Network Analysis
Name | Response | Post-Analysis Lookup |
---|---|---|
accounts.google.com | 172.217.25.173 | |
fbcdn.net | 157.240.215.35 | |
facebook.com | 157.240.215.35 | |
static.xx.fbcdn.net |
CNAME
scontent.xx.fbcdn.net
|
157.240.215.14 |
fbsbx.com | 157.240.215.35 | |
www.facebook.com | 157.240.215.35 | |
connect.facebook.net |
CNAME
scontent.xx.fbcdn.net
|
157.240.215.14 |
- TCP Requests
-
-
192.168.56.103:49212 117.18.232.200:80
-
192.168.56.103:49176 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49177 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49178 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49179 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49180 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49181 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49182 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49183 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49184 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49185 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49196 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49197 157.240.215.14:443connect.facebook.net
-
192.168.56.103:49173 157.240.215.35:443www.facebook.com
-
192.168.56.103:49174 157.240.215.35:443www.facebook.com
-
192.168.56.103:49186 157.240.215.35:443www.facebook.com
-
192.168.56.103:49187 157.240.215.35:443www.facebook.com
-
192.168.56.103:49188 157.240.215.35:443www.facebook.com
-
192.168.56.103:49189 157.240.215.35:443www.facebook.com
-
192.168.56.103:49192 157.240.215.35:443www.facebook.com
-
192.168.56.103:49193 157.240.215.35:443www.facebook.com
-
192.168.56.103:49175 172.217.25.13:443accounts.google.com
-
192.168.56.103:49195 5.42.92.211:80
-
192.168.56.103:49205 5.42.92.211:80
-
192.168.56.103:49204 77.91.124.55:19071
-
192.168.56.103:49209 77.91.124.55:19071
-
- UDP Requests
-
-
192.168.56.103:50800 164.124.101.2:53
-
192.168.56.103:52760 164.124.101.2:53
-
192.168.56.103:53673 164.124.101.2:53
-
192.168.56.103:56613 164.124.101.2:53
-
192.168.56.103:62576 164.124.101.2:53
-
192.168.56.103:64178 164.124.101.2:53
-
192.168.56.103:64530 164.124.101.2:53
-
192.168.56.103:64894 164.124.101.2:53
-
192.168.56.103:137 192.168.56.255:137
-
192.168.56.103:138 192.168.56.255:138
-
192.168.56.103:64181 239.255.255.250:1900
-
GET
200
https://www.facebook.com/login
REQUEST
RESPONSE
BODY
GET /login HTTP/1.1
Accept: text/html, application/xhtml+xml, */*
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: www.facebook.com
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
p3p: CP="Facebook has no P3P policy fb.me/p3p"
Set-Cookie: sb=AQYaZSZM-10AdSCTLQJezFYm; expires=Mon, 04-Nov-2024 23:51:29 GMT; Max-Age=34560000; path=/; domain=.facebook.com; secure; httponly
Set-Cookie: fr=0pAIKpm4AXzoOLfzA..BlGgYB.K8.AAA.0.0.BlGgYB.AWU9y9RRWxk; expires=Sat, 30-Dec-2023 23:51:29 GMT; Max-Age=7776000; path=/; domain=.facebook.com; secure; httponly
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(self), geolocation=(self), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(self), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: same-origin
cross-origin-opener-policy: unsafe-none
Pragma: no-cache
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
x-ua-compatible: IE=edge
Strict-Transport-Security: max-age=15552000; preload
Content-Type: text/html; charset="utf-8"
X-FB-Debug: If+z6Vhu+jAoF5Scu9mKGsNZxPw99wsD+bTS/NlZ4hU5vFL46RuHyX/vNiEGvVNTNzAUvCVUaJiG31bfXrN1Sg==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Transfer-Encoding: chunked
Connection: keep-alive
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/ya/l/0,cross/QeMN1LLnAEZ.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/ya/l/0,cross/QeMN1LLnAEZ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Tue, 24 Sep 2024 19:04:09 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: aQzCQbWOXHJZq+mYccxrXQ==
X-FB-Debug: mDXLCrVwHtuOscVx7F1tbvFnND73TlnKRespZljMuVmiFatvk6cU8Co6CkE2+UzIras2oswiswmkLy5m7Vrlgw==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1411
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yP/l/0,cross/OioQXAqgNbJ.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yP/l/0,cross/OioQXAqgNbJ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 29 Sep 2024 17:53:19 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: nSc4DdFv16q3a8bx9npWLw==
X-FB-Debug: yk+EQHL0t00Ru+NtGjTIjQKpaTHQ0k3fU3Wu3M2/sfjrW8+Q4oZODJeuU89fpuQVi4tOpigwadG0WvjxmArf0Q==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 1315
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yH/l/0,cross/zDdQsF0sOjp.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yH/l/0,cross/zDdQsF0sOjp.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Mon, 30 Sep 2024 23:51:30 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: 3bp+BOTd/Rnn5FmQ4lCPIg==
X-FB-Debug: buIVeoodXHbjsIUjMGj+/pcCL+UcF1iDq/o7Ef3dkEW+6rWCT00jGKOHKREUC7kLM4k9qyP+lrOGgbCX5UZ1AQ==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 761
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yd/l/0,cross/ogW1H5O-17r.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yd/l/0,cross/ogW1H5O-17r.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 29 Sep 2024 17:53:19 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: yLRerd2gF+654QZTa11wfw==
X-FB-Debug: Y6N47bO4veBDxgU3JjVteImrbmf5Chjb2ErtyQdK8wNKwe85s/w92s6R2jaKS70egHW/RdbZo/t2AmsbJgeF6Q==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 4209
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yD/l/0,cross/dEOkGH79P3Y.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yD/l/0,cross/dEOkGH79P3Y.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 29 Sep 2024 17:53:19 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: /OGK/HOFyTtgrylyJVBRxA==
X-FB-Debug: cSL90qNgJqT97HmHefcKKwLEZIQNnnO0TR/RHAwz4HzEoNgP/ugdWhXSiBqbFBFz1eWcJQ3LycJvTVvr7qk5ng==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 8200
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yc/l/0,cross/1FPNULrhhBJ.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yc/l/0,cross/1FPNULrhhBJ.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Mon, 30 Sep 2024 16:08:48 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
content-md5: QOLp8E6NtzxxBWhC3gSM/Q==
X-FB-Debug: ba5rg2/NBbXsqMZ3ZMxYX34VwKVlsbzZkRtF3aE8uXEw5E4LuGuD5DCI65Yn5kB6xaBpeuJov1cwmKnVwW0IiA==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 586
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/y3/l/0,cross/ikFECARVllV.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/y3/l/0,cross/ikFECARVllV.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 29 Sep 2024 17:24:47 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
content-md5: 5n/LoQxt6LhV5krEmzQFTw==
X-FB-Debug: NQTViDA7Avgh/aaWAMn/dTaIIVSlOnXHunLbGSTBjQJ8NqJK6cE0j3wNGjzvdVpn4WZOM6grYXjzJA7kRaUSoQ==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 699
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yT/r/Ovcfo1SlXij.js?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yT/r/Ovcfo1SlXij.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Thu, 26 Sep 2024 23:39:10 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: NcwDGnIxl1+U2aAyonFj8w==
X-FB-Debug: LpBN5MnIxWVnU5ZsET/6eNoRCDWAjnn/rzo4Lmi8T2U+XAWl9WzHy0cDFJfRN2MsQYlT0qzDrJWa5X0Ax1p8Ig==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 108006
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yd/l/0,cross/kwzs_5FMU9g.css?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yd/l/0,cross/kwzs_5FMU9g.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: text/css
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Mon, 23 Sep 2024 17:59:02 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
x-ua-compatible: IE=edge
content-md5: gRPcITw3yFgLJTqEm5ddDA==
X-FB-Debug: K0RF6mNsY+Zxgaw+Io+vXC1gUqviTJabSLZ8ptIeSyeZdDrPr2haJK++hDR0eZDCcNnmDsWPwPWasxWu4uqirA==
Date: Sun, 01 Oct 2023 23:51:30 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 302
GET
200
https://static.xx.fbcdn.net/rsrc.php/yI/r/4aAhOWlwaXf.svg
REQUEST
RESPONSE
BODY
GET /rsrc.php/yI/r/4aAhOWlwaXf.svg HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/svg+xml
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Sun, 22 Sep 2024 02:11:02 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
content-md5: 7LTAFoD2FIsnNV1/7L5XgQ==
X-FB-Debug: M2e69Jso1INggZFWepiBYlSZr1M84NMH5xcZ5nwL/YZv7G7mm7g5Jlq+MbYRhs4FtLKzFZP1sgtF4E/fpmiMIw==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 986
GET
302
https://facebook.com/security/hsts-pixel.gif?c=3.2.5
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif?c=3.2.5 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: facebook.com
Connection: Keep-Alive
Cookie: sb=AQYaZSZM-10AdSCTLQJezFYm; fr=0pAIKpm4AXzoOLfzA..BlGgYB.K8.AAA.0.0.BlGgYB.AWU9y9RRWxk
HTTP/1.1 302 Found
Location: https://fbcdn.net/security/hsts-pixel.gif?c=2.5
cross-origin-opener-policy: same-origin-allow-popups
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=15552000; preload
Content-Type: text/html; charset="utf-8"
X-FB-Debug: hIvEBk7jjEORcc4zhyyNS+R6sGmK7EEeU9P8Y8AiIn8b6aKCLhs9NkMHuTt6RgymybyNl2feVKl+Kv1+9yd0CA==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
GET
302
https://fbcdn.net/security/hsts-pixel.gif?c=2.5
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif?c=2.5 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: fbcdn.net
Connection: Keep-Alive
HTTP/1.1 302 Found
Location: https://fbsbx.com/security/hsts-pixel.gif?c=5
cross-origin-opener-policy: same-origin-allow-popups
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-Type: text/html; charset="utf-8"
X-FB-Debug: vHKBByY1QmhiP9VXdz8lngRPpKIO+oMsTW4JnEB/WW1PbbeQ0PTzvyGhm4R1sdIMDoeeh+rA9G36cxD3PJe1Tg==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yg/r/tzWkwLNK4bI.js?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yg/r/tzWkwLNK4bI.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Fri, 27 Sep 2024 19:03:19 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
content-md5: N0/JmSH3C9A/a+Ua1Qu20Q==
X-FB-Debug: yaM9afk9VBTm+8VFM2tD7S3onqiWfy0SzSj/GV4nbrp9/hQ9Q9vjNptSEGugbyLbrJyUCup+psF7sdsU1/pPhA==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 6834
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yH/r/SccipWfTlTT.js?_nc_x=Ij3Wp8lg5Kz
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yH/r/SccipWfTlTT.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1
Accept: application/javascript, */*;q=0.8
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
Expires: Mon, 30 Sep 2024 18:19:03 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
content-md5: r7uTlSVcEd5ptEfnBP6pjQ==
X-FB-Debug: bNsF0MtJSP/dfyQjakE8uYaKncqBx+WN+0mXiiQddOi6Tg1jl/KmaiHmMgbyTAkPC9QgSXWQt9hmzeA+x/aQSw==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 3553
GET
302
https://fbsbx.com/security/hsts-pixel.gif?c=5
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif?c=5 HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: fbsbx.com
Connection: Keep-Alive
HTTP/1.1 302 Found
Location: https://connect.facebook.net/security/hsts-pixel.gif
cross-origin-opener-policy: same-origin-allow-popups
Access-Control-Allow-Origin: *
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
Content-Type: text/html; charset="utf-8"
X-FB-Debug: NLuKG8SyX2igJBIq5BMTgSZ3i25Q191mcbipTbfZm2msXzUSW6o+T7s8HhExN/IPuYZSPkDTKBrb84pxPYQekw==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 0
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yB/r/Y0L6f5sxdIV.png
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yB/r/Y0L6f5sxdIV.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Type: image/png
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: hFRfTj3CmfIMC+ZxDLCYWA==
Expires: Sat, 28 Sep 2024 15:21:09 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
X-FB-Debug: 7Gb8Yna2Nh7voJ4a1gqoG5aWuvwAY95CeZjXvm82KEl+I/rm5JyhGBteyF3g+hs9GXvo9OpOlhf46SDqDgbBKg==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 6739
GET
200
https://static.xx.fbcdn.net/rsrc.php/v3/yU/r/O7nelmd9XSI.png
REQUEST
RESPONSE
BODY
GET /rsrc.php/v3/yU/r/O7nelmd9XSI.png HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: static.xx.fbcdn.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Type: image/png
Access-Control-Allow-Origin: *
Last-Modified: Mon, 01 Jan 2001 08:00:00 GMT
content-md5: OcEdZWIg79UvSWVADRSQCg==
Expires: Fri, 27 Sep 2024 18:27:01 GMT
Cache-Control: public,max-age=31536000,immutable
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
X-Content-Type-Options: nosniff
timing-allow-origin: *
origin-agent-cluster: ?0
X-FB-Debug: dQbohcTHfOHFiywZ7ETQB6D3nEPEF1FXJCcB2PIqFC323giHK8IDmheLbIUw3rw2Pkzd9x58w+LjHqBSufsjog==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 95
GET
200
https://connect.facebook.net/security/hsts-pixel.gif
REQUEST
RESPONSE
BODY
GET /security/hsts-pixel.gif HTTP/1.1
Accept: image/png, image/svg+xml, image/*;q=0.8, */*;q=0.5
Referer: https://www.facebook.com/login
Accept-Language: ko-KR
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Accept-Encoding: gzip, deflate
Host: connect.facebook.net
Connection: Keep-Alive
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/gif
content-security-policy: default-src * data: blob: 'self';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' *;connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self';block-all-mixed-content;upgrade-insecure-requests;require-trusted-types-for 'script';
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: no-cache
Cache-Control: private, no-cache, no-store, must-revalidate
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Access-Control-Allow-Origin: *
origin-agent-cluster: ?0
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: dXQmYiQvQ766Hvfwz7F0TWS7snB3bqWz2gY79AaEs4t+UCpdwbAYPMiEiefwbBCDCAKntWR9FHNb1e6mEdz/fw==
Date: Sun, 01 Oct 2023 23:51:31 GMT
Alt-Svc: h3=":443"; ma=86400
Connection: keep-alive
Content-Length: 57
GET
200
https://www.facebook.com/favicon.ico
REQUEST
RESPONSE
BODY
GET /favicon.ico HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: www.facebook.com
Connection: Keep-Alive
Cookie: sb=AQYaZSZM-10AdSCTLQJezFYm; fr=0pAIKpm4AXzoOLfzA..BlGgYB.K8.AAA.0.0.BlGgYB.AWU9y9RRWxk
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: image/png
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com *.fbcdn.net 'unsafe-eval';script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' blob: data: 'self' connect.facebook.net 'unsafe-eval';style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com https://sandbox.paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
document-policy: force-load-at-top
permissions-policy: accelerometer=(), ambient-light-sensor=(), bluetooth=(), camera=(self), geolocation=(self), gyroscope=(), hid=(), idle-detection=(), magnetometer=(), microphone=(self), midi=(), payment=(), screen-wake-lock=(), serial=(), usb=()
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: private
Cache-Control: private
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
x-ua-compatible: IE=edge
Strict-Transport-Security: max-age=15552000; preload
X-FB-Debug: PRn1l1WiE49oyCQW3KpRK42O6HeLoROyI0ZzUIr22CFJUm07o5rEZySDwvXUycAvsOUF9cwlIXuKILifs3Y79g==
Date: Sun, 01 Oct 2023 23:51:32 GMT
Connection: keep-alive
Content-Length: 1613
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 213
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 120
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 1142
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 284
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2292
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 276
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 4316
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 272
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1417736
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 280
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:38 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 384
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 393618
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:41 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 306238
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:42 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 8
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 268
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 1600
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 268
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
POST
200
http://5.42.92.211/loghub/master
REQUEST
RESPONSE
BODY
POST /loghub/master HTTP/1.1
Content-Type: multipart/form-data; boundary=clRut2bWc0egDUJEUGs4
Content-Length: 268
User-Agent: Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; InfoPath.1)
Host: 5.42.92.211
Connection: Keep-Alive
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 01 Oct 2023 23:51:43 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 2189572
Connection: keep-alive
X-Frame-Options: DENY
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
GET
200
http://ie9cvlist.ie.microsoft.com/IE9CompatViewList.xml
REQUEST
RESPONSE
BODY
GET /IE9CompatViewList.xml HTTP/1.1
Accept: */*
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)
Host: ie9cvlist.ie.microsoft.com
If-Modified-Since: Fri, 16 Oct 2020 17:54:09 GMT
If-None-Match: 0x8D871FC7BDF491D
Connection: Keep-Alive
HTTP/1.1 200 OK
Content-Encoding: gzip
Age: 2748
Cache-Control: max-age=21600
Content-MD5: p9g4jsuZO6TaLMVAI9ujVg==
Content-Type: text/xml
Date: Sun, 01 Oct 2023 23:52:28 GMT
Etag: 0x8D9521D2D2DF1EC
Last-Modified: Wed, 28 Jul 2021 23:12:31 GMT
Server: ECAcc (tka/897A)
Vary: Accept-Encoding
X-Cache: HIT
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 51696fd8-501e-00ba-23bb-f40d0b000000
x-ms-version: 2009-09-19
Content-Length: 13702
ICMP traffic
No ICMP traffic performed.
IRC traffic
No IRC requests performed.
Suricata Alerts
Suricata TLS
Flow | Issuer | Subject | Fingerprint |
---|---|---|---|
TLSv1 192.168.56.103:49180 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49182 157.240.215.14:443 |
None | None | None |
TLSv1 192.168.56.103:49174 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49177 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49173 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49189 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | e0:ca:03:c4:55:05:dc:b8:aa:a9:6b:24:bb:63:41:9c:65:5a:55:bf |
TLSv1 192.168.56.103:49175 172.217.25.13:443 |
C=US, O=Google Trust Services LLC, CN=GTS CA 1C3 | CN=accounts.google.com | 2f:c1:71:0a:05:d9:0f:38:ef:d1:16:f7:50:af:41:48:6b:f9:ba:b5 |
TLSv1 192.168.56.103:49179 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49193 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | e0:ca:03:c4:55:05:dc:b8:aa:a9:6b:24:bb:63:41:9c:65:5a:55:bf |
TLSv1 192.168.56.103:49178 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49196 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49176 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49183 157.240.215.14:443 |
None | None | None |
TLSv1 192.168.56.103:49181 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49186 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49184 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49192 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | e0:ca:03:c4:55:05:dc:b8:aa:a9:6b:24:bb:63:41:9c:65:5a:55:bf |
TLSv1 192.168.56.103:49185 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49187 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
TLSv1 192.168.56.103:49188 157.240.215.35:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=fbcdn.net | e0:ca:03:c4:55:05:dc:b8:aa:a9:6b:24:bb:63:41:9c:65:5a:55:bf |
TLSv1 192.168.56.103:49197 157.240.215.14:443 |
C=US, O=DigiCert Inc, OU=www.digicert.com, CN=DigiCert SHA2 High Assurance Server CA | C=US, ST=California, L=Menlo Park, O=Meta Platforms, Inc., CN=*.facebook.com | 43:69:4e:ac:38:6f:78:ca:39:cd:a4:1d:09:2f:dc:ca:38:df:7d:6b |
Snort Alerts
No Snort Alerts