/proc/1639/cmdline	dbus-daemon
File opened for reading	/proc/self/fd/65	firefox
File opened for reading	/proc/self/fd/37	firefox
File opened for reading	/proc/self/maps	firefox
File opened for reading	/proc/1625/cmdline	dbus-daemon
File opened for reading	/proc/1635/cmdline	dbus-daemon
File opened for reading	/proc/self/fd/40	firefox
File opened for reading	/proc/filesystems	firefox
File opened for reading	/proc/self/cgroup	firefox
File opened for reading	/proc/self/fd/74	firefox
File opened for reading	/proc/self/task/1694/stat	firefox
File opened for reading	/proc/self/fd/34	firefox
File opened for reading	/proc/self/fd/112	firefox
File opened for reading	/proc/filesystems	gvfsd-fuse
File opened for reading	/proc/self/fd/38	firefox
File opened for reading	/proc/self/fd/47	firefox
File opened for reading	/proc/self/stat	firefox
File opened for reading	/proc/filesystems	xdg-desktop-portal-gtk
File opened for reading	/proc/self/fd/36	firefox
File opened for reading	/proc/self/task/1611/stat	firefox
File opened for reading	/proc/1657/cmdline	dbus-daemon
File opened for reading	/proc/filesystems	xdg-permission-store
File opened for reading	/proc/self/task/1720/stat	firefox
File opened for reading	/proc/1713/smaps	firefox
File opened for reading	/proc/sys/kernel/cap_last_cap	dbus-daemon
File opened for reading	/proc/1584/attr/current	dbus-daemon
File opened for reading	/proc/self/mountinfo	firefox
File opened for reading	/proc/self/fd/48	firefox
File opened for reading	/proc/self/stat	firefox
File opened for reading	/proc/self/fd/31	firefox
File opened for reading	/proc/self/fd/51	firefox
File opened for reading	/proc/1662/cmdline	dbus-daemon
File opened for reading	/proc/self/fd/41	firefox
File opened for reading	/proc/self/fd/46	firefox
File opened for reading	/proc/filesystems	firefox

Writes file to tmp directory 1 IoCs

Malware often drops required files in the /tmp directory.

description	ioc	Process
File opened for modification	/tmp/firefox/.parentlock	firefox

/usr/bin/firefox
firefox -new-tab https://www.google.com
1⤵
PID:1565
- /usr/bin/which
  which /usr/bin/firefox
  2⤵
  PID:1566

/usr/lib/firefox/firefox
/usr/lib/firefox/firefox -new-tab https://www.google.com
1⤵
- Checks CPU configuration
- Reads CPU attributes
- Enumerates kernel/hardware configuration
- Reads runtime system information
- Writes file to tmp directory
PID:1565
- /usr/bin/dbus-launch
  dbus-launch --autolaunch 11c67417355f45d397f6be11f62e85a6 --binary-syntax --close-stderr
  2⤵
  PID:1580
- - /usr/bin/dbus-daemon
    /usr/bin/dbus-daemon --syslog-only --fork --print-pid 5 --print-address 7 --session
    3⤵
    - Enumerates kernel/hardware configuration
    - Reads runtime system information
    PID:1582
  - - /usr/libexec/xdg-desktop-portal
      /usr/libexec/xdg-desktop-portal
      4⤵
      Reads runtime system information
      PID:1625
  - - /usr/libexec/xdg-document-portal
      /usr/libexec/xdg-document-portal
      4⤵
      Reads runtime system information
      PID:1635
  - - /usr/libexec/xdg-permission-store
      /usr/libexec/xdg-permission-store
      4⤵
      Reads runtime system information
      PID:1639
  - - /usr/libexec/xdg-desktop-portal-gtk
      /usr/libexec/xdg-desktop-portal-gtk
      4⤵
      Reads runtime system information
      PID:1652
  - - /usr/lib/gvfs/gvfsd
      /usr/lib/gvfs/gvfsd
      4⤵
      Reads runtime system information
      PID:1657
- /usr/bin/lsb_release
  /usr/bin/lsb_release -idrc
  2⤵
  PID:1595
- /usr/lib/firefox/firefox
  /usr/lib/firefox/firefox -contentproc -parentBuildID 20230522134052 -prefsLen 19257 -prefMapSize 230809 -appDir /usr/lib/firefox/browser "{dc204875-6082-4105-ae59-f0c83449f43b}" 1565 true socket
  2⤵
  - Changes its process name
  - Reads CPU attributes
  - Enumerates kernel/hardware configuration
  - Reads runtime system information
  PID:1608
- /usr/local/sbin/dbus-launch
  dbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr
  2⤵
  PID:1622
- /usr/local/bin/dbus-launch
  dbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr
  2⤵
  PID:1622
- /usr/sbin/dbus-launch
  dbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr
  2⤵
  PID:1622
- /usr/bin/dbus-launch
  dbus-launch "--autolaunch=11c67417355f45d397f6be11f62e85a6" --binary-syntax --close-stderr
  2⤵
  PID:1622
- /usr/lib/firefox/firefox
  /usr/lib/firefox/firefox -contentproc -childID 1 -isForBrowser -prefsLen 21807 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser "{247a6a61-a3f7-411c-9378-b05677766427}" 1565 true tab
  2⤵
  - Reads CPU attributes
  - Enumerates kernel/hardware configuration
  - Reads runtime system information
  PID:1691
- /usr/lib/firefox/firefox
  /usr/lib/firefox/firefox -contentproc -childID 2 -isForBrowser -prefsLen 21475 -prefMapSize 230809 -jsInitLen 238780 -parentBuildID 20230522134052 -appDir /usr/lib/firefox/browser "{5332f356-612c-4e85-99d9-3cc35205d12e}" 1565 true tab
  2⤵
  - Reads CPU attributes
  - Enumerates kernel/hardware configuration
  - Reads runtime system information
  PID:1713

/usr/lib/gvfs/gvfsd-fuse
/usr/lib/gvfs/gvfsd-fuse /root/.gvfs -f -o big_writes
1⤵
- Reads runtime system information
PID:1662

Network

DNS

services.addons.mozilla.org

Remote address:

1.1.1.1:53

Request

services.addons.mozilla.org

IN A

Response

services.addons.mozilla.org

IN A

18.245.162.105

services.addons.mozilla.org

IN A

18.245.162.100

services.addons.mozilla.org

IN A

18.245.162.43

services.addons.mozilla.org

IN A

18.245.162.3
DNS

services.addons.mozilla.org

Remote address:

1.1.1.1:53

Request

services.addons.mozilla.org

IN AAAA

Response
DNS

cdn.fwupd.org

Remote address:

1.1.1.1:53

Request

cdn.fwupd.org

IN A

Response

cdn.fwupd.org

IN CNAME

dualstack.p2.shared.global.fastly.net

dualstack.p2.shared.global.fastly.net

IN A

151.101.66.49

dualstack.p2.shared.global.fastly.net

IN A

151.101.130.49

dualstack.p2.shared.global.fastly.net

IN A

151.101.2.49

dualstack.p2.shared.global.fastly.net

IN A

151.101.194.49
DNS

cdn.fwupd.org

Remote address:

1.1.1.1:53

Request

cdn.fwupd.org

IN AAAA

Response

cdn.fwupd.org

IN CNAME

dualstack.p2.shared.global.fastly.net

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42::561

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42:400::561

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42:600::561

dualstack.p2.shared.global.fastly.net

IN AAAA

2a04:4e42:200::561
DNS

location.services.mozilla.com

Remote address:

1.1.1.1:53

Request

location.services.mozilla.com

IN A

Response

location.services.mozilla.com

IN CNAME

locprod2-elb-us-west-2.prod.mozaws.net

locprod2-elb-us-west-2.prod.mozaws.net

IN A

52.25.6.244

locprod2-elb-us-west-2.prod.mozaws.net

IN A

44.240.56.209

locprod2-elb-us-west-2.prod.mozaws.net

IN A

52.34.56.182
DNS

location.services.mozilla.com

Remote address:

1.1.1.1:53

Request

location.services.mozilla.com

IN AAAA

Response

location.services.mozilla.com

IN CNAME

locprod2-elb-us-west-2.prod.mozaws.net
DNS

locprod2-elb-us-west-2.prod.mozaws.net

Remote address:

1.1.1.1:53

Request

locprod2-elb-us-west-2.prod.mozaws.net

IN AAAA

Response
DNS

detectportal.firefox.com

Remote address:

1.1.1.1:53

Request

detectportal.firefox.com

IN A

Response

detectportal.firefox.com

IN CNAME

detectportal.prod.mozaws.net

detectportal.prod.mozaws.net

IN CNAME

prod.detectportal.prod.cloudops.mozgcp.net

prod.detectportal.prod.cloudops.mozgcp.net

IN A

34.107.221.82
DNS

detectportal.firefox.com

Remote address:

1.1.1.1:53

Request

detectportal.firefox.com

IN AAAA

Response

detectportal.firefox.com

IN CNAME

detectportal.prod.mozaws.net

detectportal.prod.mozaws.net

IN CNAME

prod.detectportal.prod.cloudops.mozgcp.net

prod.detectportal.prod.cloudops.mozgcp.net

IN AAAA

2600:1901:0:38d7::
GET

http://detectportal.firefox.com/canonical.html

Remote address:

34.107.221.82:80

Request

GET /canonical.html HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive

Response

HTTP/1.1 200 OK

Server: nginx
Content-Length: 90
Via: 1.1 google
Date: Mon, 22 Apr 2024 15:43:07 GMT
Age: 64282
Content-Type: text/html
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
DNS

www.google.com

Remote address:

1.1.1.1:53

Request

www.google.com

IN A

Response

www.google.com

IN A

216.58.204.68
DNS

www.google.com

Remote address:

1.1.1.1:53

Request

www.google.com

IN AAAA

Response

www.google.com

IN AAAA

2a00:1450:4009:820::2004
DNS

example.org

Remote address:

1.1.1.1:53

Request

example.org

IN A

Response

example.org

IN A

93.184.215.14
DNS

ipv4only.arpa

Remote address:

1.1.1.1:53

Request

ipv4only.arpa

IN A

Response

ipv4only.arpa

IN A

192.0.0.170

ipv4only.arpa

IN A

192.0.0.171
DNS

ipv4only.arpa

Remote address:

1.1.1.1:53

Request

ipv4only.arpa

IN AAAA

Response
DNS

example.org

Remote address:

1.1.1.1:53

Request

example.org

IN AAAA

Response

example.org

IN AAAA

2606:2800:21f:cb07:6820:80da:af6b:8b2c
GET

http://detectportal.firefox.com/success.txt?ipv4

Remote address:

34.107.221.82:80

Request

GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 22 Apr 2024 15:46:42 GMT
Age: 64067
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
DNS

www.mozilla.org

Remote address:

1.1.1.1:53

Request

www.mozilla.org

IN A

Response

www.mozilla.org

IN CNAME

www.mozorg.moz.works

www.mozorg.moz.works

IN A

143.204.72.186
DNS

www.mozilla.org

Remote address:

1.1.1.1:53

Request

www.mozilla.org

IN AAAA

Response

www.mozilla.org

IN CNAME

www.mozorg.moz.works
DNS

www.mozorg.moz.works

Remote address:

1.1.1.1:53

Request

www.mozorg.moz.works

IN AAAA

Response
DNS

contile.services.mozilla.com

Remote address:

1.1.1.1:53

Request

contile.services.mozilla.com

IN A

Response

contile.services.mozilla.com

IN A

34.117.237.239
DNS

contile.services.mozilla.com

Remote address:

1.1.1.1:53

Request

contile.services.mozilla.com

IN AAAA

Response
DNS

spocs.getpocket.com

Remote address:

1.1.1.1:53

Request

spocs.getpocket.com

IN A

Response

spocs.getpocket.com

IN CNAME

prod.ads.prod.webservices.mozgcp.net

prod.ads.prod.webservices.mozgcp.net

IN A

34.117.188.166
DNS

spocs.getpocket.com

Remote address:

1.1.1.1:53

Request

spocs.getpocket.com

IN AAAA

Response

spocs.getpocket.com

IN CNAME

prod.ads.prod.webservices.mozgcp.net
DNS

getpocket.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

getpocket.cdn.mozilla.net

IN A

Response

getpocket.cdn.mozilla.net

IN CNAME

getpocket-cdn.prod.mozaws.net

getpocket-cdn.prod.mozaws.net

IN CNAME

prod.pocket.prod.cloudops.mozgcp.net

prod.pocket.prod.cloudops.mozgcp.net

IN A

34.120.5.221
DNS

getpocket.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

getpocket.cdn.mozilla.net

IN AAAA

Response

getpocket.cdn.mozilla.net

IN CNAME

getpocket-cdn.prod.mozaws.net

getpocket-cdn.prod.mozaws.net

IN CNAME

prod.pocket.prod.cloudops.mozgcp.net

prod.pocket.prod.cloudops.mozgcp.net

IN AAAA

2600:1901:0:524c::
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN AAAA

Response

a1887.dscq.akamai.net

IN AAAA

2a02:26f0:5900::1738:ee48

a1887.dscq.akamai.net

IN AAAA

2a02:26f0:5900::1738:ee5a
DNS

prod.ads.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.ads.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

firefox.settings.services.mozilla.com

Remote address:

1.1.1.1:53

Request

firefox.settings.services.mozilla.com

IN A

Response

firefox.settings.services.mozilla.com

IN CNAME

prod.remote-settings.prod.webservices.mozgcp.net

prod.remote-settings.prod.webservices.mozgcp.net

IN A

34.149.100.209
DNS

firefox.settings.services.mozilla.com

Remote address:

1.1.1.1:53

Request

firefox.settings.services.mozilla.com

IN AAAA

Response

firefox.settings.services.mozilla.com

IN CNAME

prod.remote-settings.prod.webservices.mozgcp.net
DNS

prod.remote-settings.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.remote-settings.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

content-signature-2.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

content-signature-2.cdn.mozilla.net

IN A

Response

content-signature-2.cdn.mozilla.net

IN CNAME

content-signature-chains.prod.autograph.services.mozaws.net

content-signature-chains.prod.autograph.services.mozaws.net

IN CNAME

prod.content-signature-chains.prod.webservices.mozgcp.net

prod.content-signature-chains.prod.webservices.mozgcp.net

IN A

34.160.144.191
DNS

content-signature-2.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

content-signature-2.cdn.mozilla.net

IN AAAA

Response

content-signature-2.cdn.mozilla.net

IN CNAME

content-signature-chains.prod.autograph.services.mozaws.net

content-signature-chains.prod.autograph.services.mozaws.net

IN CNAME

prod.content-signature-chains.prod.webservices.mozgcp.net

prod.content-signature-chains.prod.webservices.mozgcp.net

IN AAAA

2600:1901:0:92a9::
DNS

ogs.google.com

Remote address:

1.1.1.1:53

Request

ogs.google.com

IN A

Response

ogs.google.com

IN CNAME

www3.l.google.com

www3.l.google.com

IN A

142.250.180.14
DNS

ogs.google.com

Remote address:

1.1.1.1:53

Request

ogs.google.com

IN AAAA

Response

ogs.google.com

IN CNAME

www3.l.google.com

www3.l.google.com

IN AAAA

2a00:1450:4009:826::200e
DNS

play.google.com

Remote address:

1.1.1.1:53

Request

play.google.com

IN A

Response

play.google.com

IN A

142.250.178.14
DNS

play.google.com

Remote address:

1.1.1.1:53

Request

play.google.com

IN AAAA

Response

play.google.com

IN AAAA

2a00:1450:4009:817::200e
DNS

normandy.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

normandy.cdn.mozilla.net

IN A

Response

normandy.cdn.mozilla.net

IN CNAME

normandy-cdn.services.mozilla.com

normandy-cdn.services.mozilla.com

IN A

35.201.103.21
DNS

normandy.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

normandy.cdn.mozilla.net

IN AAAA

Response

normandy.cdn.mozilla.net

IN CNAME

normandy-cdn.services.mozilla.com
DNS

normandy-cdn.services.mozilla.com

Remote address:

1.1.1.1:53

Request

normandy-cdn.services.mozilla.com

IN AAAA

Response
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN A

Response

a1887.dscq.akamai.net

IN A

88.221.135.115

a1887.dscq.akamai.net

IN A

88.221.134.89

a1887.dscq.akamai.net

IN A

88.221.134.137

a1887.dscq.akamai.net

IN A

88.221.135.105

a1887.dscq.akamai.net

IN A

88.221.135.106

a1887.dscq.akamai.net

IN A

88.221.135.98
DNS

classify-client.services.mozilla.com

Remote address:

1.1.1.1:53

Request

classify-client.services.mozilla.com

IN A

Response

classify-client.services.mozilla.com

IN CNAME

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

IN A

34.98.75.36
DNS

classify-client.services.mozilla.com

Remote address:

1.1.1.1:53

Request

classify-client.services.mozilla.com

IN AAAA

Response

classify-client.services.mozilla.com

IN CNAME

prod-classifyclient.normandy.prod.cloudops.mozgcp.net
DNS

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

IN AAAA

Response
GET

http://detectportal.firefox.com/canonical.html

Remote address:

34.107.221.82:80

Request

GET /canonical.html HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive

Response

HTTP/1.1 200 OK

Server: nginx
Content-Length: 90
Via: 1.1 google
Date: Mon, 22 Apr 2024 15:43:07 GMT
Age: 64320
Content-Type: text/html
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
GET

http://detectportal.firefox.com/canonical.html

Remote address:

34.107.221.82:80

Request

GET /canonical.html HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Cache-Control: no-cache
Pragma: no-cache
Connection: keep-alive

Response

HTTP/1.1 200 OK

Server: nginx
Content-Length: 90
Via: 1.1 google
Date: Mon, 22 Apr 2024 15:43:07 GMT
Age: 64380
Content-Type: text/html
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
DNS

contile.services.mozilla.com

Remote address:

1.1.1.1:53

Request

contile.services.mozilla.com

IN A

Response

contile.services.mozilla.com

IN A

34.117.237.239
GET

http://detectportal.firefox.com/success.txt?ipv4

Remote address:

34.107.221.82:80

Request

GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 22 Apr 2024 12:01:51 GMT
Age: 77596
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
GET

http://detectportal.firefox.com/success.txt?ipv4

Remote address:

34.107.221.82:80

Request

GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 22 Apr 2024 12:01:51 GMT
Age: 77656
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN A

Response

a1887.dscq.akamai.net

IN A

92.123.143.169

a1887.dscq.akamai.net

IN A

92.123.143.193
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN AAAA

Response

a1887.dscq.akamai.net

IN AAAA

2a02:26f0:5900::1738:ee5a

a1887.dscq.akamai.net

IN AAAA

2a02:26f0:5900::1738:ee48
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "77EEBB0AC322F57812224E4F517162F55D27116A1F339BF3AFD57203545CC86C"
Last-Modified: Sun, 21 Apr 2024 07:08:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3315
Expires: Tue, 23 Apr 2024 10:30:23 GMT
Date: Tue, 23 Apr 2024 09:35:08 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1DFD1D1D41DD8F59EB0DF5B287DB873E7C94EFF0465711BDD44B0D9E8BA6C96E"
Last-Modified: Mon, 22 Apr 2024 13:30:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5598
Expires: Tue, 23 Apr 2024 11:08:26 GMT
Date: Tue, 23 Apr 2024 09:35:08 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "475AFB376FD4342F4F3941D0114E56B34ABD41923525535DE004607D993BD100"
Last-Modified: Sat, 20 Apr 2024 21:53:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12637
Expires: Tue, 23 Apr 2024 13:05:45 GMT
Date: Tue, 23 Apr 2024 09:35:08 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "130D6221BADC61D64F9E3891DAC057FC4946DEDD7753B692F400C20244A49CA7"
Last-Modified: Sat, 20 Apr 2024 17:20:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3819
Expires: Tue, 23 Apr 2024 10:38:47 GMT
Date: Tue, 23 Apr 2024 09:35:08 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D3CB64EED31D0623E6B36A44B96BB7239C010585703EF55A8800D3F2E0CE8D1"
Last-Modified: Sun, 21 Apr 2024 04:40:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7144
Expires: Tue, 23 Apr 2024 11:34:13 GMT
Date: Tue, 23 Apr 2024 09:35:09 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D3CB64EED31D0623E6B36A44B96BB7239C010585703EF55A8800D3F2E0CE8D1"
Last-Modified: Sun, 21 Apr 2024 04:40:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7144
Expires: Tue, 23 Apr 2024 11:34:13 GMT
Date: Tue, 23 Apr 2024 09:35:09 GMT
Connection: keep-alive
DNS

shavar.services.mozilla.com

Remote address:

1.1.1.1:53

Request

shavar.services.mozilla.com

IN A

Response

shavar.services.mozilla.com

IN CNAME

shavar.prod.mozaws.net

shavar.prod.mozaws.net

IN A

35.83.153.5

shavar.prod.mozaws.net

IN A

44.233.67.78

shavar.prod.mozaws.net

IN A

44.239.14.124
DNS

shavar.services.mozilla.com

Remote address:

1.1.1.1:53

Request

shavar.services.mozilla.com

IN AAAA

Response

shavar.services.mozilla.com

IN CNAME

shavar.prod.mozaws.net
DNS

shavar.prod.mozaws.net

Remote address:

1.1.1.1:53

Request

shavar.prod.mozaws.net

IN AAAA

Response
DNS

push.services.mozilla.com

Remote address:

1.1.1.1:53

Request

push.services.mozilla.com

IN A

Response

push.services.mozilla.com

IN CNAME

autopush.prod.mozaws.net

autopush.prod.mozaws.net

IN A

34.107.243.93
DNS

push.services.mozilla.com

Remote address:

1.1.1.1:53

Request

push.services.mozilla.com

IN AAAA

Response

push.services.mozilla.com

IN CNAME

autopush.prod.mozaws.net
DNS

autopush.prod.mozaws.net

Remote address:

1.1.1.1:53

Request

autopush.prod.mozaws.net

IN AAAA

Response
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.193:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BA4F718BB303CC4E8DFC0A1724E37466BF4A05965347B3DD1EAFEA7F17E1CF3"
Last-Modified: Sun, 21 Apr 2024 07:10:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7875
Expires: Tue, 23 Apr 2024 11:46:24 GMT
Date: Tue, 23 Apr 2024 09:35:09 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.193:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D135566BB030D398ADF975C4AFBB5786807355DE34B583B52DF38B4A85821275"
Last-Modified: Mon, 22 Apr 2024 23:21:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12426
Expires: Tue, 23 Apr 2024 13:02:15 GMT
Date: Tue, 23 Apr 2024 09:35:09 GMT
Connection: keep-alive
DNS

incoming.telemetry.mozilla.org

Remote address:

1.1.1.1:53

Request

incoming.telemetry.mozilla.org

IN A

Response

incoming.telemetry.mozilla.org

IN CNAME

telemetry-incoming.r53-2.services.mozilla.com

telemetry-incoming.r53-2.services.mozilla.com

IN A

34.120.208.123
DNS

incoming.telemetry.mozilla.org

Remote address:

1.1.1.1:53

Request

incoming.telemetry.mozilla.org

IN AAAA

Response

incoming.telemetry.mozilla.org

IN CNAME

telemetry-incoming.r53-2.services.mozilla.com
DNS

telemetry-incoming.r53-2.services.mozilla.com

Remote address:

1.1.1.1:53

Request

telemetry-incoming.r53-2.services.mozilla.com

IN AAAA

Response
DNS

tracking-protection.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

tracking-protection.cdn.mozilla.net

IN A

Response

tracking-protection.cdn.mozilla.net

IN CNAME

tracking-protection.prod.mozaws.net

tracking-protection.prod.mozaws.net

IN A

34.120.158.37
DNS

tracking-protection.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

tracking-protection.cdn.mozilla.net

IN AAAA

Response

tracking-protection.cdn.mozilla.net

IN CNAME

tracking-protection.prod.mozaws.net
DNS

firefox-settings-attachments.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

firefox-settings-attachments.cdn.mozilla.net

IN A

Response

firefox-settings-attachments.cdn.mozilla.net

IN CNAME

attachments.prod.remote-settings.prod.webservices.mozgcp.net

attachments.prod.remote-settings.prod.webservices.mozgcp.net

IN A

34.117.121.53
DNS

firefox-settings-attachments.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

firefox-settings-attachments.cdn.mozilla.net

IN AAAA

Response

firefox-settings-attachments.cdn.mozilla.net

IN CNAME

attachments.prod.remote-settings.prod.webservices.mozgcp.net
DNS

tracking-protection.prod.mozaws.net

Remote address:

1.1.1.1:53

Request

tracking-protection.prod.mozaws.net

IN AAAA

Response
DNS

attachments.prod.remote-settings.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

attachments.prod.remote-settings.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

fp2e7a.wpc.phicdn.net

Remote address:

1.1.1.1:53

Request

fp2e7a.wpc.phicdn.net

IN AAAA

Response
DNS

support.mozilla.org

Remote address:

1.1.1.1:53

Request

support.mozilla.org

IN A

Response

support.mozilla.org

IN CNAME

prod.sumo.prod.webservices.mozgcp.net

prod.sumo.prod.webservices.mozgcp.net

IN CNAME

us-west1.prod.sumo.prod.webservices.mozgcp.net

us-west1.prod.sumo.prod.webservices.mozgcp.net

IN A

34.149.128.2
DNS

support.mozilla.org

Remote address:

1.1.1.1:53

Request

support.mozilla.org

IN AAAA

Response

support.mozilla.org

IN CNAME

prod.sumo.prod.webservices.mozgcp.net

prod.sumo.prod.webservices.mozgcp.net

IN CNAME

us-west1.prod.sumo.prod.webservices.mozgcp.net
DNS

us-west1.prod.sumo.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

us-west1.prod.sumo.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

turbobit.net

Remote address:

1.1.1.1:53

Request

turbobit.net

IN A

Response

turbobit.net

IN A

212.192.240.178
DNS

turbobit.net

Remote address:

1.1.1.1:53

Request

turbobit.net

IN AAAA

Response
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN A

Response

a1887.dscq.akamai.net

IN A

92.123.143.169
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN AAAA

Response

a1887.dscq.akamai.net

IN AAAA

2a02:26f0:5900::1738:ee5a

a1887.dscq.akamai.net

IN AAAA

2a02:26f0:5900::1738:ee48
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "49018015EBD5994E436640DB9B5FB309E55507E1F797297041CF0BB4B024CC95"
Last-Modified: Sun, 21 Apr 2024 19:32:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14678
Expires: Tue, 23 Apr 2024 13:40:03 GMT
Date: Tue, 23 Apr 2024 09:35:25 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E183ED6754CD4570D70BCD94ED65CB11C7A1BCCC2704CFEF34B02CFB0E33E803"
Last-Modified: Mon, 22 Apr 2024 08:06:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8318
Expires: Tue, 23 Apr 2024 11:54:03 GMT
Date: Tue, 23 Apr 2024 09:35:25 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7A319F34E312C03707C3D516C4998C71723F98B18C01FE32ABA14380292FDEA"
Last-Modified: Sun, 21 Apr 2024 16:25:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6682
Expires: Tue, 23 Apr 2024 11:26:48 GMT
Date: Tue, 23 Apr 2024 09:35:26 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C431B86A7F56C63C3FA0AC369A6DABA99CC4CE8B9822BA8B3BD9B709C9F70D13"
Last-Modified: Sun, 21 Apr 2024 02:52:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1295
Expires: Tue, 23 Apr 2024 09:57:01 GMT
Date: Tue, 23 Apr 2024 09:35:26 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9CD14E6DDB6DB283B97F904AAFCDD92CCF25CD4842C4856936137B9022DBCB81"
Last-Modified: Sun, 21 Apr 2024 14:06:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1007
Expires: Tue, 23 Apr 2024 09:52:21 GMT
Date: Tue, 23 Apr 2024 09:35:34 GMT
Connection: keep-alive
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "450E1886800482FA5166324AFAD0CF78F89C4C56D2D00FECD9A6A69DF7721AAB"
Last-Modified: Sat, 20 Apr 2024 18:07:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6579
Expires: Tue, 23 Apr 2024 11:25:13 GMT
Date: Tue, 23 Apr 2024 09:35:34 GMT
Connection: keep-alive
DNS

turbo.to

Remote address:

1.1.1.1:53

Request

turbo.to

IN A

Response

turbo.to

IN A

5.61.56.172
DNS

turbo.to

Remote address:

1.1.1.1:53

Request

turbo.to

IN AAAA

Response
DNS

hif.to

Remote address:

1.1.1.1:53

Request

hif.to

IN A

Response

hif.to

IN A

5.45.70.250
DNS

hif.to

Remote address:

1.1.1.1:53

Request

hif.to

IN AAAA

Response
DNS

app.turbobit.net

Remote address:

1.1.1.1:53

Request

app.turbobit.net

IN A

Response

app.turbobit.net

IN CNAME

turbobit.net

turbobit.net

IN A

212.192.240.178
DNS

app.turbobit.net

Remote address:

1.1.1.1:53

Request

app.turbobit.net

IN AAAA

Response

app.turbobit.net

IN CNAME

turbobit.net
DNS

vo.turbocap.net

Remote address:

1.1.1.1:53

Request

vo.turbocap.net

IN A

Response

vo.turbocap.net

IN CNAME

0i0i0i0.com

0i0i0i0.com

IN A

94.130.130.77
DNS

vo.turbocap.net

Remote address:

1.1.1.1:53

Request

vo.turbocap.net

IN AAAA

Response

vo.turbocap.net

IN CNAME

0i0i0i0.com

0i0i0i0.com

IN AAAA

2a01:4f8:161:6222::2
DNS

cdn.jsdelivr.net

Remote address:

1.1.1.1:53

Request

cdn.jsdelivr.net

IN A

Response

cdn.jsdelivr.net

IN CNAME

jsdelivr.map.fastly.net

jsdelivr.map.fastly.net

IN A

151.101.129.229

jsdelivr.map.fastly.net

IN A

151.101.65.229

jsdelivr.map.fastly.net

IN A

151.101.1.229

jsdelivr.map.fastly.net

IN A

151.101.193.229
DNS

cdn.jsdelivr.net

Remote address:

1.1.1.1:53

Request

cdn.jsdelivr.net

IN AAAA

Response

cdn.jsdelivr.net

IN CNAME

jsdelivr.map.fastly.net

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:600::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:400::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:200::485
DNS

turbobita.net

Remote address:

1.1.1.1:53

Request

turbobita.net

IN A

Response

turbobita.net

IN A

5.61.48.58
DNS

turbobita.net

Remote address:

1.1.1.1:53

Request

turbobita.net

IN AAAA

Response
GET

http://hif.to/rkstat/

Remote address:

5.45.70.250:80

Request

GET /rkstat/ HTTP/1.1
Host: hif.to
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive

Response

HTTP/1.1 301 Moved Permanently

Server: nginx/1.20.2
Date: Tue, 23 Apr 2024 09:35:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://hif.to:443/rkstat/
DNS

s.o333o.com

Remote address:

1.1.1.1:53

Request

s.o333o.com

IN A

Response

s.o333o.com

IN A

85.10.205.45
DNS

s.o333o.com

Remote address:

1.1.1.1:53

Request

s.o333o.com

IN AAAA

Response
DNS

mc.webvisor.org

Remote address:

1.1.1.1:53

Request

mc.webvisor.org

IN A

Response

mc.webvisor.org

IN A

77.88.21.119

mc.webvisor.org

IN A

93.158.134.119

mc.webvisor.org

IN A

87.250.251.119

mc.webvisor.org

IN A

87.250.250.119
DNS

mc.webvisor.org

Remote address:

1.1.1.1:53

Request

mc.webvisor.org

IN AAAA

Response

mc.webvisor.org

IN AAAA

2a02:6b8::1:119
DNS

engine.spotscenered.info

Remote address:

1.1.1.1:53

Request

engine.spotscenered.info

IN A

Response

engine.spotscenered.info

IN A

104.17.159.201

engine.spotscenered.info

IN A

104.16.176.168
DNS

engine.spotscenered.info

Remote address:

1.1.1.1:53

Request

engine.spotscenered.info

IN AAAA

Response

engine.spotscenered.info

IN AAAA

2606:4700::6811:9fc9

engine.spotscenered.info

IN AAAA

2606:4700::6810:b0a8
DNS

i.gyazo.com

Remote address:

1.1.1.1:53

Request

i.gyazo.com

IN A

Response

i.gyazo.com

IN A

104.18.25.163

i.gyazo.com

IN A

104.18.24.163
DNS

i.gyazo.com

Remote address:

1.1.1.1:53

Request

i.gyazo.com

IN AAAA

Response

i.gyazo.com

IN AAAA

2606:4700::6812:19a3

i.gyazo.com

IN AAAA

2606:4700::6812:18a3
DNS

grincircus.com

Remote address:

1.1.1.1:53

Request

grincircus.com

IN A

Response

grincircus.com

IN A

192.243.59.20

grincircus.com

IN A

192.243.61.225

grincircus.com

IN A

192.243.59.13

grincircus.com

IN A

172.240.127.234

grincircus.com

IN A

172.240.253.132

grincircus.com

IN A

172.240.108.76

grincircus.com

IN A

192.243.61.227

grincircus.com

IN A

192.243.59.12

grincircus.com

IN A

172.240.108.68

grincircus.com

IN A

172.240.108.84
DNS

grincircus.com

Remote address:

1.1.1.1:53

Request

grincircus.com

IN AAAA

Response
DNS

www.adsupplyads.net

Remote address:

1.1.1.1:53

Request

www.adsupplyads.net

IN A

Response

www.adsupplyads.net

IN A

104.26.3.12

www.adsupplyads.net

IN A

172.67.70.25

www.adsupplyads.net

IN A

104.26.2.12
DNS

www.adsupplyads.net

Remote address:

1.1.1.1:53

Request

www.adsupplyads.net

IN AAAA

Response

www.adsupplyads.net

IN AAAA

2606:4700:20::ac43:4619

www.adsupplyads.net

IN AAAA

2606:4700:20::681a:30c

www.adsupplyads.net

IN AAAA

2606:4700:20::681a:20c
DNS

is.gd

Remote address:

1.1.1.1:53

Request

is.gd

IN A

Response

is.gd

IN A

172.67.83.132

is.gd

IN A

104.25.233.53

is.gd

IN A

104.25.234.53
DNS

is.gd

Remote address:

1.1.1.1:53

Request

is.gd

IN AAAA

Response

is.gd

IN AAAA

2606:4700:20::ac43:5384

is.gd

IN AAAA

2606:4700:20::6819:ea35

is.gd

IN AAAA

2606:4700:20::6819:e935
DNS

a1887.dscq.akamai.net

Remote address:

1.1.1.1:53

Request

a1887.dscq.akamai.net

IN A

Response

a1887.dscq.akamai.net

IN A

92.123.143.169

a1887.dscq.akamai.net

IN A

92.123.143.185
POST

http://r3.o.lencr.org/

Remote address:

92.123.143.169:80

Request

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

Response

HTTP/1.1 200 OK

Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C0B5AFBB0706CB80AC84508A956CF1F2838AE9A7B7DF27099B00A077D0DCF8D"
Last-Modified: Sun, 21 Apr 2024 17:02:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20462
Expires: Tue, 23 Apr 2024 15:16:36 GMT
Date: Tue, 23 Apr 2024 09:35:34 GMT
Connection: keep-alive
DNS

system-notify.app

Remote address:

1.1.1.1:53

Request

system-notify.app

IN A

Response

system-notify.app

IN A

178.63.248.57

system-notify.app

IN A

157.90.33.72

system-notify.app

IN A

23.88.8.125

system-notify.app

IN A

23.88.8.123

system-notify.app

IN A

157.90.33.121

system-notify.app

IN A

178.63.248.56

system-notify.app

IN A

157.90.33.122

system-notify.app

IN A

157.90.33.68
DNS

system-notify.app

Remote address:

1.1.1.1:53

Request

system-notify.app

IN AAAA

Response
DNS

www.smokeybear.com

Remote address:

1.1.1.1:53

Request

www.smokeybear.com

IN A

Response

www.smokeybear.com

IN CNAME

prod.campaigns.ad-council.psdops.com

prod.campaigns.ad-council.psdops.com

IN CNAME

d2bwgd151c8bhh.cloudfront.net

d2bwgd151c8bhh.cloudfront.net

IN A

18.244.114.113

d2bwgd151c8bhh.cloudfront.net

IN A

18.244.114.121

d2bwgd151c8bhh.cloudfront.net

IN A

18.244.114.5

d2bwgd151c8bhh.cloudfront.net

IN A

18.244.114.3
DNS

www.smokeybear.com

Remote address:

1.1.1.1:53

Request

www.smokeybear.com

IN AAAA

Response

www.smokeybear.com

IN CNAME

prod.campaigns.ad-council.psdops.com

prod.campaigns.ad-council.psdops.com

IN CNAME

d2bwgd151c8bhh.cloudfront.net
DNS

d2bwgd151c8bhh.cloudfront.net

Remote address:

1.1.1.1:53

Request

d2bwgd151c8bhh.cloudfront.net

IN AAAA

Response
DNS

smokeybear.com

Remote address:

1.1.1.1:53

Request

smokeybear.com

IN A

Response

smokeybear.com

IN A

18.239.236.46

smokeybear.com

IN A

18.239.236.60

smokeybear.com

IN A

18.239.236.55

smokeybear.com

IN A

18.239.236.14
DNS

smokeybear.com

Remote address:

1.1.1.1:53

Request

smokeybear.com

IN AAAA

Response
DNS

adcouncil-campaigns.brightspotcdn.com

Remote address:

1.1.1.1:53

Request

adcouncil-campaigns.brightspotcdn.com

IN A

Response

adcouncil-campaigns.brightspotcdn.com

IN CNAME

cdn.campaigns.ad-council.psdops.com

cdn.campaigns.ad-council.psdops.com

IN CNAME

d1qifrot4mdylg.cloudfront.net

d1qifrot4mdylg.cloudfront.net

IN A

52.84.90.79

d1qifrot4mdylg.cloudfront.net

IN A

52.84.90.65

d1qifrot4mdylg.cloudfront.net

IN A

52.84.90.96

d1qifrot4mdylg.cloudfront.net

IN A

52.84.90.40
DNS

adcouncil-campaigns.brightspotcdn.com

Remote address:

1.1.1.1:53

Request

adcouncil-campaigns.brightspotcdn.com

IN AAAA

Response

adcouncil-campaigns.brightspotcdn.com

IN CNAME

cdn.campaigns.ad-council.psdops.com

cdn.campaigns.ad-council.psdops.com

IN CNAME

d1qifrot4mdylg.cloudfront.net
DNS

api.b2c.com

Remote address:

1.1.1.1:53

Request

api.b2c.com

IN A

Response

api.b2c.com

IN A

172.67.68.161

api.b2c.com

IN A

104.26.7.35

api.b2c.com

IN A

104.26.6.35
DNS

api.b2c.com

Remote address:

1.1.1.1:53

Request

api.b2c.com

IN AAAA

Response

api.b2c.com

IN AAAA

2606:4700:20::681a:723

api.b2c.com

IN AAAA

2606:4700:20::ac43:44a1

api.b2c.com

IN AAAA

2606:4700:20::681a:623
DNS

maps.googleapis.com

Remote address:

1.1.1.1:53

Request

maps.googleapis.com

IN A

Response

maps.googleapis.com

IN A

216.58.201.106

maps.googleapis.com

IN A

142.250.187.202

maps.googleapis.com

IN A

216.58.204.74

maps.googleapis.com

IN A

142.250.178.10

maps.googleapis.com

IN A

216.58.212.202

maps.googleapis.com

IN A

142.250.180.10

maps.googleapis.com

IN A

142.250.179.234

maps.googleapis.com

IN A

216.58.213.10

maps.googleapis.com

IN A

172.217.16.234

maps.googleapis.com

IN A

142.250.200.10

maps.googleapis.com

IN A

172.217.169.10

maps.googleapis.com

IN A

216.58.212.234

maps.googleapis.com

IN A

142.250.187.234

maps.googleapis.com

IN A

142.250.200.42
DNS

maps.googleapis.com

Remote address:

1.1.1.1:53

Request

maps.googleapis.com

IN AAAA

Response

maps.googleapis.com

IN AAAA

2a00:1450:4009:815::200a

maps.googleapis.com

IN AAAA

2a00:1450:4009:822::200a

maps.googleapis.com

IN AAAA

2a00:1450:4009:823::200a

maps.googleapis.com

IN AAAA

2a00:1450:4009:821::200a
DNS

d1qifrot4mdylg.cloudfront.net

Remote address:

1.1.1.1:53

Request

d1qifrot4mdylg.cloudfront.net

IN AAAA

Response
DNS

connect.facebook.net

Remote address:

1.1.1.1:53

Request

connect.facebook.net

IN A

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN A

157.240.214.11
DNS

connect.facebook.net

Remote address:

1.1.1.1:53

Request

connect.facebook.net

IN AAAA

Response

connect.facebook.net

IN CNAME

scontent.xx.fbcdn.net

scontent.xx.fbcdn.net

IN AAAA

2a03:2880:f058:f:face:b00c:0:3
DNS

www.youtube.com

Remote address:

1.1.1.1:53

Request

www.youtube.com

IN A

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN A

172.217.169.46

youtube-ui.l.google.com

IN A

216.58.213.14

youtube-ui.l.google.com

IN A

142.250.187.238

youtube-ui.l.google.com

IN A

142.250.200.14

youtube-ui.l.google.com

IN A

172.217.16.238

youtube-ui.l.google.com

IN A

142.250.180.14

youtube-ui.l.google.com

IN A

142.250.178.14

youtube-ui.l.google.com

IN A

216.58.201.110

youtube-ui.l.google.com

IN A

216.58.204.78

youtube-ui.l.google.com

IN A

142.250.200.46

youtube-ui.l.google.com

IN A

142.250.179.238

youtube-ui.l.google.com

IN A

142.250.187.206
DNS

www.youtube.com

Remote address:

1.1.1.1:53

Request

www.youtube.com

IN AAAA

Response

www.youtube.com

IN CNAME

youtube-ui.l.google.com

youtube-ui.l.google.com

IN AAAA

2a00:1450:4009:815::200e

youtube-ui.l.google.com

IN AAAA

2a00:1450:4009:821::200e

youtube-ui.l.google.com

IN AAAA

2a00:1450:4009:823::200e

youtube-ui.l.google.com

IN AAAA

2a00:1450:4009:822::200e
DNS

aus5.mozilla.org

Remote address:

1.1.1.1:53

Request

aus5.mozilla.org

IN A

Response

aus5.mozilla.org

IN CNAME

balrog-aus5.r53-2.services.mozilla.com

balrog-aus5.r53-2.services.mozilla.com

IN CNAME

prod.balrog.prod.cloudops.mozgcp.net

prod.balrog.prod.cloudops.mozgcp.net

IN A

35.244.181.201
DNS

aus5.mozilla.org

Remote address:

1.1.1.1:53

Request

aus5.mozilla.org

IN AAAA

Response

aus5.mozilla.org

IN CNAME

balrog-aus5.r53-2.services.mozilla.com

balrog-aus5.r53-2.services.mozilla.com

IN CNAME

prod.balrog.prod.cloudops.mozgcp.net
DNS

prod.balrog.prod.cloudops.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.balrog.prod.cloudops.mozgcp.net

IN AAAA

Response
DNS

archive.mozilla.org

Remote address:

1.1.1.1:53

Request

archive.mozilla.org

IN A

Response

archive.mozilla.org

IN A

34.117.35.28
DNS

archive.mozilla.org

Remote address:

1.1.1.1:53

Request

archive.mozilla.org

IN AAAA

Response

archive.mozilla.org

IN AAAA

2600:1901:0:b9fd::
DNS

ciscobinary.openh264.org

Remote address:

1.1.1.1:53

Request

ciscobinary.openh264.org

IN A

Response

ciscobinary.openh264.org

IN CNAME

a21ed24aedde648804e7-228765c84088fef4ff5e70f2710398e9.r17.cf1.rackcdn.com

a21ed24aedde648804e7-228765c84088fef4ff5e70f2710398e9.r17.cf1.rackcdn.com

IN CNAME

a17.rackcdn.com

a17.rackcdn.com

IN CNAME

a17.rackcdn.com.mdc.edgesuite.net

a17.rackcdn.com.mdc.edgesuite.net

IN CNAME

a19.dscg10.akamai.net

a19.dscg10.akamai.net

IN A

88.221.134.155

a19.dscg10.akamai.net

IN A

88.221.134.209
DNS

ciscobinary.openh264.org

Remote address:

1.1.1.1:53

Request

ciscobinary.openh264.org

IN AAAA

Response

ciscobinary.openh264.org

IN CNAME

a21ed24aedde648804e7-228765c84088fef4ff5e70f2710398e9.r17.cf1.rackcdn.com

a21ed24aedde648804e7-228765c84088fef4ff5e70f2710398e9.r17.cf1.rackcdn.com

IN CNAME

a17.rackcdn.com

a17.rackcdn.com

IN CNAME

a17.rackcdn.com.mdc.edgesuite.net

a17.rackcdn.com.mdc.edgesuite.net

IN CNAME

a19.dscg10.akamai.net

a19.dscg10.akamai.net

IN AAAA

2a02:26f0:a1::58dd:86d1

a19.dscg10.akamai.net

IN AAAA

2a02:26f0:a1::58dd:869b
GET

http://ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip

Remote address:

88.221.134.209:80

Request

GET /openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip HTTP/1.1
Host: ciscobinary.openh264.org
User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/113.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive

Response

HTTP/1.1 200 OK

Last-Modified: Wed, 10 Apr 2024 18:44:25 GMT
ETag: 152eda253e242e18443ef3282495bc7c
Content-Length: 511815
Accept-Ranges: bytes
X-Timestamp: 1712774664.95299
Content-Type: application/zip
X-Trans-Id: txd90ec9b4ae4346178833d-006618a6badfw1
Cache-Control: public, max-age=257912
Expires: Fri, 26 Apr 2024 09:14:09 GMT
Date: Tue, 23 Apr 2024 09:35:37 GMT
Connection: keep-alive
DNS

s.pinimg.com

Remote address:

1.1.1.1:53

Request

s.pinimg.com

IN A

Response

s.pinimg.com

IN CNAME

s-pinimg-com.gslb.pinterest.com

s-pinimg-com.gslb.pinterest.com

IN CNAME

2-01-37d2-0020.cdx.cedexis.net

2-01-37d2-0020.cdx.cedexis.net

IN CNAME

dualstack.pinterest.map.fastly.net

dualstack.pinterest.map.fastly.net

IN A

199.232.56.84
DNS

s.pinimg.com

Remote address:

1.1.1.1:53

Request

s.pinimg.com

IN AAAA

Response

s.pinimg.com

IN CNAME

s-pinimg-com.gslb.pinterest.com

s-pinimg-com.gslb.pinterest.com

IN CNAME

2-01-37d2-0020.cdx.cedexis.net

2-01-37d2-0020.cdx.cedexis.net

IN CNAME

dualstack.pinterest.map.fastly.net

dualstack.pinterest.map.fastly.net

IN AAAA

2a04:4e42:4b::84
DNS

i.ytimg.com

Remote address:

1.1.1.1:53

Request

i.ytimg.com

IN A

Response

i.ytimg.com

IN A

142.250.178.22

i.ytimg.com

IN A

172.217.16.246

i.ytimg.com

IN A

172.217.169.22

i.ytimg.com

IN A

142.250.200.54

i.ytimg.com

IN A

142.250.180.22

i.ytimg.com

IN A

142.250.200.22

i.ytimg.com

IN A

216.58.213.22

i.ytimg.com

IN A

216.58.204.86

i.ytimg.com

IN A

142.250.187.246

i.ytimg.com

IN A

142.250.187.214

i.ytimg.com

IN A

216.58.201.118

i.ytimg.com

IN A

142.250.179.246
DNS

i.ytimg.com

Remote address:

1.1.1.1:53

Request

i.ytimg.com

IN AAAA

Response

i.ytimg.com

IN AAAA

2a00:1450:4009:818::2016

i.ytimg.com

IN AAAA

2a00:1450:4009:81e::2016

i.ytimg.com

IN AAAA

2a00:1450:4009:80a::2016

i.ytimg.com

IN AAAA

2a00:1450:4009:81d::2016
DNS

analytics.google.com

Remote address:

1.1.1.1:53

Request

analytics.google.com

IN A

Response

analytics.google.com

IN CNAME

analytics-alv.google.com

analytics-alv.google.com

IN A

216.239.34.181

analytics-alv.google.com

IN A

216.239.32.181

analytics-alv.google.com

IN A

216.239.36.181

analytics-alv.google.com

IN A

216.239.38.181
DNS

analytics.google.com

Remote address:

1.1.1.1:53

Request

analytics.google.com

IN AAAA

Response

analytics.google.com

IN AAAA

2a00:1450:4009:823::200e
DNS

ct.pinterest.com

Remote address:

1.1.1.1:53

Request

ct.pinterest.com

IN A

Response

ct.pinterest.com

IN CNAME

www.pinterest.com

www.pinterest.com

IN CNAME

www-pinterest-com.gslb.pinterest.com

www-pinterest-com.gslb.pinterest.com

IN CNAME

2-01-37d2-0018.cdx.cedexis.net

2-01-37d2-0018.cdx.cedexis.net

IN CNAME

prod.pinterest.global.map.fastly.net

prod.pinterest.global.map.fastly.net

IN A

151.101.192.84

prod.pinterest.global.map.fastly.net

IN A

151.101.0.84

prod.pinterest.global.map.fastly.net

IN A

151.101.128.84

prod.pinterest.global.map.fastly.net

IN A

151.101.64.84
DNS

ct.pinterest.com

Remote address:

1.1.1.1:53

Request

ct.pinterest.com

IN AAAA

Response

ct.pinterest.com

IN CNAME

www.pinterest.com

www.pinterest.com

IN CNAME

www-pinterest-com.gslb.pinterest.com

www-pinterest-com.gslb.pinterest.com

IN CNAME

2-01-37d2-0018.cdx.cedexis.net

2-01-37d2-0018.cdx.cedexis.net

IN CNAME

www.pinterest.com.edgekey.net

www.pinterest.com.edgekey.net

IN CNAME

e6449.a.akamaiedge.net
DNS

e6449.a.akamaiedge.net

Remote address:

1.1.1.1:53

Request

e6449.a.akamaiedge.net

IN AAAA

Response
DNS

jnn-pa.googleapis.com

Remote address:

1.1.1.1:53

Request

jnn-pa.googleapis.com

IN A

Response

jnn-pa.googleapis.com

IN A

142.250.180.10

jnn-pa.googleapis.com

IN A

216.58.204.74

jnn-pa.googleapis.com

IN A

142.250.200.42

jnn-pa.googleapis.com

IN A

142.250.178.10

jnn-pa.googleapis.com

IN A

172.217.16.234

jnn-pa.googleapis.com

IN A

172.217.169.74

jnn-pa.googleapis.com

IN A

172.217.169.10

jnn-pa.googleapis.com

IN A

216.58.212.202

jnn-pa.googleapis.com

IN A

216.58.201.106

jnn-pa.googleapis.com

IN A

142.250.200.10

jnn-pa.googleapis.com

IN A

172.217.169.42

jnn-pa.googleapis.com

IN A

142.250.187.234

jnn-pa.googleapis.com

IN A

216.58.213.10

jnn-pa.googleapis.com

IN A

142.250.179.234

jnn-pa.googleapis.com

IN A

142.250.187.202
DNS

jnn-pa.googleapis.com

Remote address:

1.1.1.1:53

Request

jnn-pa.googleapis.com

IN AAAA

Response

jnn-pa.googleapis.com

IN AAAA

2a00:1450:4009:821::200a

jnn-pa.googleapis.com

IN AAAA

2a00:1450:4009:81f::200a

jnn-pa.googleapis.com

IN AAAA

2a00:1450:4009:820::200a

jnn-pa.googleapis.com

IN AAAA

2a00:1450:4009:823::200a
DNS

play.google.com

Remote address:

1.1.1.1:53

Request

play.google.com

IN A

Response

play.google.com

IN A

142.250.200.46
DNS

yt3.ggpht.com

Remote address:

1.1.1.1:53

Request

yt3.ggpht.com

IN A

Response

yt3.ggpht.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN A

142.250.180.1
DNS

yt3.ggpht.com

Remote address:

1.1.1.1:53

Request

yt3.ggpht.com

IN AAAA

Response

yt3.ggpht.com

IN CNAME

photos-ugc.l.googleusercontent.com

photos-ugc.l.googleusercontent.com

IN AAAA

2a00:1450:4009:827::2001
DNS

safebrowsing.googleapis.com

Remote address:

1.1.1.1:53

Request

safebrowsing.googleapis.com

IN A

Response

safebrowsing.googleapis.com

IN A

216.58.212.202
DNS

safebrowsing.googleapis.com

Remote address:

1.1.1.1:53

Request

safebrowsing.googleapis.com

IN AAAA

Response

safebrowsing.googleapis.com

IN AAAA

2a00:1450:4009:81f::200a
DNS

detectportal.firefox.com

Remote address:

1.1.1.1:53

Request

detectportal.firefox.com

IN A

Response

detectportal.firefox.com

IN CNAME

detectportal.prod.mozaws.net

detectportal.prod.mozaws.net

IN CNAME

prod.detectportal.prod.cloudops.mozgcp.net

prod.detectportal.prod.cloudops.mozgcp.net

IN A

34.107.221.82
DNS

detectportal.firefox.com

Remote address:

1.1.1.1:53

Request

detectportal.firefox.com

IN AAAA

Response

detectportal.firefox.com

IN CNAME

detectportal.prod.mozaws.net

detectportal.prod.mozaws.net

IN CNAME

prod.detectportal.prod.cloudops.mozgcp.net

prod.detectportal.prod.cloudops.mozgcp.net

IN AAAA

2600:1901:0:38d7::
DNS

jsdelivr.map.fastly.net

Remote address:

1.1.1.1:53

Request

jsdelivr.map.fastly.net

IN A

Response

jsdelivr.map.fastly.net

IN A

151.101.65.229

jsdelivr.map.fastly.net

IN A

151.101.129.229

jsdelivr.map.fastly.net

IN A

151.101.1.229

jsdelivr.map.fastly.net

IN A

151.101.193.229
DNS

jsdelivr.map.fastly.net

Remote address:

1.1.1.1:53

Request

jsdelivr.map.fastly.net

IN AAAA

Response

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:400::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:200::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:600::485
DNS

api.b2c.com

Remote address:

1.1.1.1:53

Request

api.b2c.com

IN A

Response

api.b2c.com

IN A

172.67.68.161

api.b2c.com

IN A

104.26.6.35

api.b2c.com

IN A

104.26.7.35
DNS

aus5.mozilla.org

Remote address:

1.1.1.1:53

Request

aus5.mozilla.org

IN A

Response

aus5.mozilla.org

IN CNAME

balrog-aus5.r53-2.services.mozilla.com

balrog-aus5.r53-2.services.mozilla.com

IN CNAME

prod.balrog.prod.cloudops.mozgcp.net

prod.balrog.prod.cloudops.mozgcp.net

IN A

35.244.181.201
DNS

aus5.mozilla.org

Remote address:

1.1.1.1:53

Request

aus5.mozilla.org

IN AAAA

Response

aus5.mozilla.org

IN CNAME

balrog-aus5.r53-2.services.mozilla.com

balrog-aus5.r53-2.services.mozilla.com

IN CNAME

prod.balrog.prod.cloudops.mozgcp.net
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

185.125.190.17

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

91.189.91.98
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23
GET

http://connectivity-check.ubuntu.com/

Remote address:

185.125.190.98:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.18.0 (Ubuntu)
date: Tue, 23 Apr 2024 09:37:22 GMT
x-cache-status: from content-cache/2
x-networkmanager-status: online
connection: close
DNS

mc.webvisor.org

Remote address:

1.1.1.1:53

Request

mc.webvisor.org

IN AAAA

Response

mc.webvisor.org

IN AAAA

2a02:6b8::1:119
DNS

jsdelivr.map.fastly.net

Remote address:

1.1.1.1:53

Request

jsdelivr.map.fastly.net

IN A

Response

jsdelivr.map.fastly.net

IN A

151.101.129.229

jsdelivr.map.fastly.net

IN A

151.101.65.229

jsdelivr.map.fastly.net

IN A

151.101.193.229

jsdelivr.map.fastly.net

IN A

151.101.1.229
DNS

jsdelivr.map.fastly.net

Remote address:

1.1.1.1:53

Request

jsdelivr.map.fastly.net

IN AAAA

Response

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:400::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:600::485

jsdelivr.map.fastly.net

IN AAAA

2a04:4e42:200::485
DNS

s314.turbobit.net

Remote address:

1.1.1.1:53

Request

s314.turbobit.net

IN A

Response

s314.turbobit.net

IN A

83.149.104.56
DNS

s314.turbobit.net

Remote address:

1.1.1.1:53

Request

s314.turbobit.net

IN AAAA

Response
DNS

prod.sumo.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.sumo.prod.webservices.mozgcp.net

IN A

Response

prod.sumo.prod.webservices.mozgcp.net

IN CNAME

us-west1.prod.sumo.prod.webservices.mozgcp.net

us-west1.prod.sumo.prod.webservices.mozgcp.net

IN A

34.149.128.2
DNS

prod.sumo.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.sumo.prod.webservices.mozgcp.net

IN AAAA

Response

prod.sumo.prod.webservices.mozgcp.net

IN CNAME

us-west1.prod.sumo.prod.webservices.mozgcp.net
DNS

us-west1.prod.sumo.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

us-west1.prod.sumo.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

contile.services.mozilla.com

Remote address:

1.1.1.1:53

Request

contile.services.mozilla.com

IN A

Response

contile.services.mozilla.com

IN A

34.117.237.239
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

185.125.190.17

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

185.125.190.48
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA
GET

http://connectivity-check.ubuntu.com/

Remote address:

91.189.91.97:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.18.0 (Ubuntu)
date: Tue, 23 Apr 2024 09:42:33 GMT
x-cache-status: from content-cache/1
x-networkmanager-status: online
connection: close
DNS

firefox.settings.services.mozilla.com

Remote address:

1.1.1.1:53

Request

firefox.settings.services.mozilla.com

IN A

Response

firefox.settings.services.mozilla.com

IN CNAME

prod.remote-settings.prod.webservices.mozgcp.net

prod.remote-settings.prod.webservices.mozgcp.net

IN A

34.149.100.209
DNS

firefox.settings.services.mozilla.com

Remote address:

1.1.1.1:53

Request

firefox.settings.services.mozilla.com

IN AAAA

Response

firefox.settings.services.mozilla.com

IN CNAME

prod.remote-settings.prod.webservices.mozgcp.net
DNS

prod.remote-settings.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.remote-settings.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

content-signature-chains.prod.autograph.services.mozaws.net

Remote address:

1.1.1.1:53

Request

content-signature-chains.prod.autograph.services.mozaws.net

IN A

Response

content-signature-chains.prod.autograph.services.mozaws.net

IN CNAME

prod.content-signature-chains.prod.webservices.mozgcp.net

prod.content-signature-chains.prod.webservices.mozgcp.net

IN A

34.160.144.191
DNS

content-signature-chains.prod.autograph.services.mozaws.net

Remote address:

1.1.1.1:53

Request

content-signature-chains.prod.autograph.services.mozaws.net

IN AAAA

Response

content-signature-chains.prod.autograph.services.mozaws.net

IN CNAME

prod.content-signature-chains.prod.webservices.mozgcp.net

prod.content-signature-chains.prod.webservices.mozgcp.net

IN AAAA

2600:1901:0:92a9::
DNS

firefox-settings-attachments.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

firefox-settings-attachments.cdn.mozilla.net

IN A

Response

firefox-settings-attachments.cdn.mozilla.net

IN CNAME

attachments.prod.remote-settings.prod.webservices.mozgcp.net

attachments.prod.remote-settings.prod.webservices.mozgcp.net

IN A

34.117.121.53
DNS

firefox-settings-attachments.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

firefox-settings-attachments.cdn.mozilla.net

IN AAAA

Response

firefox-settings-attachments.cdn.mozilla.net

IN CNAME

attachments.prod.remote-settings.prod.webservices.mozgcp.net
DNS

attachments.prod.remote-settings.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

attachments.prod.remote-settings.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

normandy.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

normandy.cdn.mozilla.net

IN A

Response

normandy.cdn.mozilla.net

IN CNAME

normandy-cdn.services.mozilla.com

normandy-cdn.services.mozilla.com

IN A

35.201.103.21
DNS

normandy.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

normandy.cdn.mozilla.net

IN AAAA

Response

normandy.cdn.mozilla.net

IN CNAME

normandy-cdn.services.mozilla.com
DNS

classify-client.services.mozilla.com

Remote address:

1.1.1.1:53

Request

classify-client.services.mozilla.com

IN A

Response

classify-client.services.mozilla.com

IN CNAME

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

IN A

34.98.75.36
DNS

classify-client.services.mozilla.com

Remote address:

1.1.1.1:53

Request

classify-client.services.mozilla.com

IN AAAA

Response

classify-client.services.mozilla.com

IN CNAME

prod-classifyclient.normandy.prod.cloudops.mozgcp.net
DNS

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

IN AAAA

Response
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

185.125.190.17

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

91.189.91.96
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24
GET

http://connectivity-check.ubuntu.com/

Remote address:

185.125.190.18:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.14.0 (Ubuntu)
date: Tue, 23 Apr 2024 09:47:22 GMT
x-cache-status: from content-cache-il3/1
x-networkmanager-status: online
connection: close
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

185.125.190.17

connectivity-check.ubuntu.com

IN A

91.189.91.97
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b
GET

http://connectivity-check.ubuntu.com/

Remote address:

185.125.190.49:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.14.0 (Ubuntu)
date: Tue, 23 Apr 2024 09:52:23 GMT
x-cache-status: from content-cache-gs2/0
x-networkmanager-status: online
connection: close
DNS

contile.services.mozilla.com

Remote address:

1.1.1.1:53

Request

contile.services.mozilla.com

IN A

Response

contile.services.mozilla.com

IN A

34.117.237.239
DNS

contile.services.mozilla.com

Remote address:

1.1.1.1:53

Request

contile.services.mozilla.com

IN AAAA

Response
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

185.125.190.17
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23
DNS

ufile.io

Remote address:

1.1.1.1:53

Request

ufile.io

IN A

Response

ufile.io

IN A

104.27.205.87

ufile.io

IN A

104.27.206.87
DNS

ufile.io

Remote address:

1.1.1.1:53

Request

ufile.io

IN AAAA

Response

ufile.io

IN AAAA

2606:4700:21::681b:cd57

ufile.io

IN AAAA

2606:4700:21::681b:ce57
GET

http://connectivity-check.ubuntu.com/

Remote address:

91.189.91.49:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.14.0 (Ubuntu)
date: Tue, 23 Apr 2024 09:57:22 GMT
x-cache-status: from content-cache-1ss/1
x-networkmanager-status: online
connection: close
DNS

static.cloudflareinsights.com

Remote address:

1.1.1.1:53

Request

static.cloudflareinsights.com

IN A

Response

static.cloudflareinsights.com

IN A

104.16.80.73

static.cloudflareinsights.com

IN A

104.16.79.73
DNS

static.cloudflareinsights.com

Remote address:

1.1.1.1:53

Request

static.cloudflareinsights.com

IN AAAA

Response

static.cloudflareinsights.com

IN AAAA

2606:4700::6810:4f49

static.cloudflareinsights.com

IN AAAA

2606:4700::6810:5049
DNS

client.crisp.chat

Remote address:

1.1.1.1:53

Request

client.crisp.chat

IN A

Response

client.crisp.chat

IN A

104.18.28.104

client.crisp.chat

IN A

104.18.29.104
DNS

client.crisp.chat

Remote address:

1.1.1.1:53

Request

client.crisp.chat

IN AAAA

Response

client.crisp.chat

IN AAAA

2606:4700::6812:1c68

client.crisp.chat

IN AAAA

2606:4700::6812:1d68
DNS

cloudflareinsights.com

Remote address:

1.1.1.1:53

Request

cloudflareinsights.com

IN A

Response

cloudflareinsights.com

IN A

104.16.79.73

cloudflareinsights.com

IN A

104.16.80.73
DNS

cloudflareinsights.com

Remote address:

1.1.1.1:53

Request

cloudflareinsights.com

IN AAAA

Response

cloudflareinsights.com

IN AAAA

2606:4700::6810:5049

cloudflareinsights.com

IN AAAA

2606:4700::6810:4f49
DNS

store-eu-hz-5.ufile.io

Remote address:

1.1.1.1:53

Request

store-eu-hz-5.ufile.io

IN A

Response

store-eu-hz-5.ufile.io

IN A

5.9.136.216
DNS

store-eu-hz-5.ufile.io

Remote address:

1.1.1.1:53

Request

store-eu-hz-5.ufile.io

IN AAAA

Response
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

185.125.190.17
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198
GET

http://connectivity-check.ubuntu.com/

Remote address:

185.125.190.48:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.14.0 (Ubuntu)
date: Tue, 23 Apr 2024 10:02:22 GMT
x-cache-status: from content-cache-gs2/1
x-networkmanager-status: online
connection: close
DNS

firefox.settings.services.mozilla.com

Remote address:

1.1.1.1:53

Request

firefox.settings.services.mozilla.com

IN A

Response

firefox.settings.services.mozilla.com

IN CNAME

prod.remote-settings.prod.webservices.mozgcp.net

prod.remote-settings.prod.webservices.mozgcp.net

IN A

34.149.100.209
DNS

firefox.settings.services.mozilla.com

Remote address:

1.1.1.1:53

Request

firefox.settings.services.mozilla.com

IN AAAA

Response

firefox.settings.services.mozilla.com

IN CNAME

prod.remote-settings.prod.webservices.mozgcp.net
DNS

prod.remote-settings.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.remote-settings.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

content-signature-chains.prod.autograph.services.mozaws.net

Remote address:

1.1.1.1:53

Request

content-signature-chains.prod.autograph.services.mozaws.net

IN A

Response

content-signature-chains.prod.autograph.services.mozaws.net

IN CNAME

prod.content-signature-chains.prod.webservices.mozgcp.net

prod.content-signature-chains.prod.webservices.mozgcp.net

IN A

34.160.144.191
DNS

content-signature-chains.prod.autograph.services.mozaws.net

Remote address:

1.1.1.1:53

Request

content-signature-chains.prod.autograph.services.mozaws.net

IN AAAA

Response

content-signature-chains.prod.autograph.services.mozaws.net

IN CNAME

prod.content-signature-chains.prod.webservices.mozgcp.net

prod.content-signature-chains.prod.webservices.mozgcp.net

IN AAAA

2600:1901:0:92a9::
DNS

safebrowsing.googleapis.com

Remote address:

1.1.1.1:53

Request

safebrowsing.googleapis.com

IN A

Response

safebrowsing.googleapis.com

IN A

142.250.200.42
DNS

safebrowsing.googleapis.com

Remote address:

1.1.1.1:53

Request

safebrowsing.googleapis.com

IN AAAA

Response

safebrowsing.googleapis.com

IN AAAA

2a00:1450:4009:81d::200a
DNS

incoming.telemetry.mozilla.org

Remote address:

1.1.1.1:53

Request

incoming.telemetry.mozilla.org

IN A

Response

incoming.telemetry.mozilla.org

IN CNAME

telemetry-incoming.r53-2.services.mozilla.com

telemetry-incoming.r53-2.services.mozilla.com

IN A

34.120.208.123
DNS

incoming.telemetry.mozilla.org

Remote address:

1.1.1.1:53

Request

incoming.telemetry.mozilla.org

IN AAAA

Response

incoming.telemetry.mozilla.org

IN CNAME

telemetry-incoming.r53-2.services.mozilla.com
DNS

telemetry-incoming.r53-2.services.mozilla.com

Remote address:

1.1.1.1:53

Request

telemetry-incoming.r53-2.services.mozilla.com

IN AAAA

Response
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

91.189.91.49

connectivity-check.ubuntu.com

IN A

185.125.190.17

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

185.125.190.49
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198
GET

http://connectivity-check.ubuntu.com/

Remote address:

185.125.190.98:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.18.0 (Ubuntu)
date: Tue, 23 Apr 2024 10:07:22 GMT
x-cache-status: from content-cache/2
x-networkmanager-status: online
connection: close
DNS

store-eu-hz-5.ufile.io

Remote address:

1.1.1.1:53

Request

store-eu-hz-5.ufile.io

IN A

Response

store-eu-hz-5.ufile.io

IN A

5.9.136.216
DNS

ufile.io

Remote address:

1.1.1.1:53

Request

ufile.io

IN A

Response

ufile.io

IN A

104.27.205.87

ufile.io

IN A

104.27.206.87
DNS

ufile.io

Remote address:

1.1.1.1:53

Request

ufile.io

IN AAAA

Response

ufile.io

IN AAAA

2606:4700:21::681b:cd57

ufile.io

IN AAAA

2606:4700:21::681b:ce57
DNS

spocs.getpocket.com

Remote address:

1.1.1.1:53

Request

spocs.getpocket.com

IN A

Response

spocs.getpocket.com

IN CNAME

prod.ads.prod.webservices.mozgcp.net

prod.ads.prod.webservices.mozgcp.net

IN A

34.117.188.166
DNS

spocs.getpocket.com

Remote address:

1.1.1.1:53

Request

spocs.getpocket.com

IN AAAA

Response

spocs.getpocket.com

IN CNAME

prod.ads.prod.webservices.mozgcp.net
DNS

getpocket.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

getpocket.cdn.mozilla.net

IN A

Response

getpocket.cdn.mozilla.net

IN CNAME

getpocket-cdn.prod.mozaws.net

getpocket-cdn.prod.mozaws.net

IN CNAME

prod.pocket.prod.cloudops.mozgcp.net

prod.pocket.prod.cloudops.mozgcp.net

IN A

34.120.5.221
DNS

getpocket.cdn.mozilla.net

Remote address:

1.1.1.1:53

Request

getpocket.cdn.mozilla.net

IN AAAA

Response

getpocket.cdn.mozilla.net

IN CNAME

getpocket-cdn.prod.mozaws.net

getpocket-cdn.prod.mozaws.net

IN CNAME

prod.pocket.prod.cloudops.mozgcp.net

prod.pocket.prod.cloudops.mozgcp.net

IN AAAA

2600:1901:0:524c::
DNS

prod.ads.prod.webservices.mozgcp.net

Remote address:

1.1.1.1:53

Request

prod.ads.prod.webservices.mozgcp.net

IN AAAA

Response
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN A

Response

connectivity-check.ubuntu.com

IN A

91.189.91.98

connectivity-check.ubuntu.com

IN A

91.189.91.97

connectivity-check.ubuntu.com

IN A

185.125.190.96

connectivity-check.ubuntu.com

IN A

185.125.190.49

connectivity-check.ubuntu.com

IN A

91.189.91.48

connectivity-check.ubuntu.com

IN A

185.125.190.98

connectivity-check.ubuntu.com

IN A

185.125.190.17

connectivity-check.ubuntu.com

IN A

185.125.190.97

connectivity-check.ubuntu.com

IN A

185.125.190.18

connectivity-check.ubuntu.com

IN A

91.189.91.96

connectivity-check.ubuntu.com

IN A

185.125.190.48

connectivity-check.ubuntu.com

IN A

91.189.91.49
DNS

connectivity-check.ubuntu.com

Remote address:

1.1.1.1:53

Request

connectivity-check.ubuntu.com

IN AAAA

Response

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2a

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::96

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::98

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::2b

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::24

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::22

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::23

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::196

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::198

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4000:1::97

connectivity-check.ubuntu.com

IN AAAA

2620:2d:4002:1::197

connectivity-check.ubuntu.com

IN AAAA

2001:67c:1562::23
GET

http://connectivity-check.ubuntu.com/

Remote address:

91.189.91.98:80

Request

GET / HTTP/1.1
Host: connectivity-check.ubuntu.com
Accept: */*
Connection: close

Response

HTTP/1.1 204 No Content

server: nginx/1.18.0 (Ubuntu)
date: Tue, 23 Apr 2024 10:12:22 GMT
x-cache-status: from content-cache/2
x-networkmanager-status: online
connection: close

18.245.162.105:443

services.addons.mozilla.org

tls

1.2kB
5.0kB
13
11
18.245.162.105:443

services.addons.mozilla.org

tls

2.3kB
10.8kB
22
21
151.101.130.49:443

tls, https

268 B
40 B
1
1
151.101.194.49:443

cdn.fwupd.org

tls

21.8kB
971.9kB
379
708
52.34.56.182:443

location.services.mozilla.com

tls

1.7kB
4.2kB
12
9
34.107.221.82:80

http://detectportal.firefox.com/canonical.html

http

621 B
514 B
6
4

HTTP Request

GET http://detectportal.firefox.com/canonical.html

HTTP Response

200
34.107.221.82:80

http://detectportal.firefox.com/success.txt?ipv4

http

623 B
432 B
6
4

HTTP Request

GET http://detectportal.firefox.com/success.txt?ipv4

HTTP Response

200
216.58.204.68:443

www.google.com

tls

3.1kB
63.7kB
37
58
143.204.72.186:443

www.mozilla.org

tls

20.2kB
476.9kB
253
365
185.125.188.62:443

tls

135 B
2
185.125.188.61:443

tls

135 B
2
151.101.65.91:443

tls, https

233 B
40 B
1
1
151.101.65.91:443

extensions.gnome.org

tls

6.9kB
223.4kB
115
173
34.117.237.239:443

contile.services.mozilla.com

tls

2.1kB
6.6kB
18
18
34.120.5.221:443

getpocket.cdn.mozilla.net

tls

2.1kB
12.6kB
18
19
34.117.188.166:443

spocs.getpocket.com

tls

2.5kB
12.1kB
21
22
195.181.164.14:443

tls, https

2.5kB
11
34.149.100.209:443

firefox.settings.services.mozilla.com

tls

12.1kB
350.7kB
180
282
34.160.144.191:443

content-signature-2.cdn.mozilla.net

tls

2.2kB
10.4kB
23
20
142.250.180.14:443

ogs.google.com

tls

1.6kB
8.2kB
14
14
142.250.178.14:443

play.google.com

tls

5.2kB
9.6kB
20
21
35.201.103.21:443

normandy.cdn.mozilla.net

tls

2.1kB
5.5kB
19
13
34.98.75.36:443

classify-client.services.mozilla.com

tls

2.0kB
4.8kB
17
16
34.107.221.82:80

http://detectportal.firefox.com/canonical.html

http

2.0kB
1.7kB
26
21

HTTP Request

GET http://detectportal.firefox.com/canonical.html

HTTP Response

200

HTTP Request

GET http://detectportal.firefox.com/canonical.html

HTTP Response

200
34.117.237.239:443

contile.services.mozilla.com

tls

1.9kB
4.6kB
18
14
34.107.221.82:80

http://detectportal.firefox.com/success.txt?ipv4

http

2.0kB
1.5kB
26
20

HTTP Request

GET http://detectportal.firefox.com/success.txt?ipv4

HTTP Response

200

HTTP Request

GET http://detectportal.firefox.com/success.txt?ipv4

HTTP Response

200
92.123.143.169:80

http://r3.o.lencr.org/

http

4.1kB
6.5kB
29
23

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200
34.149.100.209:443

firefox.settings.services.mozilla.com

tls

17.4kB
316.2kB
206
362
44.239.14.124:443

shavar.services.mozilla.com

tls

2.1kB
5.6kB
10
11
34.160.144.191:443

content-signature-2.cdn.mozilla.net

tls

3.2kB
22.9kB
30
41
34.160.144.191:443

content-signature-2.cdn.mozilla.net

tls

1.1kB
3.9kB
12
10
34.107.243.93:443

push.services.mozilla.com

tls

1.9kB
4.5kB
19
14
92.123.143.193:80

http://r3.o.lencr.org/

http

1.9kB
2.7kB
21
17

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200
34.107.243.93:443

push.services.mozilla.com

tls

3.1kB
2.6kB
21
20
34.149.100.209:443

firefox.settings.services.mozilla.com

tls

1.4kB
4.2kB
11
8
34.120.208.123:443

incoming.telemetry.mozilla.org

tls

5.5kB
7.7kB
37
37
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.2kB
8.0kB
20
15
34.117.121.53:443

firefox-settings-attachments.cdn.mozilla.net

tls

1.3kB
4.1kB
14
11
34.117.121.53:443

firefox-settings-attachments.cdn.mozilla.net

tls

20.3kB
902.9kB
279
680
18.245.162.3:443

services.addons.mozilla.org

tls

3.7kB
15.4kB
31
30
18.245.162.3:443

services.addons.mozilla.org

tls

1.1kB
5.0kB
12
11
92.123.143.193:80

a1887.dscq.akamai.net

216 B
112 B
4
2
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

3.1kB
61.0kB
33
51
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.0kB
4.0kB
14
11
34.120.208.123:443

incoming.telemetry.mozilla.org

tls

1.1kB
4.4kB
12
10
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.2kB
12.7kB
19
19
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.1kB
18.0kB
16
23
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

10.3kB
365.9kB
147
271
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

34.7kB
1.5MB
527
1121
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.2kB
5.7kB
17
14
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.0kB
4.2kB
13
12
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.0kB
2.4kB
13
13
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

1.9kB
1.9kB
12
10
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.0kB
2.1kB
14
12
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.1kB
9.1kB
15
16
34.120.158.37:443

tracking-protection.cdn.mozilla.net

tls

2.0kB
11.3kB
13
20
212.192.240.178:443

turbobit.net

tls

20.3kB
334.2kB
132
270
92.123.143.169:80

http://r3.o.lencr.org/

http

4.2kB
6.5kB
31
23

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200
212.192.240.178:443

turbobit.net

tls

6.2kB
32.0kB
37
39
212.192.240.178:443

turbobit.net

tls

3.7kB
23.3kB
23
32
212.192.240.178:443

turbobit.net

tls

4.1kB
20.7kB
30
31
212.192.240.178:443

turbobit.net

tls

7.3kB
40.6kB
31
47
212.192.240.178:443

turbobit.net

tls

8.7kB
90.9kB
44
83
5.61.56.172:443

turbo.to

tls

2.1kB
4.5kB
19
19
212.192.240.178:443

app.turbobit.net

tls

2.4kB
5.9kB
17
20
212.192.240.178:443

app.turbobit.net

tls

2.7kB
24.3kB
22
33
5.45.70.250:443

hif.to

tls

3.0kB
5.3kB
22
19
94.130.130.77:443

vo.turbocap.net

tls

3.2kB
88.3kB
38
79
151.101.193.229:443

cdn.jsdelivr.net

tls

4.1kB
104.5kB
55
87
5.61.48.58:443

turbobita.net

tls

2.4kB
18.0kB
25
28
5.45.70.250:80

http://hif.to/rkstat/

http

843 B
968 B
11
11

HTTP Request

GET http://hif.to/rkstat/

HTTP Response

301
85.10.205.45:443

s.o333o.com

tls

2.1kB
8.8kB
21
23
94.130.130.77:443

vo.turbocap.net

tls

2.5kB
7.0kB
26
21
77.88.21.119:443

mc.webvisor.org

tls

15.8kB
13.7kB
61
55
94.130.130.77:443

vo.turbocap.net

tls

2.4kB
6.6kB
20
17
104.17.159.201:443

engine.spotscenered.info

tls

1.9kB
4.0kB
13
14
216.58.204.68:443

www.google.com

tls

2.1kB
6.7kB
17
18
104.18.25.163:443

i.gyazo.com

tls

3.6kB
121.8kB
45
105
104.18.25.163:443

i.gyazo.com

tls

1.3kB
5.3kB
10
9
104.26.3.12:443

www.adsupplyads.net

tls

2.5kB
6.2kB
21
16
192.243.59.20:443

grincircus.com

tls

1.6kB
4.2kB
10
11
192.243.59.20:443

grincircus.com

tls

1.6kB
4.2kB
10
11
172.67.83.132:443

is.gd

tls

2.5kB
6.7kB
21
18
92.123.143.169:80

http://r3.o.lencr.org/

http

1.3kB
1.7kB
17
15

HTTP Request

POST http://r3.o.lencr.org/

HTTP Response

200
178.63.248.57:443

system-notify.app

tls

2.9kB
20.4kB
29
27
18.244.114.3:443

www.smokeybear.com

tls

2.4kB
9.1kB
22
20
18.239.236.46:443

smokeybear.com

tls

7.8kB
223.7kB
112
176
216.58.204.68:443

www.google.com

tls

2.0kB
6.9kB
16
21
216.58.201.106:443

maps.googleapis.com

tls

3.4kB
75.7kB
39
65
172.67.68.161:443

api.b2c.com

tls

7.9kB
12.5kB
34
35
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

1.2kB
6.7kB
11
10
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

7.8kB
137.4kB
95
117
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

2.9kB
12.8kB
30
25
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

3.7kB
41.1kB
39
47
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

2.8kB
17.5kB
33
30
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

6.4kB
92.2kB
62
84
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

3.4kB
25.7kB
39
35
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

3.8kB
58.1kB
36
59
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

3.5kB
37.6kB
42
43
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

4.6kB
56.1kB
51
56
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

3.3kB
25.6kB
39
35
52.84.90.40:443

adcouncil-campaigns.brightspotcdn.com

tls

1.3kB
6.7kB
13
10
35.244.181.201:443

aus5.mozilla.org

tls

3.7kB
7.9kB
37
30
35.244.181.201:443

aus5.mozilla.org

tls

1.3kB
4.4kB
14
10
34.117.35.28:443

archive.mozilla.org

tls

2.7kB
20.4kB
31
29
142.250.187.206:443

www.youtube.com

tls

3.3kB
82.7kB
40
73
88.221.134.209:80

http://ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip

http

15.2kB
532.8kB
245
395

HTTP Request

GET http://ciscobinary.openh264.org/openh264-linux64-2e1774ab6dc6c43debb0b5b628bdf122a391d521.zip

HTTP Response

200
142.250.178.22:443

i.ytimg.com

tls

2.7kB
32.8kB
29
36
199.232.56.84:443

s.pinimg.com

tls

1.9kB
8.9kB
16
19
151.101.64.84:443

ct.pinterest.com

tls

3.4kB
7.6kB
20
20
151.101.64.84:443

ct.pinterest.com

140 B
120 B
3
2
216.239.38.181:443

analytics.google.com

tls

1.4kB
7.5kB
12
11
142.250.180.10:443

jnn-pa.googleapis.com

tls

1.5kB
5.3kB
14
10
142.250.180.10:443

jnn-pa.googleapis.com

tls

1.4kB
5.3kB
12
9
142.250.200.46:443

play.google.com

tls

1.5kB
7.5kB
13
11
142.250.200.46:443

play.google.com

tls

2.4kB
8.5kB
21
22
142.250.180.1:443

yt3.ggpht.com

tls

2.2kB
14.3kB
19
21
216.58.212.202:443

safebrowsing.googleapis.com

tls

203.2kB
9.3MB
3195
6704
212.192.240.178:443

turbobit.net

tls

16.5kB
121.9kB
68
118
192.243.59.20:443

grincircus.com

tls

1.6kB
4.4kB
11
14
192.243.59.20:443

grincircus.com

tls

1.6kB
4.3kB
11
12
212.192.240.178:443

app.turbobit.net

tls

1.2kB
3.6kB
10
10
212.192.240.178:443

app.turbobit.net

tls

1.2kB
3.6kB
10
10
212.192.240.178:443

turbobit.net

tls

1.2kB
3.6kB
10
9
212.192.240.178:443

turbobit.net

tls

1.2kB
3.6kB
10
9
178.63.248.57:443

system-notify.app

tls

2.7kB
20.4kB
25
28
185.125.190.98:80

http://connectivity-check.ubuntu.com/

http

355 B
401 B
5
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
212.192.240.178:443

app.turbobit.net

tls

1.2kB
3.6kB
10
10
212.192.240.178:443

app.turbobit.net

tls

1.2kB
3.6kB
10
10
212.192.240.178:443

turbobit.net

tls

1.2kB
3.6kB
10
10
212.192.240.178:443

turbobit.net

tls

1.2kB
3.6kB
10
10
212.192.240.178:443

turbobit.net

tls

1.2kB
3.6kB
10
9
212.192.240.178:443

turbobit.net

tls

1.2kB
3.6kB
10
10
83.149.104.56:443

s314.turbobit.net

tls

877.2kB
72.9MB
16311
52860
34.117.237.239:443

contile.services.mozilla.com

tls

1.9kB
1.5kB
16
11
91.189.91.97:80

http://connectivity-check.ubuntu.com/

http

355 B
401 B
5
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
34.149.100.209:443

firefox.settings.services.mozilla.com

tls

2.2kB
6.0kB
19
16
34.149.100.209:443

firefox.settings.services.mozilla.com

tls

13.2kB
639.6kB
198
504
34.160.144.191:443

content-signature-2.cdn.mozilla.net

tls

2.8kB
16.8kB
30
32
34.117.121.53:443

firefox-settings-attachments.cdn.mozilla.net

tls

417.4kB
4.5MB
3900
6016
35.201.103.21:443

normandy.cdn.mozilla.net

tls

1.9kB
4.6kB
18
14
34.98.75.36:443

classify-client.services.mozilla.com

tls

2.4kB
5.1kB
23
19
34.160.144.191:443

content-signature-2.cdn.mozilla.net

tls

2.8kB
16.9kB
25
30
185.125.190.18:80

http://connectivity-check.ubuntu.com/

http

355 B
405 B
5
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
185.125.190.49:80

http://connectivity-check.ubuntu.com/

http

415 B
405 B
6
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
34.117.237.239:443

contile.services.mozilla.com

tls

2.4kB
6.7kB
23
19
104.27.206.87:443

ufile.io

tls

6.5kB
114.0kB
57
103
91.189.91.49:80

http://connectivity-check.ubuntu.com/

http

407 B
405 B
6
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
104.16.80.73:443

static.cloudflareinsights.com

100 B
60 B
2
1
104.16.80.73:443

static.cloudflareinsights.com

100 B
60 B
2
1
104.16.80.73:443

static.cloudflareinsights.com

tls

2.9kB
13.6kB
22
24
104.16.80.73:443

static.cloudflareinsights.com

tls

4.6kB
13.9kB
28
23
104.18.28.104:443

client.crisp.chat

tls

3.5kB
172.0kB
43
147
104.16.79.73:443

cloudflareinsights.com

tls

1.3kB
5.7kB
10
9
104.16.79.73:443

cloudflareinsights.com

tls

1.3kB
5.7kB
9
9
5.9.136.216:443

store-eu-hz-5.ufile.io

tls

41.0MB
1.3MB
29362
21894
5.9.136.216:443

store-eu-hz-5.ufile.io

tls

1.6kB
4.6kB
11
11
185.125.190.48:80

http://connectivity-check.ubuntu.com/

http

355 B
405 B
5
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
34.149.100.209:443

firefox.settings.services.mozilla.com

tls

3.0kB
32.2kB
28
39
34.160.144.191:443

content-signature-2.cdn.mozilla.net

tls

2.2kB
1.1kB
17
12
142.250.200.42:443

safebrowsing.googleapis.com

tls

2.3kB
8.6kB
16
17
34.120.208.123:443

incoming.telemetry.mozilla.org

tls

7.6kB
5.8kB
24
22
185.125.190.98:80

http://connectivity-check.ubuntu.com/

http

355 B
401 B
5
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204
34.120.5.221:443

getpocket.cdn.mozilla.net

tls

2.1kB
12.9kB
17
20
34.117.188.166:443

spocs.getpocket.com

tls

2.3kB
6.0kB
18
16
91.189.91.98:80

http://connectivity-check.ubuntu.com/

http

355 B
401 B
5
4

HTTP Request

GET http://connectivity-check.ubuntu.com/

HTTP Response

204

224.0.0.251:5353

365 B
5
1.1.1.1:53

services.addons.mozilla.org

dns

84 B
148 B
1
1

DNS Request

services.addons.mozilla.org

DNS Response

18.245.162.105

18.245.162.100

18.245.162.43

18.245.162.3
1.1.1.1:53

services.addons.mozilla.org

dns

84 B
165 B
1
1

DNS Request

services.addons.mozilla.org
1.1.1.1:53

cdn.fwupd.org

dns

70 B
185 B
1
1

DNS Request

cdn.fwupd.org

DNS Response

151.101.66.49

151.101.130.49

151.101.2.49

151.101.194.49
1.1.1.1:53

cdn.fwupd.org

dns

70 B
233 B
1
1

DNS Request

cdn.fwupd.org

DNS Response

2a04:4e42::561

2a04:4e42:400::561

2a04:4e42:600::561

2a04:4e42:200::561
1.1.1.1:53

location.services.mozilla.com

dns

86 B
186 B
1
1

DNS Request

location.services.mozilla.com

DNS Response

52.25.6.244

44.240.56.209

52.34.56.182
1.1.1.1:53

location.services.mozilla.com

dns

86 B
220 B
1
1

DNS Request

location.services.mozilla.com
1.1.1.1:53

locprod2-elb-us-west-2.prod.mozaws.net

dns

95 B
180 B
1
1

DNS Request

locprod2-elb-us-west-2.prod.mozaws.net
1.1.1.1:53

detectportal.firefox.com

dns

81 B
192 B
1
1

DNS Request

detectportal.firefox.com

DNS Response

34.107.221.82
1.1.1.1:53

detectportal.firefox.com

dns

81 B
204 B
1
1

DNS Request

detectportal.firefox.com

DNS Response

2600:1901:0:38d7::
1.1.1.1:53

www.google.com

dns

71 B
87 B
1
1

DNS Request

www.google.com

DNS Response

216.58.204.68
1.1.1.1:53

www.google.com

dns

71 B
99 B
1
1

DNS Request

www.google.com

DNS Response

2a00:1450:4009:820::2004
1.1.1.1:53

example.org

dns

68 B
84 B
1
1

DNS Request

example.org

DNS Response

93.184.215.14
1.1.1.1:53

ipv4only.arpa

dns

70 B
102 B
1
1

DNS Request

ipv4only.arpa

DNS Response

192.0.0.170

192.0.0.171
1.1.1.1:53

ipv4only.arpa

dns

70 B
127 B
1
1

DNS Request

ipv4only.arpa
1.1.1.1:53

example.org

dns

68 B
96 B
1
1

DNS Request

example.org

DNS Response

2606:2800:21f:cb07:6820:80da:af6b:8b2c
1.1.1.1:53

www.mozilla.org

dns

72 B
122 B
1
1

DNS Request

www.mozilla.org

DNS Response

143.204.72.186
1.1.1.1:53

www.mozilla.org

dns

72 B
187 B
1
1

DNS Request

www.mozilla.org
1.1.1.1:53

www.mozorg.moz.works

dns

77 B
158 B
1
1

DNS Request

www.mozorg.moz.works
1.1.1.1:53

contile.services.mozilla.com

dns

85 B
101 B
1
1

DNS Request

contile.services.mozilla.com

DNS Response

34.117.237.239
1.1.1.1:53

contile.services.mozilla.com

dns

85 B
166 B
1
1

DNS Request

contile.services.mozilla.com
1.1.1.1:53

spocs.getpocket.com

dns

76 B
142 B
1
1

DNS Request

spocs.getpocket.com

DNS Response

34.117.188.166
1.1.1.1:53

spocs.getpocket.com

dns

76 B
216 B
1
1

DNS Request

spocs.getpocket.com
1.1.1.1:53

getpocket.cdn.mozilla.net

dns

82 B
185 B
1
1

DNS Request

getpocket.cdn.mozilla.net

DNS Response

34.120.5.221
1.1.1.1:53

getpocket.cdn.mozilla.net

dns

82 B
197 B
1
1

DNS Request

getpocket.cdn.mozilla.net

DNS Response

2600:1901:0:524c::
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
134 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

2a02:26f0:5900::1738:ee48

2a02:26f0:5900::1738:ee5a
1.1.1.1:53

prod.ads.prod.webservices.mozgcp.net

dns

93 B
186 B
1
1

DNS Request

prod.ads.prod.webservices.mozgcp.net
216.58.204.68:443

www.google.com

https

11.4kB
340.1kB
71
274
1.1.1.1:53

firefox.settings.services.mozilla.com

dns

94 B
172 B
1
1

DNS Request

firefox.settings.services.mozilla.com

DNS Response

34.149.100.209
1.1.1.1:53

firefox.settings.services.mozilla.com

dns

94 B
246 B
1
1

DNS Request

firefox.settings.services.mozilla.com
1.1.1.1:53

prod.remote-settings.prod.webservices.mozgcp.net

dns

105 B
198 B
1
1

DNS Request

prod.remote-settings.prod.webservices.mozgcp.net
34.117.188.166:443

spocs.getpocket.com

https

1.7kB
4.2kB
5
6
1.1.1.1:53

content-signature-2.cdn.mozilla.net

dns

92 B
246 B
1
1

DNS Request

content-signature-2.cdn.mozilla.net

DNS Response

34.160.144.191
1.1.1.1:53

content-signature-2.cdn.mozilla.net

dns

92 B
258 B
1
1

DNS Request

content-signature-2.cdn.mozilla.net

DNS Response

2600:1901:0:92a9::
1.1.1.1:53

ogs.google.com

dns

71 B
108 B
1
1

DNS Request

ogs.google.com

DNS Response

142.250.180.14
1.1.1.1:53

ogs.google.com

dns

71 B
120 B
1
1

DNS Request

ogs.google.com

DNS Response

2a00:1450:4009:826::200e
1.1.1.1:53

play.google.com

dns

72 B
88 B
1
1

DNS Request

play.google.com

DNS Response

142.250.178.14
1.1.1.1:53

play.google.com

dns

72 B
100 B
1
1

DNS Request

play.google.com

DNS Response

2a00:1450:4009:817::200e
142.250.178.14:443

play.google.com

https

1.9kB
9.5kB
7
10
1.1.1.1:53

normandy.cdn.mozilla.net

dns

81 B
144 B
1
1

DNS Request

normandy.cdn.mozilla.net

DNS Response

35.201.103.21
1.1.1.1:53

normandy.cdn.mozilla.net

dns

81 B
206 B
1
1

DNS Request

normandy.cdn.mozilla.net
1.1.1.1:53

normandy-cdn.services.mozilla.com

dns

90 B
171 B
1
1

DNS Request

normandy-cdn.services.mozilla.com
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
174 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

88.221.135.115

88.221.134.89

88.221.134.137

88.221.135.105

88.221.135.106

88.221.135.98
1.1.1.1:53

classify-client.services.mozilla.com

dns

93 B
176 B
1
1

DNS Request

classify-client.services.mozilla.com

DNS Response

34.98.75.36
1.1.1.1:53

classify-client.services.mozilla.com

dns

93 B
250 B
1
1

DNS Request

classify-client.services.mozilla.com
1.1.1.1:53

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

dns

110 B
203 B
1
1

DNS Request

prod-classifyclient.normandy.prod.cloudops.mozgcp.net
1.1.1.1:53

contile.services.mozilla.com

dns

85 B
101 B
1
1

DNS Request

contile.services.mozilla.com

DNS Response

34.117.237.239
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
110 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

92.123.143.169

92.123.143.193
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
134 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

2a02:26f0:5900::1738:ee5a

2a02:26f0:5900::1738:ee48
1.1.1.1:53

shavar.services.mozilla.com

dns

84 B
168 B
1
1

DNS Request

shavar.services.mozilla.com

DNS Response

35.83.153.5

44.233.67.78

44.239.14.124
1.1.1.1:53

shavar.services.mozilla.com

dns

84 B
202 B
1
1

DNS Request

shavar.services.mozilla.com
1.1.1.1:53

shavar.prod.mozaws.net

dns

79 B
164 B
1
1

DNS Request

shavar.prod.mozaws.net
1.1.1.1:53

push.services.mozilla.com

dns

82 B
136 B
1
1

DNS Request

push.services.mozilla.com

DNS Response

34.107.243.93
1.1.1.1:53

push.services.mozilla.com

dns

82 B
202 B
1
1

DNS Request

push.services.mozilla.com
1.1.1.1:53

autopush.prod.mozaws.net

dns

81 B
166 B
1
1

DNS Request

autopush.prod.mozaws.net
1.1.1.1:53

incoming.telemetry.mozilla.org

dns

87 B
162 B
1
1

DNS Request

incoming.telemetry.mozilla.org

DNS Response

34.120.208.123
1.1.1.1:53

incoming.telemetry.mozilla.org

dns

87 B
225 B
1
1

DNS Request

incoming.telemetry.mozilla.org
34.107.243.93:443

push.services.mozilla.com

https

1.7kB
4.2kB
5
6
1.1.1.1:53

telemetry-incoming.r53-2.services.mozilla.com

dns

102 B
184 B
1
1

DNS Request

telemetry-incoming.r53-2.services.mozilla.com
1.1.1.1:53

tracking-protection.cdn.mozilla.net

dns

92 B
154 B
1
1

DNS Request

tracking-protection.cdn.mozilla.net

DNS Response

34.120.158.37
1.1.1.1:53

tracking-protection.cdn.mozilla.net

dns

92 B
223 B
1
1

DNS Request

tracking-protection.cdn.mozilla.net
1.1.1.1:53

firefox-settings-attachments.cdn.mozilla.net

dns

101 B
188 B
1
1

DNS Request

firefox-settings-attachments.cdn.mozilla.net

DNS Response

34.117.121.53
1.1.1.1:53

firefox-settings-attachments.cdn.mozilla.net

dns

101 B
265 B
1
1

DNS Request

firefox-settings-attachments.cdn.mozilla.net
1.1.1.1:53

tracking-protection.prod.mozaws.net

dns

92 B
177 B
1
1

DNS Request

tracking-protection.prod.mozaws.net
1.1.1.1:53

attachments.prod.remote-settings.prod.webservices.mozgcp.net

dns

117 B
210 B
1
1

DNS Request

attachments.prod.remote-settings.prod.webservices.mozgcp.net
1.1.1.1:53

fp2e7a.wpc.phicdn.net

dns

78 B
134 B
1
1

DNS Request

fp2e7a.wpc.phicdn.net
1.1.1.1:53

support.mozilla.org

dns

76 B
166 B
1
1

DNS Request

support.mozilla.org

DNS Response

34.149.128.2
1.1.1.1:53

support.mozilla.org

dns

76 B
243 B
1
1

DNS Request

support.mozilla.org
1.1.1.1:53

us-west1.prod.sumo.prod.webservices.mozgcp.net

dns

103 B
196 B
1
1

DNS Request

us-west1.prod.sumo.prod.webservices.mozgcp.net
1.1.1.1:53

turbobit.net

dns

69 B
85 B
1
1

DNS Request

turbobit.net

DNS Response

212.192.240.178
1.1.1.1:53

turbobit.net

dns

69 B
127 B
1
1

DNS Request

turbobit.net
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
94 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

92.123.143.169
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
134 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

2a02:26f0:5900::1738:ee5a

2a02:26f0:5900::1738:ee48
1.1.1.1:53

turbo.to

dns

65 B
81 B
1
1

DNS Request

turbo.to

DNS Response

5.61.56.172
1.1.1.1:53

turbo.to

dns

65 B
127 B
1
1

DNS Request

turbo.to
1.1.1.1:53

hif.to

dns

63 B
79 B
1
1

DNS Request

hif.to

DNS Response

5.45.70.250
1.1.1.1:53

hif.to

dns

63 B
136 B
1
1

DNS Request

hif.to
1.1.1.1:53

app.turbobit.net

dns

73 B
103 B
1
1

DNS Request

app.turbobit.net

DNS Response

212.192.240.178
1.1.1.1:53

app.turbobit.net

dns

73 B
145 B
1
1

DNS Request

app.turbobit.net
1.1.1.1:53

vo.turbocap.net

dns

72 B
113 B
1
1

DNS Request

vo.turbocap.net

DNS Response

94.130.130.77
1.1.1.1:53

vo.turbocap.net

dns

72 B
125 B
1
1

DNS Request

vo.turbocap.net

DNS Response

2a01:4f8:161:6222::2
1.1.1.1:53

cdn.jsdelivr.net

dns

73 B
171 B
1
1

DNS Request

cdn.jsdelivr.net

DNS Response

151.101.129.229

151.101.65.229

151.101.1.229

151.101.193.229
1.1.1.1:53

cdn.jsdelivr.net

dns

73 B
219 B
1
1

DNS Request

cdn.jsdelivr.net

DNS Response

2a04:4e42:600::485

2a04:4e42:400::485

2a04:4e42::485

2a04:4e42:200::485
151.101.193.229:443

cdn.jsdelivr.net

https

2.1kB
4.8kB
8
8
1.1.1.1:53

turbobita.net

dns

70 B
86 B
1
1

DNS Request

turbobita.net

DNS Response

5.61.48.58
1.1.1.1:53

turbobita.net

dns

70 B
129 B
1
1

DNS Request

turbobita.net
1.1.1.1:53

s.o333o.com

dns

68 B
84 B
1
1

DNS Request

s.o333o.com

DNS Response

85.10.205.45
1.1.1.1:53

s.o333o.com

dns

68 B
146 B
1
1

DNS Request

s.o333o.com
1.1.1.1:53

mc.webvisor.org

dns

72 B
142 B
1
1

DNS Request

mc.webvisor.org

DNS Response

77.88.21.119

93.158.134.119

87.250.251.119

87.250.250.119
1.1.1.1:53

mc.webvisor.org

dns

72 B
106 B
1
1

DNS Request

mc.webvisor.org

DNS Response

2a02:6b8::1:119
1.1.1.1:53

engine.spotscenered.info

dns

81 B
113 B
1
1

DNS Request

engine.spotscenered.info

DNS Response

104.17.159.201

104.16.176.168
1.1.1.1:53

engine.spotscenered.info

dns

81 B
137 B
1
1

DNS Request

engine.spotscenered.info

DNS Response

2606:4700::6811:9fc9

2606:4700::6810:b0a8
1.1.1.1:53

i.gyazo.com

dns

68 B
100 B
1
1

DNS Request

i.gyazo.com

DNS Response

104.18.25.163

104.18.24.163
1.1.1.1:53

i.gyazo.com

dns

68 B
124 B
1
1

DNS Request

i.gyazo.com

DNS Response

2606:4700::6812:19a3

2606:4700::6812:18a3
1.1.1.1:53

grincircus.com

dns

71 B
231 B
1
1

DNS Request

grincircus.com

DNS Response

192.243.59.20

192.243.61.225

192.243.59.13

172.240.127.234

172.240.253.132

172.240.108.76

192.243.61.227

192.243.59.12

172.240.108.68

172.240.108.84
1.1.1.1:53

grincircus.com

dns

71 B
139 B
1
1

DNS Request

grincircus.com
104.17.159.201:443

engine.spotscenered.info

https

1.8kB
6.4kB
5
10
1.1.1.1:53

www.adsupplyads.net

dns

76 B
124 B
1
1

DNS Request

www.adsupplyads.net

DNS Response

104.26.3.12

172.67.70.25

104.26.2.12
1.1.1.1:53

www.adsupplyads.net

dns

76 B
160 B
1
1

DNS Request

www.adsupplyads.net

DNS Response

2606:4700:20::ac43:4619

2606:4700:20::681a:30c

2606:4700:20::681a:20c
216.58.204.68:443

www.google.com

https

69.8kB
221.1kB
140
256
1.1.1.1:53

is.gd

dns

62 B
110 B
1
1

DNS Request

is.gd

DNS Response

172.67.83.132

104.25.233.53

104.25.234.53
1.1.1.1:53

is.gd

dns

62 B
146 B
1
1

DNS Request

is.gd

DNS Response

2606:4700:20::ac43:5384

2606:4700:20::6819:ea35

2606:4700:20::6819:e935
1.1.1.1:53

a1887.dscq.akamai.net

dns

78 B
110 B
1
1

DNS Request

a1887.dscq.akamai.net

DNS Response

92.123.143.169

92.123.143.185
1.1.1.1:53

system-notify.app

dns

74 B
202 B
1
1

DNS Request

system-notify.app

DNS Response

178.63.248.57

157.90.33.72

23.88.8.125

23.88.8.123

157.90.33.121

178.63.248.56

157.90.33.122

157.90.33.68
1.1.1.1:53

system-notify.app

dns

74 B
137 B
1
1

DNS Request

system-notify.app
1.1.1.1:53

www.smokeybear.com

dns

75 B
229 B
1
1

DNS Request

www.smokeybear.com

DNS Response

18.244.114.113

18.244.114.121

18.244.114.5

18.244.114.3
1.1.1.1:53

www.smokeybear.com

dns

75 B
247 B
1
1

DNS Request

www.smokeybear.com
1.1.1.1:53

d2bwgd151c8bhh.cloudfront.net

dns

86 B
171 B
1
1

DNS Request

d2bwgd151c8bhh.cloudfront.net
1.1.1.1:53

smokeybear.com

dns

71 B
135 B
1
1

DNS Request

smokeybear.com

DNS Response

18.239.236.46

18.239.236.60

18.239.236.55

18.239.236.14
1.1.1.1:53

smokeybear.com

dns

71 B
149 B
1
1

DNS Request

smokeybear.com
1.1.1.1:53

adcouncil-campaigns.brightspotcdn.com

dns

94 B
247 B
1
1

DNS Request

adcouncil-campaigns.brightspotcdn.com

DNS Response

52.84.90.79

52.84.90.65

52.84.90.96

52.84.90.40
1.1.1.1:53

adcouncil-campaigns.brightspotcdn.com

dns

94 B
261 B
1
1

DNS Request

adcouncil-campaigns.brightspotcdn.com
1.1.1.1:53

api.b2c.com

dns

68 B
116 B
1
1

DNS Request

api.b2c.com

DNS Response

172.67.68.161

104.26.7.35

104.26.6.35
1.1.1.1:53

api.b2c.com

dns

68 B
152 B
1
1

DNS Request

api.b2c.com

DNS Response

2606:4700:20::681a:723

2606:4700:20::ac43:44a1

2606:4700:20::681a:623
1.1.1.1:53

maps.googleapis.com

dns

76 B
300 B
1
1

DNS Request

maps.googleapis.com

DNS Response

216.58.201.106

142.250.187.202

216.58.204.74

142.250.178.10

216.58.212.202

142.250.180.10

142.250.179.234

216.58.213.10

172.217.16.234

142.250.200.10

172.217.169.10

216.58.212.234

142.250.187.234

142.250.200.42
1.1.1.1:53

maps.googleapis.com

dns

76 B
188 B
1
1

DNS Request

maps.googleapis.com

DNS Response

2a00:1450:4009:815::200a

2a00:1450:4009:822::200a

2a00:1450:4009:823::200a

2a00:1450:4009:821::200a
1.1.1.1:53

d1qifrot4mdylg.cloudfront.net

dns

86 B
167 B
1
1

DNS Request

d1qifrot4mdylg.cloudfront.net
216.58.204.68:443

www.google.com

https

4.8kB
66.5kB
29
76
216.58.201.106:443

maps.googleapis.com

https

4.2kB
127.6kB
38
99
1.1.1.1:53

connect.facebook.net

dns

77 B
125 B
1
1

DNS Request

connect.facebook.net

DNS Response

157.240.214.11
1.1.1.1:53

connect.facebook.net

dns

77 B
137 B
1
1

DNS Request

connect.facebook.net

DNS Response

2a03:2880:f058:f:face:b00c:0:3
1.1.1.1:53

www.youtube.com

dns

72 B
298 B
1
1

DNS Request

www.youtube.com

DNS Response

172.217.169.46

216.58.213.14

142.250.187.238

142.250.200.14

172.217.16.238

142.250.180.14

142.250.178.14

216.58.201.110

216.58.204.78

142.250.200.46

142.250.179.238

142.250.187.206
1.1.1.1:53

www.youtube.com

dns

72 B
218 B
1
1

DNS Request

www.youtube.com

DNS Response

2a00:1450:4009:815::200e

2a00:1450:4009:821::200e

2a00:1450:4009:823::200e

2a00:1450:4009:822::200e
216.58.201.106:443

maps.googleapis.com

https

5.3kB
54.0kB
21
57
1.1.1.1:53

aus5.mozilla.org

dns

73 B
191 B
1
1

DNS Request

aus5.mozilla.org

DNS Response

35.244.181.201
1.1.1.1:53

aus5.mozilla.org

dns

73 B
265 B
1
1

DNS Request

aus5.mozilla.org
1.1.1.1:53

prod.balrog.prod.cloudops.mozgcp.net

dns

93 B
186 B
1
1

DNS Request

prod.balrog.prod.cloudops.mozgcp.net
1.1.1.1:53

archive.mozilla.org

dns

76 B
92 B
1
1

DNS Request

archive.mozilla.org

DNS Response

34.117.35.28
1.1.1.1:53

archive.mozilla.org

dns

76 B
104 B
1
1

DNS Request

archive.mozilla.org

DNS Response

2600:1901:0:b9fd::
1.1.1.1:53

ciscobinary.openh264.org

dns

81 B
297 B
1
1

DNS Request

ciscobinary.openh264.org

DNS Response

88.221.134.155

88.221.134.209
1.1.1.1:53

ciscobinary.openh264.org

dns

81 B
321 B
1
1

DNS Request

ciscobinary.openh264.org

DNS Response

2a02:26f0:a1::58dd:86d1

2a02:26f0:a1::58dd:869b
34.117.35.28:443

archive.mozilla.org

https

1.5kB
184 B
2
2
142.250.187.206:443

www.youtube.com

https

32.9kB
1.1MB
108
868
1.1.1.1:53

s.pinimg.com

dns

69 B
216 B
1
1

DNS Request

s.pinimg.com

DNS Response

199.232.56.84
1.1.1.1:53

s.pinimg.com

dns

69 B
228 B
1
1

DNS Request

s.pinimg.com

DNS Response

2a04:4e42:4b::84
1.1.1.1:53

i.ytimg.com

dns

68 B
260 B
1
1

DNS Request

i.ytimg.com

DNS Response

142.250.178.22

172.217.16.246

172.217.169.22

142.250.200.54

142.250.180.22

142.250.200.22

216.58.213.22

216.58.204.86

142.250.187.246

142.250.187.214

216.58.201.118

142.250.179.246
1.1.1.1:53

i.ytimg.com

dns

68 B
180 B
1
1

DNS Request

i.ytimg.com

DNS Response

2a00:1450:4009:818::2016

2a00:1450:4009:81e::2016

2a00:1450:4009:80a::2016

2a00:1450:4009:81d::2016
199.232.56.84:443

s.pinimg.com

https

2.4kB
27.7kB
10
26
142.250.178.22:443

i.ytimg.com

https

3.6kB
75.8kB
31
62
1.1.1.1:53

analytics.google.com

dns

77 B
169 B
1
1

DNS Request

analytics.google.com

DNS Response

216.239.34.181

216.239.32.181

216.239.36.181

216.239.38.181
1.1.1.1:53

analytics.google.com

dns

77 B
105 B
1
1

DNS Request

analytics.google.com

DNS Response

2a00:1450:4009:823::200e
1.1.1.1:53

ct.pinterest.com

dns

73 B
283 B
1
1

DNS Request

ct.pinterest.com

DNS Response

151.101.192.84

151.101.0.84

151.101.128.84

151.101.64.84
1.1.1.1:53

ct.pinterest.com

dns

73 B
303 B
1
1

DNS Request

ct.pinterest.com
1.1.1.1:53

e6449.a.akamaiedge.net

dns

79 B
140 B
1
1

DNS Request

e6449.a.akamaiedge.net
216.239.38.181:443

analytics.google.com

https

2.2kB
9.6kB
10
11
151.101.64.84:443

ct.pinterest.com

https

2.2kB
6.7kB
7
9
1.1.1.1:53

jnn-pa.googleapis.com

dns

78 B
318 B
1
1

DNS Request

jnn-pa.googleapis.com

DNS Response

142.250.180.10

216.58.204.74

142.250.200.42

142.250.178.10

172.217.16.234

172.217.169.74

172.217.169.10

216.58.212.202

216.58.201.106

142.250.200.10

172.217.169.42

142.250.187.234

216.58.213.10

142.250.179.234

142.250.187.202
1.1.1.1:53

jnn-pa.googleapis.com

dns

78 B
190 B
1
1

DNS Request

jnn-pa.googleapis.com

DNS Response

2a00:1450:4009:821::200a

2a00:1450:4009:81f::200a

2a00:1450:4009:820::200a

2a00:1450:4009:823::200a
142.250.180.10:443

jnn-pa.googleapis.com

https

2.2kB
7.4kB
9
9
1.1.1.1:53

play.google.com

dns

72 B
88 B
1
1

DNS Request

play.google.com

DNS Response

142.250.200.46
142.250.180.10:443

jnn-pa.googleapis.com

https

2.2kB
7.3kB
9
9
1.1.1.1:53

yt3.ggpht.com

dns

70 B
131 B
1
1

DNS Request

yt3.ggpht.com

DNS Response

142.250.180.1
1.1.1.1:53

yt3.ggpht.com

dns

70 B
143 B
1
1

DNS Request

yt3.ggpht.com

DNS Response

2a00:1450:4009:827::2001
142.250.200.46:443

play.google.com

https

2.2kB
9.6kB
9
11
142.250.180.1:443

yt3.ggpht.com

https

2.2kB
12.0kB
11
13
1.1.1.1:53

safebrowsing.googleapis.com

dns

84 B
100 B
1
1

DNS Request

safebrowsing.googleapis.com

DNS Response

216.58.212.202
1.1.1.1:53

safebrowsing.googleapis.com

dns

84 B
112 B
1
1

DNS Request

safebrowsing.googleapis.com

DNS Response

2a00:1450:4009:81f::200a
216.58.212.202:443

safebrowsing.googleapis.com

https

1.9kB
8.7kB
8
9
1.1.1.1:53

detectportal.firefox.com

dns

81 B
192 B
1
1

DNS Request

detectportal.firefox.com

DNS Response

34.107.221.82
1.1.1.1:53

detectportal.firefox.com

dns

81 B
204 B
1
1

DNS Request

detectportal.firefox.com

DNS Response

2600:1901:0:38d7::
1.1.1.1:53

jsdelivr.map.fastly.net

dns

80 B
144 B
1
1

DNS Request

jsdelivr.map.fastly.net

DNS Response

151.101.65.229

151.101.129.229

151.101.1.229

151.101.193.229
1.1.1.1:53

jsdelivr.map.fastly.net

dns

80 B
192 B
1
1

DNS Request

jsdelivr.map.fastly.net

DNS Response

2a04:4e42::485

2a04:4e42:400::485

2a04:4e42:200::485

2a04:4e42:600::485
151.101.193.229:443

jsdelivr.map.fastly.net

https

1.8kB
4.3kB
5
6
1.1.1.1:53

api.b2c.com

dns

68 B
116 B
1
1

DNS Request

api.b2c.com

DNS Response

172.67.68.161

104.26.6.35

104.26.7.35
1.1.1.1:53

aus5.mozilla.org

dns

73 B
191 B
1
1

DNS Request

aus5.mozilla.org

DNS Response

35.244.181.201
1.1.1.1:53

aus5.mozilla.org

dns

73 B
265 B
1
1

DNS Request

aus5.mozilla.org
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

185.125.190.98

91.189.91.96

185.125.190.97

185.125.190.96

185.125.190.17

185.125.190.18

91.189.91.97

185.125.190.49

91.189.91.49

91.189.91.48

185.125.190.48

91.189.91.98
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2001:67c:1562::24

2620:2d:4000:1::98

2620:2d:4000:1::22

2620:2d:4000:1::23

2620:2d:4000:1::2b

2620:2d:4002:1::196

2620:2d:4000:1::97

2620:2d:4000:1::96

2620:2d:4002:1::198

2620:2d:4002:1::197

2620:2d:4000:1::2a

2001:67c:1562::23
1.1.1.1:53

mc.webvisor.org

dns

72 B
106 B
1
1

DNS Request

mc.webvisor.org

DNS Response

2a02:6b8::1:119
151.101.193.229:443

jsdelivr.map.fastly.net

https

1.8kB
4.3kB
5
6
1.1.1.1:53

jsdelivr.map.fastly.net

dns

80 B
144 B
1
1

DNS Request

jsdelivr.map.fastly.net

DNS Response

151.101.129.229

151.101.65.229

151.101.193.229

151.101.1.229
1.1.1.1:53

jsdelivr.map.fastly.net

dns

80 B
192 B
1
1

DNS Request

jsdelivr.map.fastly.net

DNS Response

2a04:4e42:400::485

2a04:4e42::485

2a04:4e42:600::485

2a04:4e42:200::485
1.1.1.1:53

s314.turbobit.net

dns

74 B
90 B
1
1

DNS Request

s314.turbobit.net

DNS Response

83.149.104.56
1.1.1.1:53

s314.turbobit.net

dns

74 B
132 B
1
1

DNS Request

s314.turbobit.net
1.1.1.1:53

prod.sumo.prod.webservices.mozgcp.net

dns

94 B
133 B
1
1

DNS Request

prod.sumo.prod.webservices.mozgcp.net

DNS Response

34.149.128.2
1.1.1.1:53

prod.sumo.prod.webservices.mozgcp.net

dns

94 B
210 B
1
1

DNS Request

prod.sumo.prod.webservices.mozgcp.net
1.1.1.1:53

us-west1.prod.sumo.prod.webservices.mozgcp.net

dns

103 B
196 B
1
1

DNS Request

us-west1.prod.sumo.prod.webservices.mozgcp.net
1.1.1.1:53

contile.services.mozilla.com

dns

85 B
101 B
1
1

DNS Request

contile.services.mozilla.com

DNS Response

34.117.237.239
1.1.1.1:53

connectivity-check.ubuntu.com

dns

344 B
278 B
4
1

DNS Request

connectivity-check.ubuntu.com

DNS Request

connectivity-check.ubuntu.com

DNS Request

connectivity-check.ubuntu.com

DNS Request

connectivity-check.ubuntu.com

DNS Response

91.189.91.97

185.125.190.96

91.189.91.49

91.189.91.48

185.125.190.49

185.125.190.17

185.125.190.97

91.189.91.96

185.125.190.98

91.189.91.98

185.125.190.18

185.125.190.48
1.1.1.1:53

connectivity-check.ubuntu.com

dns

344 B
422 B
4
1

DNS Request

connectivity-check.ubuntu.com

DNS Request

connectivity-check.ubuntu.com

DNS Request

connectivity-check.ubuntu.com

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4000:1::22

2620:2d:4000:1::96

2620:2d:4000:1::2b

2620:2d:4002:1::196

2620:2d:4002:1::197

2620:2d:4000:1::97

2620:2d:4000:1::98

2001:67c:1562::23

2620:2d:4002:1::198

2001:67c:1562::24

2620:2d:4000:1::2a

2620:2d:4000:1::23
1.1.1.1:53

firefox.settings.services.mozilla.com

dns

94 B
172 B
1
1

DNS Request

firefox.settings.services.mozilla.com

DNS Response

34.149.100.209
1.1.1.1:53

firefox.settings.services.mozilla.com

dns

94 B
246 B
1
1

DNS Request

firefox.settings.services.mozilla.com
1.1.1.1:53

prod.remote-settings.prod.webservices.mozgcp.net

dns

105 B
198 B
1
1

DNS Request

prod.remote-settings.prod.webservices.mozgcp.net
1.1.1.1:53

content-signature-chains.prod.autograph.services.mozaws.net

dns

116 B
200 B
1
1

DNS Request

content-signature-chains.prod.autograph.services.mozaws.net

DNS Response

34.160.144.191
1.1.1.1:53

content-signature-chains.prod.autograph.services.mozaws.net

dns

116 B
212 B
1
1

DNS Request

content-signature-chains.prod.autograph.services.mozaws.net

DNS Response

2600:1901:0:92a9::
1.1.1.1:53

firefox-settings-attachments.cdn.mozilla.net

dns

101 B
188 B
1
1

DNS Request

firefox-settings-attachments.cdn.mozilla.net

DNS Response

34.117.121.53
1.1.1.1:53

firefox-settings-attachments.cdn.mozilla.net

dns

101 B
265 B
1
1

DNS Request

firefox-settings-attachments.cdn.mozilla.net
1.1.1.1:53

attachments.prod.remote-settings.prod.webservices.mozgcp.net

dns

117 B
210 B
1
1

DNS Request

attachments.prod.remote-settings.prod.webservices.mozgcp.net
1.1.1.1:53

normandy.cdn.mozilla.net

dns

81 B
144 B
1
1

DNS Request

normandy.cdn.mozilla.net

DNS Response

35.201.103.21
1.1.1.1:53

normandy.cdn.mozilla.net

dns

81 B
206 B
1
1

DNS Request

normandy.cdn.mozilla.net
1.1.1.1:53

classify-client.services.mozilla.com

dns

93 B
176 B
1
1

DNS Request

classify-client.services.mozilla.com

DNS Response

34.98.75.36
1.1.1.1:53

classify-client.services.mozilla.com

dns

93 B
250 B
1
1

DNS Request

classify-client.services.mozilla.com
1.1.1.1:53

prod-classifyclient.normandy.prod.cloudops.mozgcp.net

dns

110 B
203 B
1
1

DNS Request

prod-classifyclient.normandy.prod.cloudops.mozgcp.net
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

185.125.190.18

185.125.190.17

91.189.91.97

185.125.190.48

185.125.190.49

91.189.91.98

91.189.91.48

185.125.190.98

185.125.190.97

185.125.190.96

91.189.91.49

91.189.91.96
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4002:1::196

2620:2d:4000:1::22

2620:2d:4000:1::96

2001:67c:1562::23

2620:2d:4000:1::23

2620:2d:4000:1::98

2620:2d:4000:1::2a

2620:2d:4000:1::97

2620:2d:4002:1::197

2620:2d:4002:1::198

2620:2d:4000:1::2b

2001:67c:1562::24
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

185.125.190.49

91.189.91.48

91.189.91.98

185.125.190.48

91.189.91.49

185.125.190.97

185.125.190.18

91.189.91.96

185.125.190.96

185.125.190.98

185.125.190.17

91.189.91.97
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4000:1::23

2620:2d:4000:1::98

2620:2d:4000:1::96

2620:2d:4002:1::196

2001:67c:1562::24

2620:2d:4000:1::22

2620:2d:4000:1::97

2620:2d:4002:1::198

2620:2d:4000:1::2a

2620:2d:4002:1::197

2001:67c:1562::23

2620:2d:4000:1::2b
1.1.1.1:53

contile.services.mozilla.com

dns

85 B
101 B
1
1

DNS Request

contile.services.mozilla.com

DNS Response

34.117.237.239
1.1.1.1:53

contile.services.mozilla.com

dns

85 B
166 B
1
1

DNS Request

contile.services.mozilla.com
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

91.189.91.49

185.125.190.49

185.125.190.97

185.125.190.18

91.189.91.98

91.189.91.97

185.125.190.48

91.189.91.96

185.125.190.96

91.189.91.48

185.125.190.98

185.125.190.17
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4002:1::198

2620:2d:4000:1::97

2620:2d:4000:1::98

2620:2d:4000:1::22

2620:2d:4000:1::23

2620:2d:4000:1::2a

2620:2d:4000:1::96

2620:2d:4002:1::196

2620:2d:4002:1::197

2620:2d:4000:1::2b

2001:67c:1562::24

2001:67c:1562::23
1.1.1.1:53

ufile.io

dns

65 B
97 B
1
1

DNS Request

ufile.io

DNS Response

104.27.205.87

104.27.206.87
1.1.1.1:53

ufile.io

dns

65 B
121 B
1
1

DNS Request

ufile.io

DNS Response

2606:4700:21::681b:cd57

2606:4700:21::681b:ce57
104.27.206.87:443

ufile.io

https

26.3kB
229.5kB
76
222
1.1.1.1:53

static.cloudflareinsights.com

dns

86 B
118 B
1
1

DNS Request

static.cloudflareinsights.com

DNS Response

104.16.80.73

104.16.79.73
1.1.1.1:53

static.cloudflareinsights.com

dns

86 B
142 B
1
1

DNS Request

static.cloudflareinsights.com

DNS Response

2606:4700::6810:4f49

2606:4700::6810:5049
1.1.1.1:53

client.crisp.chat

dns

74 B
106 B
1
1

DNS Request

client.crisp.chat

DNS Response

104.18.28.104

104.18.29.104
1.1.1.1:53

client.crisp.chat

dns

74 B
130 B
1
1

DNS Request

client.crisp.chat

DNS Response

2606:4700::6812:1c68

2606:4700::6812:1d68
1.1.1.1:53

cloudflareinsights.com

dns

79 B
111 B
1
1

DNS Request

cloudflareinsights.com

DNS Response

104.16.79.73

104.16.80.73
1.1.1.1:53

cloudflareinsights.com

dns

79 B
135 B
1
1

DNS Request

cloudflareinsights.com

DNS Response

2606:4700::6810:5049

2606:4700::6810:4f49
104.18.28.104:443

client.crisp.chat

https

3.0kB
13.5kB
12
20
1.1.1.1:53

store-eu-hz-5.ufile.io

dns

79 B
95 B
1
1

DNS Request

store-eu-hz-5.ufile.io

DNS Response

5.9.136.216
1.1.1.1:53

store-eu-hz-5.ufile.io

dns

79 B
143 B
1
1

DNS Request

store-eu-hz-5.ufile.io
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

185.125.190.48

185.125.190.18

91.189.91.49

185.125.190.96

185.125.190.98

91.189.91.97

185.125.190.49

185.125.190.97

91.189.91.98

91.189.91.48

91.189.91.96

185.125.190.17
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4000:1::23

2620:2d:4000:1::96

2620:2d:4000:1::97

2001:67c:1562::23

2620:2d:4000:1::98

2620:2d:4002:1::196

2620:2d:4000:1::2b

2620:2d:4002:1::197

2620:2d:4000:1::2a

2001:67c:1562::24

2620:2d:4000:1::22

2620:2d:4002:1::198
1.1.1.1:53

firefox.settings.services.mozilla.com

dns

94 B
172 B
1
1

DNS Request

firefox.settings.services.mozilla.com

DNS Response

34.149.100.209
1.1.1.1:53

firefox.settings.services.mozilla.com

dns

94 B
246 B
1
1

DNS Request

firefox.settings.services.mozilla.com
1.1.1.1:53

prod.remote-settings.prod.webservices.mozgcp.net

dns

105 B
198 B
1
1

DNS Request

prod.remote-settings.prod.webservices.mozgcp.net
1.1.1.1:53

content-signature-chains.prod.autograph.services.mozaws.net

dns

116 B
200 B
1
1

DNS Request

content-signature-chains.prod.autograph.services.mozaws.net

DNS Response

34.160.144.191
1.1.1.1:53

content-signature-chains.prod.autograph.services.mozaws.net

dns

116 B
212 B
1
1

DNS Request

content-signature-chains.prod.autograph.services.mozaws.net

DNS Response

2600:1901:0:92a9::
1.1.1.1:53

safebrowsing.googleapis.com

dns

84 B
100 B
1
1

DNS Request

safebrowsing.googleapis.com

DNS Response

142.250.200.42
1.1.1.1:53

safebrowsing.googleapis.com

dns

84 B
112 B
1
1

DNS Request

safebrowsing.googleapis.com

DNS Response

2a00:1450:4009:81d::200a
1.1.1.1:53

incoming.telemetry.mozilla.org

dns

87 B
162 B
1
1

DNS Request

incoming.telemetry.mozilla.org

DNS Response

34.120.208.123
1.1.1.1:53

incoming.telemetry.mozilla.org

dns

87 B
225 B
1
1

DNS Request

incoming.telemetry.mozilla.org
1.1.1.1:53

telemetry-incoming.r53-2.services.mozilla.com

dns

102 B
184 B
1
1

DNS Request

telemetry-incoming.r53-2.services.mozilla.com
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

185.125.190.98

91.189.91.97

185.125.190.18

91.189.91.98

91.189.91.96

91.189.91.49

185.125.190.17

185.125.190.97

185.125.190.48

185.125.190.96

91.189.91.48

185.125.190.49
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4000:1::96

2620:2d:4000:1::2a

2620:2d:4000:1::2b

2620:2d:4002:1::196

2001:67c:1562::23

2620:2d:4000:1::23

2001:67c:1562::24

2620:2d:4000:1::98

2620:2d:4000:1::97

2620:2d:4002:1::197

2620:2d:4000:1::22

2620:2d:4002:1::198
1.1.1.1:53

store-eu-hz-5.ufile.io

dns

79 B
95 B
1
1

DNS Request

store-eu-hz-5.ufile.io

DNS Response

5.9.136.216
1.1.1.1:53

ufile.io

dns

65 B
97 B
1
1

DNS Request

ufile.io

DNS Response

104.27.205.87

104.27.206.87
1.1.1.1:53

ufile.io

dns

65 B
121 B
1
1

DNS Request

ufile.io

DNS Response

2606:4700:21::681b:cd57

2606:4700:21::681b:ce57
104.27.206.87:443

ufile.io

https

3.2kB
46.8kB
11
45
1.1.1.1:53

spocs.getpocket.com

dns

76 B
142 B
1
1

DNS Request

spocs.getpocket.com

DNS Response

34.117.188.166
1.1.1.1:53

spocs.getpocket.com

dns

76 B
216 B
1
1

DNS Request

spocs.getpocket.com
1.1.1.1:53

getpocket.cdn.mozilla.net

dns

82 B
185 B
1
1

DNS Request

getpocket.cdn.mozilla.net

DNS Response

34.120.5.221
1.1.1.1:53

getpocket.cdn.mozilla.net

dns

82 B
197 B
1
1

DNS Request

getpocket.cdn.mozilla.net

DNS Response

2600:1901:0:524c::
1.1.1.1:53

prod.ads.prod.webservices.mozgcp.net

dns

93 B
186 B
1
1

DNS Request

prod.ads.prod.webservices.mozgcp.net
34.117.188.166:443

spocs.getpocket.com

https

2.0kB
4.4kB
9
8
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
278 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

91.189.91.98

91.189.91.97

185.125.190.96

185.125.190.49

91.189.91.48

185.125.190.98

185.125.190.17

185.125.190.97

185.125.190.18

91.189.91.96

185.125.190.48

91.189.91.49
1.1.1.1:53

connectivity-check.ubuntu.com

dns

86 B
422 B
1
1

DNS Request

connectivity-check.ubuntu.com

DNS Response

2620:2d:4000:1::2a

2620:2d:4000:1::96

2620:2d:4000:1::98

2620:2d:4000:1::2b

2001:67c:1562::24

2620:2d:4000:1::22

2620:2d:4000:1::23

2620:2d:4002:1::196

2620:2d:4002:1::198

2620:2d:4000:1::97

2620:2d:4002:1::197

2001:67c:1562::23

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Virtualization/Sandbox Evasion

T1497

Credential Access

Discovery

System Information Discovery

T1082

Virtualization/Sandbox Evasion

T1497

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

/root/.cache/dconf/user

Filesize
2B

MD5
c4103f122d27677c9db144cae1394a66

SHA1
1489f923c4dca729178b3e3233458550d8dddf29

SHA256
96a296d224f285c67bee93c30f8a309157f0daa35dc5b87e410b78630a09cfc7

SHA512
5ea71dc6d0b4f57bf39aadd07c208c35f06cd2bac5fde210397f70de11d439c62ec1cdf3183758865fd387fcea0bada2f6c37a4a17851dd1d78fefe6f204ee54

Download Submit
/root/.cache/mozilla/firefox/hr47oo8l.default-release/cache2/entries/099EB2BF8827A4F91EAB3E38B14650D0205226F2

Filesize
15KB

MD5
195247438d669c27280476583e5556f2

SHA1
7930ee71e4becf76658bf6d21b8af65bcf7a60a3

SHA256
25aa0e12f116504032ab3e48cdfc1947ccfdcc64e7f287aecbfe4d5e059ada55

SHA512
6c50ae4539d7b084f31e343da24c5de59046308fa08d0a5f0c98b0d6ed430a0f888c9fcc784f1d1dfac3dfc7acd778c04a6083f7cc3cfb5d128923d9c051e18f

Download Submit
/root/.cache/mozilla/firefox/hr47oo8l.default-release/cache2/entries/3D1E19D09F398691ABF62061591970855193B42F

Filesize
13KB

MD5
43a20393fe5c67bac9b9beade3f264d4

SHA1
a9719886d38cbe11a6051bade5d04a5fde9506db

SHA256
54a787da5f570f50dc26beb2cf1647e12e95f836687f2e628bc359e5e5159d6e

SHA512
917ea9f26d8236fa80be41f9bbbd5da1870bf1de1b67728e740f09ccc373de605e7c83b9aeb26269f87c991bfb5376fb284f9a320e4e025f8be8c91cc424d4df

Download Submit
/root/.cache/mozilla/firefox/hr47oo8l.default-release/cache2/entries/44230749A38B6989F56217B435A03E84CCADE62D

Filesize
26KB

MD5
d314b7ee69b668845bd0c19270688643

SHA1
e47a71860dd3d54bca5649e542a989b418a05494

SHA256
fca8044a81cfae2426a675db498127cca28efaca33c346dbc1acb11bdbd14b15

SHA512
a1a553b4091a53ff7eaff6402be54032f5ffc0047de502b11bbc4cff0688a85aff33f8ae191f5dadc6f43bc5f1163a4914072b7bc008d75cec2fa55985e0a1e7

Download Submit
/root/.cache/mozilla/firefox/hr47oo8l.default-release/cache2/entries/6D89348819C8881868053197CA0754F36784BF5F

Filesize
10KB

MD5
6c858fb8e129e4e0c4fb987a16a513a1

SHA1
53c9504ec34391ee76c77a2f6cafcfb09a033ed7

SHA256
4e4726ee2fb4587733f4bff8ed61809fe916ff6adc9b2cd2a0c5a7322aa81c09

SHA512
c1f922a77884ce1c01779656d5b7048b8a319d06220eece5486aa9b81aaf79efbf8e80b0afeada5a4c9e81635cd2d7cce75eb23157f0783455c9ba45ae6a8e1f

Download Submit
/root/.cache/mozilla/firefox/hr47oo8l.default-release/cache2/entries/82F4CDEDC8A08E6BCE520A4114F15825F2E886F6

Filesize
62KB

MD5
c64d4c720ac7bc27c4bbcaba738c1f4d

SHA1
04f2f373adcb70df57488c849da9c48a01a11e86

SHA256
45dbe03df99af13f2ad47c4a9a437fc5aacf1af22db77060d66343dd7bbb8743

SHA512
eeee4d8e602c73ccc74f18f749f76a7643e2b3d752c9e01ddb9f129a6caf1b365d4ff2b98451bbe9439e826a4f51b100556d539b5cfa22db33e3029d613a7924

Download Submit
/root/.dbus/session-bus/11c67417355f45d397f6be11f62e85a6-0

Filesize
466B

MD5
6156abd474b25a4045a7618a2e50b144

SHA1
e8abe0129c8f31341f30312984677d27c5f05a6b

SHA256
182749725e8a40d105442bbf56198d3ba18168e06d118487bc2c0b7132ef6538

SHA512
460a9f3129cb1f71f5f1ccd95677c17c52ccf474d9f16633e5485b186d7013795eba1aae13314dc188b8dff9744993b384d61eda39351c7f8d444f712323ce1b

Download Submit
/root/.mozilla/firefox/0ttesgj5.default/times.json

Filesize
47B

MD5
d118f4c898b4d8feb1f9f882f47764c4

SHA1
894ff5073bb727fce444845341000e4a2ecf21d0

SHA256
06503b5d6c910d550a7d9d53a002b4f298486cfe263a892414fd04980b59b264

SHA512
6e0e95200e5564a3aff943b5ebb5bb370c44d3fff8be9ba1339059cf95279c0910d8e91238ce2ef1793757438c2ff7cae505554182fa79ba1d45fb3cd2ee93fb

Download Submit
/root/.mozilla/firefox/Crash Reports/InstallTime20230522134052

Filesize
10B

MD5
84122ff4acb0e12a014fe32cd3de233c

SHA1
3755dcbbf1d90927ab9eb91db4898e3270dd4906

SHA256
25f4cb54fa2fee1a1b96a7b09eaa39c0925f383b8f4803ba06a5b4ce0d969339

SHA512
8eedbb4023a5b2baab37a80089eda4810f9855e92b077526871f42ad84b4eb50f91f4b61a3434b277802bd1b52b7bd28e4f2872a5fc15a8cce015a3f220451cf

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/cert9.db

Filesize
224KB

MD5
6cd5a0043a0db923ea99fa408ee1c6e5

SHA1
562ae593d724c3f9df8d009c176754e8d3f67cf7

SHA256
3b1abb7494aeed8ad167d77581b9e5284e3646235550b460fdd61786b63cc192

SHA512
7a3b14637df4a082c5728da1f8bcc967d879af5d7a587d1d540ad9b38c9550c18be486ff7589d1c9d92eb09328ed2fc92ebc098058f905eac3ea904daffe6ff0

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/compatibility.ini

Filesize
163B

MD5
fe452b7294d5928a9a5863b89ee0a6bd

SHA1
a5d4c245071fa96476ba48b4725bdae7f1b7940f

SHA256
d5bfb07561606a19aa96557ea109b175050dc0eb805cbef9c813503587d77900

SHA512
dc37d8507f08849e3382d2dbafd4a64555dbd57a288c95131e9aefb366630f1585811a9e1456b861bb9d2b816ed88b18ffb7580cd92b41bb9b0227ce1363843e

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/content-prefs.sqlite

Filesize
224KB

MD5
1fc2e7b7fe2c5be305dfa9a2bbb60771

SHA1
4967389dea050001cb1af3ec799edb7805c3abb8

SHA256
1953edcac737d1ad3de6fbf69671163882fdc0be5bd21d00378d8d8c753c757a

SHA512
fba536378ab9b5f04d92f1029b92d255c7da445a29e2527647bc16e57d02c179de1e78a2de11db1b00cc54c24d3715980c84c0cde103f47c6150f2e7bb8f93d5

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/cookies.sqlite

Filesize
96KB

MD5
9535f5fe817accc769c2c1d3354db39f

SHA1
6af62cf08717cf3bfa84eb1a7b311acf522ce560

SHA256
c53c15fcfac2bb57fdc88d23f932fc244dbaf4020f0f6eaecf0f77a37c21f8c5

SHA512
dc9c2c32eb42dda0a7a711e143aea58c603c1e9d885c3677e9fe86f525e1b0b32a46e240756263e56510b07e764ba69f2de13b90ec18210678242e10cfe17837

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/cookies.sqlite

Filesize
96KB

MD5
20ba4e5a4101aa649d0011684055ad46

SHA1
52356db4ffac49cdbbd35e165a0ff03f32fe5c24

SHA256
b63830bcfa3dd093f62e4b7a9caaf60b0ec69ccc63ccfcca40809aa9f0d57a3a

SHA512
e4383dd10d6de938b606ffeca4b4a5b06fc55aaf4792133fa97d80e7dce5a4497506f261cf75fccad24d5531bab10753f5f7b984df3a6d452670730ba26fde9a

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/key4.db

Filesize
288KB

MD5
a9bea0715f97fd1f8e8b8ad35e84c3eb

SHA1
62533d848fec831f469c544d9264e329c6de971b

SHA256
9b04d9257837ca19426c158dd3e288d44084caf44aa93bb97c7b402e48889dec

SHA512
6ac7c4a62902143e800fb3f26ad460d75c235b3ccfbc693c11c1f84849cdb8ed28c91ce922cdcc8cd5861ede63f70cfae38d9ae095808bcaa6d86dddb5fedf83

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/permissions.sqlite

Filesize
96KB

MD5
32f3c1c83474b4629571dc35ad28f31e

SHA1
19ca7aa5e6da750014b6a459553cfe7869ee7c14

SHA256
5cd03cc4c766cee0cf7a3293332a23ab3ab3d88724589666bf5e1f84609de0c5

SHA512
7e4eee79f8ce2b780b7275e133e2c6eab6cdf72615434889e309c777bc35bb73468c7f5dc42b8972e493d70b39e5cbe91adcf216e3c5998c091d06e312c20bee

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/prefs-1.js

Filesize
2KB

MD5
1ae4b614ea2a47a55d52c6ce84cfbecb

SHA1
1a772ffbb88585986b8d8d64425b25af44c34f54

SHA256
79138ba0a5b7cd62b67f5262f08971d3ead80899588ac0744d167807b6258e61

SHA512
4568b531ec3afd51189c3327d8dd2c7d01590769044bc3eaabba3f67a266884825e9d02f97254e037eb536e9c36bc36ba74219678b6bd7ad43b23c9f470aaf30

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/prefs-1.js

Filesize
2KB

MD5
89fe4441cc9da544f21dda14c2853670

SHA1
2001161ad42c670d618ab9a2fb627333007a4282

SHA256
972a7aa1fd2e49b508b6edca14253fbe47dc2dd5d4b932a4065c1d9cf021a194

SHA512
7a8aaf7122025726f9f5c1cc7a6905a20bc6329779cc619350ed67887f09c9b5a6ec25947681b54e028ff4de56486c563b72f46695462b430a3b178ad61882ec

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/prefs-1.js

Filesize
2KB

MD5
ab1499ac8a5224222207fa9a6d313625

SHA1
5f8adb879ad6ba1ae03011fcb05a961b359b61a4

SHA256
1063fcd42f76828299a31d0418ef3056e90c452b2f1179fdcc7a5f5381da616e

SHA512
8aa50f5114884b595064727d93f8064e92fca21ba6cb45f05787d8eb0f9e570b45b472c75f0a800b6bc452227528677a69213b471ac456cdc226984ed124b236

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/prefs-1.js

Filesize
3KB

MD5
6e10d2028505f39f2ed10029196d4fe2

SHA1
5035de9fff37dff8a10418cfc7f24972d7fe118f

SHA256
3267427009ab2e091bfef574f64ff5cce2bc0e3c8857324d8ed82d31f44b53d2

SHA512
bce2b2c12a1c5e387a8f1ffaaac6305764091ebdcaf29a5227f258bb10824a9247243863b9ae220b60fca5d4044c6b296683a2d5f1c6cf4987041290e3f3c160

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/prefs-1.js

Filesize
4KB

MD5
121960e933f5b2e16e99f9426683affd

SHA1
9c240499da4bd3493d40384f47071f38d6050714

SHA256
c24f3591a9bf380175c378b6e5c90218415090117a37289a5e69cdae0f86824f

SHA512
929aa9776f516bbeb61aabb6eccc30f9456c082dcf2fa0eabc7be398f3be71f0e2a8996e74a42057e93348dd726854d336b80bc34071fb468c72c931421c6e50

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/prefs.js

Filesize
1KB

MD5
bd3e4a7193c2af7bb4d44e414aa53b7c

SHA1
b22cded6678726666a8c8c986f2d7d80f9aa9d9d

SHA256
704b780aae4e7fd77e7087487c8109ae266aea89d57a39e0febefecc86ab7497

SHA512
2b6f46aeebf8284786f73ca9d82de91d37c6fa4cd933087340e7ea4260441231bebb0b24e10286ba44dbce946400b35856966c055c7afb2b718832b71139ba70

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/protections.sqlite

Filesize
64KB

MD5
c7cc11494c34e02565df83d17beb33b3

SHA1
f379ad7c0fa73476d3828d8a89ef843046332c12

SHA256
7ca17bb171e22b4ec498c1d20587b30d62d773b114d0e66bb00ec874506eb85f

SHA512
0cfcb15a985a35e917c9652721b516e2d1c358c6db3dca4452e866d250b6269c4cc69773277f5ddd5a0c5a338f95d9f6134224f0097df194985161cd3d47cfd6

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/ls-archive.sqlite

Filesize
96KB

MD5
e0c613bfd69956a19ce2dc5e925aa223

SHA1
14accb230edcd6cb76967cdc6d4e5686db96b5df

SHA256
0d4cb11f6364c46a75f9eaddfca5c660b90dfd515df3afcd5e0baeca28a0f1ab

SHA512
01643c0131a392be92b3f281d7f633c1f502bff19090b0d716f1ac66aefecc3fcf92f393bef66b03089c9b9c6d8aaeb711b6a4f29d5a6729dd188c838f2272d1

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/ls-archive.sqlite

Filesize
128KB

MD5
178d71e5529d637ac62f7e75fdd75896

SHA1
339f2b949cc4c207b66aea11137448ba28d36dcb

SHA256
7b0050f1bfaab85c8f9067ae7d7369056ff752c0c852ef1462a96c22169004d4

SHA512
ec0e0105fcfbbae356dd55efbcf92975f35bbe5cb93fcabf4c08443e871957635d14830b27c4e1ddefbbaff8f9b7ec3590bf417a9442e1d7ee3607d14d56f664

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/.metadata-v2-tmp

Filesize
42B

MD5
56316a97b91d072b73d2c9ce555b26e7

SHA1
6db334e7c8a1db47f4c64e0ff3af2393d5b89f1b

SHA256
6dadd8bc0461ccf16ebe1a5a5172b1fa72f2841526d6e2a91f591166531497b9

SHA512
f625ad420e348c841bddd6b6a6220f286c4a95f3d05b1e6d55b6fa9478b6b2e1221d35f205608bb51621064eaac88a8c2f3642957c044684abb006cc6e0a26fd

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite

Filesize
44KB

MD5
759544297aaa61f5fef8ee42d0ae4393

SHA1
fc2d66f6e60409e3e8d38623ce5f817fc7f571e0

SHA256
1bd2000cd972e80cefaec6e982ba261d224a818f367de0fdf8c51fa5a05d7ab5

SHA512
8aaa2ce66f10d46f7c9200af841ac7bd9f5b55c30308a14f0deda44ac62581c45daae45154487c0073a0d5847d5926cbb4072ca64a702ac6b834ad0bb482804f

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3561288849sdhlie.sqlite

Filesize
12KB

MD5
74585f3637b98ae526d6495856efceb3

SHA1
73cffab587836518932b0b8ad8756bb8bbbfdc7b

SHA256
3fe53459941bbce33259c9a1e9966340bc54fb184e555a67d560dd09e69b5102

SHA512
266a1d220cc57a778b3c658b0da407d0c7b98215220eab9baf58c5d1af55d5e3b91cfead285d1653957b46dc40686740d245de0da82042b3218e5baed0c68771

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

Filesize
44KB

MD5
07a412e08825220262ad2890757ff779

SHA1
f46c127dbc070ded87a6078b3c1c761955f96de8

SHA256
da640f8b665841b520d2262a21cc3f82aeaa881cf81a1ddae27ef501d66544e4

SHA512
0134c783bf3293848e479b478ac57a1e0f4202cddfb8b57bc6275aada7345f398cf8a627e9b1c34fd618192c2f0c9737b1da487daf33f9c557ebc1377105582b

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

Filesize
12KB

MD5
fcf6ebf2fc663150c2ee5cd69042288c

SHA1
b2f4d69dc002ea4e335c4061d5493312b581da1c

SHA256
cdadbfb63bfad39f5017edc5b502fe5fdb89625b5af4a74aaf8372f955bbd03e

SHA512
7e1dd8bdbe99649d15802b526e84e6193a31f6a4c2a91c74f4475ce2ab6589a5093e9b50dea6531cb13b3741571468f44b660e8fc1a1dc51bc995ae4f80ad16b

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

Filesize
164KB

MD5
096b4de877a9b484740be286885489e0

SHA1
eb038fd6c4e44c8f2aa0b1f1c38a2269e5711b40

SHA256
b83bd081631b15270105f8edd671e67606e84caba61a596af8e17cea5010c897

SHA512
5f22c7d3055caa52d370788a0c04b2a2326038690355c60d9e8c281c69de99451d2df846ae48fc95e7be3564c1d22a9372a1e5db9db60fe39fe0d718191fa220

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

Filesize
148KB

MD5
dd3f6ba37c670af5953593535e435d04

SHA1
ecfe4e650a050bce77e8ff7468de04c1b8acc9a4

SHA256
5cc6fa137a1f3a7d0b615b178877f12c460b22f95702eb7534d5732ee6599561

SHA512
86e0482543faae6fb279ca71e1e6d6461d32317e74baebb3973e0fde9800107faeb9c2347be6cf8a47556ae43c8e6c224a595e952f621e40ad2c5eba920df2b3

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/storage/permanent/chrome/idb/3870112724rsegmnoittet-es.sqlite

Filesize
260KB

MD5
79e805ba7ae8b8c943945720c43701fb

SHA1
9ef184efc81fd55c0a7dd0fe592a7c11cf59421a

SHA256
e0b626fa2690283b6ee531551f46167c8ae301dac58effab3d5f4540dcb99180

SHA512
07397ba4d1c29245b86747425a8dee1fcbde47e2efc545e315b3b8cec910976f72e3c663c6a0881de0fcd9814361a9697fabfcebed2981b45c0108bb4cd2fa75

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/times.json

Filesize
50B

MD5
9a0c51238be7f0841ecd4da4a2bccb11

SHA1
1c0cb637e7b2e1f0b50a1a22761815d8b2b752a6

SHA256
373f1c67c33828059cf9989f1f42d12f96a0b1105d13cadcd7ba5409710bdd5b

SHA512
8a61dd29eb6f6c3be7f02e7d9a258eeef6974f3a93f6dcc15f643af531ff7e6a59dc0019c9dd43ec04735cdd5d203160aabba720b18a1e6c0678fd16928f565f

Download Submit
/root/.mozilla/firefox/hr47oo8l.default-release/times.json

Filesize
47B

MD5
dcbbb0ade00557f6cd9740228d29e207

SHA1
c40d55f9e33409301575beb973c1b8cba026df70

SHA256
6accc441df4f514b5c0a9e0e2e79e9bf8dc1f47bd2328fb6831ff6f8aa78ec3f

SHA512
65ec144713294d22849e30e058afad983f90686a73ca49173a1a9663c9655d222a4abfa7265fc99e3da8abab5eda1ab02171a1e8dc802669b9809d0a168d64fd

Download Submit
/root/.mozilla/firefox/installs.ini

Filesize
62B

MD5
e81f77b3d0f333621ef6043e2dea3a7c

SHA1
e3d004c1b85b3759e8afbb1c53a11cc5cd136e63

SHA256
0d27996522a24f0f825aaba9cb3f411364f90f052e1e8c2a80615db8487bc9ee

SHA512
05e6dd9d4bafe46c28dec5fa6e990539abaf6842a187ab9aed5444f485fa9a32c386f4b25be7a0db7275688955a8c286036f534b30954eb7528b876faa5367cd

Download Submit
/root/.mozilla/firefox/profiles.ini

Filesize
259B

MD5
65859937455725f2aea003a9c806f793

SHA1
48331e45df523a6f418192e6eac406e68cc177b8

SHA256
b73d6ea18e6f86b0585bf9e13fad6f919cf5141bc64c37e66279be02dcb47942

SHA512
7d3eba5955afc8c23d2a8bbd44a50e49a680db79e3340017468069b35b362eef728b90bfd426811f71194b75efb6a867f8508e3082015292bfc2950962044f45

Download Submit

Resubmissions

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

HTTP Request

HTTP Response

DNS Request

DNS Response

DNS Request

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request

DNS Response

DNS Request