Report - www.canva.com/design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm

Report Overview

Submitted URL
www.canva.com/design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm_source=publishsharelink
IP
104.17.114.17
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-04 08:35:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	2.0 kB	4.2 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	501 B	46 kB	216.58.207.195
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	35.163.147.190
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	56 kB	34.120.237.76
www.canva.com	5710	2013-10-18T18:58:15Z	2023-03-10T16:50:34Z	582 B	2.4 kB	104.17.114.17
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.77.32
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-10T12:25:49Z	404 B	746 B	142.250.74.10
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-10T13:32:49Z	451 B	393 B	104.16.56.101
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	1.7 kB	3.5 kB	142.250.74.35

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (4)

	URL	Size	First Seen	Last Seen
	www.canva.com/design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm_source=publishsharelink	1.6 kB	2023-03-10	2023-03-10
Pretty URL www.canva.com/design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm_source=publishsharelink IP 104.17.114.17 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:02:07 Last Seen2023-03-10 20:02:07 Times Seen1 Hash 83224b0b63682231bffba62514cab3fe 8e4b81899cb72a473d4c497bcba0f8434d168c06 5530b7ed5979959af5fae76dae87de292129b5ba3d5871072900badd77e87cfa Loading...

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	http:blank	748 B	2023-03-10	2023-03-10
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:02:07 Last Seen2023-03-10 20:02:07 Times Seen1 Hash 2c402beeaf433b402e1966823e85532f e5a23244395863fda2f802824cb5689a1563b6af 82f503e77687d1825414139d4bec682d2c94ac8b063eddde6d1bde5fb233cd02 Loading...

	www.canva.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1667548800	34 kB	2023-03-10	2023-03-10
Pretty URL www.canva.com/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1667548800 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 20:01:41 Last Seen2023-03-10 20:02:07 Times Seen1 Hash f6b34e4c336db6feb13c854f23e80154 b8f1680a5d4645db6c077aa005751395c6c11d4c 650d403df1cbf26d838d26e0e53f29d830f55698d2eadd417501bed83e1a8bf6 Loading...

HTTP Transactions (29)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash b7be8442ec1e518ccc80739495f6d047 7a9d24b9d4046262c7753c49afaf9c19f4840626 b93410a9d62da3f219796d753b61a0f730cc272c13596724aa9d20efba298b44 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B93410A9D62DA3F219796D753B61A0F730CC272C13596724AA9D20EFBA298B44" Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17390 Expires: Fri, 04 Nov 2022 13:25:26 GMT Date: Fri, 04 Nov 2022 08:35:36 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash acec9ff4da54c4cc65eb2e9cbab9af3d 973c9681094a024841233ee0bbc24067f676b9d1 e88b975e665ce0bbde4517c890da6f878189de1f9ef2d288b504d43655e06173 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3088 Cache-Control: max-age=109732 Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:36 GMT Etag: "6363cc6c-117" Expires: Sat, 05 Nov 2022 15:04:28 GMT Last-Modified: Thu, 03 Nov 2022 14:13:00 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 2842f538168981f07b56e2c69379841a 0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22 3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5630 Cache-Control: max-age=95362 Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:36 GMT Etag: "63638a5c-1d7" Expires: Sat, 05 Nov 2022 11:04:58 GMT Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 2842f538168981f07b56e2c69379841a 0cc4ad0a78c1407bc9b7850eb0fb1a02130e3b22 3f9e8fb02409a19ceb54fee3f0f7f73eeed9e0ad63fa778eac7b3e4633d7d682 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5630 Cache-Control: max-age=95362 Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:36 GMT Etag: "63638a5c-1d7" Expires: Sat, 05 Nov 2022 11:04:58 GMT Last-Modified: Thu, 03 Nov 2022 09:31:08 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 078950c3ba9ad01927f3da494b1d1de4 443c8a8247e4e3e04c14d21e0227fc4e8f396142 dd5dd09fec51669adf36b3014bbf65d7bff608f72018d037f9ed9b414675037c HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DD5DD09FEC51669ADF36B3014BBF65D7BFF608F72018D037F9ED9B414675037C" Last-Modified: Fri, 04 Nov 2022 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17433 Expires: Fri, 04 Nov 2022 13:26:09 GMT Date: Fri, 04 Nov 2022 08:35:36 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 67d5a988edcda47bc3b3b3f65d32b4b6 d4f0e0da8b3690cc7da925026d3414b68c7d954f 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: DhUk7Lk+zgdF/Nus+vprU4K/Gwi9DU6ua0XIff4/fPG3xaSyEFxh0KeN8q+iDIcwc4fdTnCxbaA= x-amz-request-id: 09CMZE2GXEV6W5XN content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Fri, 04 Nov 2022 08:09:31 GMT age: 1565 last-modified: Fri, 30 Sep 2022 18:50:55 GMT etag: "67d5a988edcda47bc3b3b3f65d32b4b6" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Fri, 04 Nov 2022 08:35:36 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash acec9ff4da54c4cc65eb2e9cbab9af3d 973c9681094a024841233ee0bbc24067f676b9d1 e88b975e665ce0bbde4517c890da6f878189de1f9ef2d288b504d43655e06173 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3089 Cache-Control: max-age=109732 Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Etag: "6363cc6c-117" Expires: Sat, 05 Nov 2022 15:04:29 GMT Last-Modified: Thu, 03 Nov 2022 14:13:00 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 279`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash d9013967c68565e051f403f2ab673662 9c54b7025b0b5cf71bb85cf5c3a9c873a79b2738 8e0d99b56a4a8f2c2d5d8642da0f85b0fcdf6888cb3536ae61ff143d577c956a HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2844 Cache-Control: max-age=165266 Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Etag: "6364a64f-117" Expires: Sun, 06 Nov 2022 06:30:03 GMT Last-Modified: Fri, 04 Nov 2022 05:42:39 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 279`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b88610b42bd507f0ac1700d26db03fbb 073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4 4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash b88610b42bd507f0ac1700d26db03fbb 073bcc479dfbe62a2691dbdfc3c87a99bcdc2fc4 4e544dd8861a1438b1667462866044f8646dfefb42f3bc6cbac2de324de4b568 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f62b37b31acd5a1918c3a4453a7b39c5 95ca904e055cb2646e0194e429cf6374213cabe6 94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f62b37b31acd5a1918c3a4453a7b39c5 95ca904e055cb2646e0194e429cf6374213cabe6 94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2	216.58.207.195	200 OK	45 kB
URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size 45 kB (44856 bytes) Hash 565ce506190ad3af920b40baf1794cec ad3cba5d06100e09449a864d3b5e58403b478b3d 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db HTTP Headers `GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://www.canva.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 03 Nov 2022 05:42:51 GMT expires: Fri, 03 Nov 2023 05:42:51 GMT cache-control: public, max-age=31536000 age: 96766 last-modified: Mon, 15 Aug 2022 18:20:18 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.35	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.35:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash f62b37b31acd5a1918c3a4453a7b39c5 95ca904e055cb2646e0194e429cf6374213cabe6 94533502a038fc926fb0f25dbf72be12fdf6d868c0e836d855ef195d63d1ecbf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 670d0b2f341e8ff1e4ee9fe4fe21e210 dcd277daebf63623b985a81a96bcdc6a6f67c518 75029ab8db44811ac539aa3e2f1f8e015a45b80cb5a1099cec7d64e55e2a72a6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2589 Cache-Control: max-age=87260 Content-Type: application/ocsp-response Date: Fri, 04 Nov 2022 08:35:37 GMT Etag: "63637698-1d7" Expires: Sat, 05 Nov 2022 08:49:57 GMT Last-Modified: Thu, 03 Nov 2022 08:06:48 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	35.163.147.190	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.163.147.190:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: XLNoVPCZ4Jzt/FlxmxFtoQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: ysc7lINcAYMGlnWlnKJ/KNoeE1M=`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62 a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef 938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946" Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17604 Expires: Fri, 04 Nov 2022 13:29:03 GMT Date: Fri, 04 Nov 2022 08:35:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62 a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef 938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946" Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17604 Expires: Fri, 04 Nov 2022 13:29:03 GMT Date: Fri, 04 Nov 2022 08:35:39 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62 a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef 938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946" Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17604 Expires: Fri, 04 Nov 2022 13:29:03 GMT Date: Fri, 04 Nov 2022 08:35:39 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10102 bytes) Hash 9e9d2fd6fad0411accce30c67be288f6 99e30a61aca3e5b861ec3f2f56ec242d06c84e03 36e0a989f24023e8df7e65f48d02b8ff44f5976c72e3add2a035f69a30a027ba HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca38d141-58df-4cb1-a98e-9e926dce0b1e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10102 x-amzn-requestid: 88180740-5e32-4c86-ac47-5385bf32ae6c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bC0RqG1joAMFtkg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6364340a-24dec56b1fff968d717cb075;Sampled=0 x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:06 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: -rDypmUzufHYjLel_905B6k4xcs_basK9CC_x2awMebzCU0Yxh_EtQ== via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google date: Thu, 03 Nov 2022 22:18:27 GMT age: 37032 etag: "99e30a61aca3e5b861ec3f2f56ec242d06c84e03" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg	34.120.237.76	200 OK	6.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.6 kB (6557 bytes) Hash ca6c7517d7015fbc35fa290c1c2d6afd 594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c a746b36be50209915a0e5657abd219aab382eee4b7556142aa1316daf3a9f5a4 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d05e3a2-b178-419f-90de-a1985765ff09.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6557 x-amzn-requestid: f2e39db1-fb8a-4a9b-8a1d-ee08000ddeb6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bC1VyFHuIAMF5Eg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-636435be-7a03ef677f8dbd680f72de90;Sampled=0 x-amzn-remapped-date: Thu, 03 Nov 2022 21:42:22 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: OI-hzSDTy-vFSFOZxI98XT8VZmnpFlU_cobzCTkrn4T5NuH8cqybMg== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google date: Thu, 03 Nov 2022 21:52:32 GMT age: 38587 etag: "594e5a82ce82fb4cd76548b6d2d6b4cc419b7e4c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10810 bytes) Hash c472942cb4b85610a3e83edf7527f923 8191eb019b21bed2b9f53c755e1c24d08dc70760 0dc7f9902567b0130c1c34b6e356b8239f8e6c83e1d38ac9b74588270000279c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98808735-da09-4166-b898-eee474b2aed2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10810 x-amzn-requestid: 85c9096f-2671-4f0e-94a3-607254d036d8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bC057E5yIAMFcXw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6364350c-3c93b6e56e6141a63d1285eb;Sampled=0 x-amzn-remapped-date: Thu, 03 Nov 2022 21:39:24 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: i3Kso77aQ6Qt3z3KH189niLwWzWFJz7Y0aMQngNRahdqlMAo76WksQ== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google date: Thu, 03 Nov 2022 21:52:42 GMT age: 38577 etag: "8191eb019b21bed2b9f53c755e1c24d08dc70760" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10462 bytes) Hash 4e2853cc6ec6223160471401e6871f4b f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c bf4b9145ea043d87a30fd3aeeae21a1a0aa27004cd2467e7aa843bc894ae1f60 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc6fadd94-b1a4-4bdc-bcf4-b6bade4840a0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10462 x-amzn-requestid: 43480a38-fd89-4c47-b8c4-e6ba90b1321c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: aMF6oEz_oAMF8Hg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-634e5043-6617fd2e59cab00135301cdd;Sampled=0 x-amzn-remapped-date: Tue, 18 Oct 2022 07:05:39 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: z6Lnru_eeTvRGdsz-q37-HGFgFfIT6fLSFcJBvT3oPjAPilszTWkDw== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google date: Fri, 04 Nov 2022 05:35:34 GMT age: 10805 etag: "f052e1f8b2bf4a8eeecfa5b82e27ada1b7719a0c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg	34.120.237.76	200 OK	8.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.0 kB (7993 bytes) Hash c67d8f51aff77b24d8cb3fd9ec479813 ebf192d282f763c6220d8d83423b4c1cb76332a1 941bab2bc237c080c6364198d3a183e5b513f72533c98b931b4503476f92e395 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F178fad61-d3ee-4517-8b79-a9952a3fff8a.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7993 x-amzn-requestid: 1f8c3db7-e6e5-4503-a865-1a2407d91ada x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bC0XYGP_oAMFvnw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6364342f-66953a9f6f31915c375fd6ab;Sampled=0 x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:43 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: B_DDr4f-tkfEfzTrmJR1vWFG7SZqFG78AAQiuAgJYyNUDoaRVibWSQ== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google date: Thu, 03 Nov 2022 21:49:59 GMT age: 38740 etag: "ebf192d282f763c6220d8d83423b4c1cb76332a1" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg	34.120.237.76	200 OK	3.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.6 kB (3559 bytes) Hash 3e2c2868516a60c335361ccef89c6090 b71b29860aca017ac124fb4037cec5dc3101474e 3ac5d5410a9d31317c2f31fe3e08cdb188e26bfffce5275b85cce986f2841d22 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa936c143-4ac1-4c0f-a7c9-35638fe066ce.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3559 x-amzn-requestid: 63f00dbe-834f-4fbb-91c0-5e5378dc48aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: bC0SvEOaIAMFRBg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63643411-43380b3457de631756afdb81;Sampled=0 x-amzn-remapped-date: Thu, 03 Nov 2022 21:35:13 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: hit7lhSIgTngtNcj0qlMHVtdtjSdfA6-lP8QBAyhVJfqyS-PaMHNkw== via: 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google date: Thu, 03 Nov 2022 22:00:51 GMT etag: "b71b29860aca017ac124fb4037cec5dc3101474e" content-type: image/jpeg age: 38088 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	www.canva.com/design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm_source=publishsharelink	104.17.114.17	404 Not Found	0 B
URL HTTP/2 www.canva.com/design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm_source=publishsharelink IP 104.17.114.17:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /design/DAFQ4Xu9ftc/9ksOh8Bc6zYApO803HPkPA/view?utm_content=DAFQ4Xu9ftc&utm_campaign=designshare&utm_medium=link&utm_source=publishsharelink HTTP/1.1 Host: www.canva.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 404 Not Found date: Fri, 04 Nov 2022 08:35:36 GMT content-type: text/html;charset=utf-8 cf-ray: 764c046b4c5a1c02-OSL strict-transport-security: max-age=31536000; includeSubDomains; preload cf-cache-status: DYNAMIC content-security-policy: frame-ancestors https://canvateam.zendesk.com; pragma: no-cache referrer-policy: strict-origin-when-cross-origin x-content-type-options: nosniff x-frame-options: deny x-request-id: 764c046b4c5a1c02 x-xss-protection: 1; mode=block report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=E606qi58CxnTt4UnH5k%2BFIAplHMv6bGfh0fxV5nAynqO%2FKQx0ZVegW9a3uTgw%2FQ5%2FoFEqSAlbs0pUSwiXVmLhV0PkHTeprvLc3MiE%2FWpsAMTWYv0Dk%2B%2Fj5fU9RAJfTA%3D"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding set-cookie: CDI=67a67db3-77c4-4f00-b767-d92ba4e63f0b; Path=/; Expires=Sat, 04-Nov-2023 08:35:36 GMT; Max-Age=31536000; Secure; HttpOnly; SameSite=None CAI=696a0c4f-c996-4a5a-8a77-30c69ed069f5; Path=/; Domain=.canva.com; Expires=Sat, 04-Nov-2023 08:35:36 GMT; Max-Age=31536000; Secure; SameSite=None CPA=tzR_VaeaLPlNkoPdby2v1_T5W6O6dXs8AR0Z3OBQFBLrSznCnQ4n7D9WEge5-vriFaQCmui9L4x8Wkeb1zD6GZYYkhANfcHu1UjzFoBdNN3hkv1_wwSZIk7plmQope_rKfrscdl_vFUJDMagCPR5oqiqxNLMJFbbTCDgN61CXpGJyunIu10iy6-ADVv3-ZPmEElyr6pVF8CXCVYLEZePiHWUd3B80f1jE3Iw6WRApYp_8CnPv7rmaSlVXMp-Wut1A1N4qX8hOT_66bE3DDQFhxloCuwDyXLrVJOqsHpXmyK6YcVD9loFg0oacQmyT-VJ32CZfeSgKC2IjnySalZyUcoHm2iz-ea4ewovdAEyf20ZtsqlEShtASs4FKfkujZzAIR25rmlrnRdhMEPCbovLgI9zWXdOoDwQfv2DN46hUBOBcFDJmERyA2uFgkEHoYFDL9GwsuWz4Ax9uHckIPHHWv5e-8oDxHsdHglJbjuKDdTxmErstdQjzrjgwq2D49Eted_lA9IaKEK8HkzLbhKzurl-4GN-_NK5QmC55LVE6_UDA7m; Path=/; Expires=Fri, 04-Nov-2022 11:35:36 GMT; Max-Age=10800; Secure; HttpOnly; SameSite=None CCK=mEMjGfPzcQZOMjx7o2p_SA; Path=/; Expires=Fri, 04-Nov-2022 11:35:36 GMT; Max-Age=10800; Secure; HttpOnly; SameSite=None __cf_bm=TmuVUe778ipl1Fp2PvOBfwPGGOqLuX9Zp7l6kr3s_5c-1667550936-0-AQ4pk1CkP/Evs80aflO0rRY1jeWvfjTnGNrGOJMsmpftdXPKeDR+2BW9khrIpGwv3noPe+hZ51zm6UCpT+M+nkw=; path=/; expires=Fri, 04-Nov-22 09:05:36 GMT; domain=.canva.com; HttpOnly; Secure; SameSite=None __cfruid=0c15be1555c34572e56c70e604dd994ec501f28e-1667550936; path=/; domain=.canva.com; HttpOnly; Secure; SameSite=None server: cloudflare content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Open+Sans:300,400,600,700	142.250.74.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:300,400,600,700 IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Open+Sans:300,400,600,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.canva.com/ Connection: keep-alive Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Fri, 04 Nov 2022 08:35:37 GMT date: Fri, 04 Nov 2022 08:35:37 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	104.16.56.101	200 OK	0 B
URL HTTP/2 static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.56.101:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1 Host: static.cloudflareinsights.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://www.canva.com/ Origin: https://www.canva.com Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK date: Fri, 04 Nov 2022 08:35:37 GMT content-type: text/javascript;charset=UTF-8 access-control-allow-origin: * cache-control: public, max-age=86400 etag: W/2022.10.1 last-modified: Fri, 21 Oct 2022 01:56:09 GMT cross-origin-resource-policy: cross-origin vary: Accept-Encoding server: cloudflare cf-ray: 764c046dbae7fab4-OSL content-encoding: gzip X-Firefox-Spdy: h2`

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (4)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (29)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size