r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18424
Expires: Sat, 14 Jan 2023 23:02:12 GMT
Date: Sat, 14 Jan 2023 17:55:08 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3063227f59d1935298b0620fa7919145
478e1d8bef04b1f95381cac01829c03b6779d420
619281d3b9753bc6d2845786da75e8566687362769517aacf90f953ffbb8407c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "619281D3B9753BC6D2845786DA75E8566687362769517AACF90F953FFBB8407C"
Last-Modified: Sat, 14 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15389
Expires: Sat, 14 Jan 2023 22:11:37 GMT
Date: Sat, 14 Jan 2023 17:55:08 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 64765d3d978fd74d7bc47d55d4f097cf
92eb3f0d55ba99be28105c0b28ef7dd456817f1f
761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2276
Expires: Sat, 14 Jan 2023 18:33:04 GMT
Date: Sat, 14 Jan 2023 17:55:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 14 Jan 2023 17:48:55 GMT
content-type: application/json
age: 373
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 0PbhQhEKFCDq295/H8Q+Ysdn+HHG5xw2HukPWgM/ycnbTHP6XfXuMPuvPOO+DMv+yZJcxMsQvBcN+Xn8MuMaMg==
x-amz-request-id: S41Q7HRNJ669WX7R
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 14 Jan 2023 17:43:49 GMT
age: 679
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 14 Jan 2023 17:55:08 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.ezine.daily-exchange.net/bb/ZmRmUyBdWmRSMVlSaGBjZVlUYGNhH1RgXiAiJyQqISAlKiQhKiEeIyEpIyImHiIhKSkiIx4nJCglJx4hHiEgaGhoH1ZrWl9WH1VSWl1qHlZpVFlSX1hWH19WZSAgOFJkYVZjMVJUXF9gaF1WVVhWXlZfZR9nWmRmUl1SVWdaVFYfX1ZlICEgRl9kZlM9Wl9c
302 Found 541 B URL HTTP/1.1 www.ezine.daily-exchange.net/bb/ZmRmUyBdWmRSMVlSaGBjZVlUYGNhH1RgXiAiJyQqISAlKiQhKiEeIyEpIyImHiIhKSkiIx4nJCglJx4hHiEgaGhoH1ZrWl9WH1VSWl1qHlZpVFlSX1hWH19WZSAgOFJkYVZjMVJUXF9gaF1WVVhWXlZfZR9nWmRmUl1SVWdaVFYfX1ZlICEgRl9kZlM9Wl9c
IP
ASN #209945 Viasat Cloud SRL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (469), with CRLF line terminators
Hash 0b77952aeb86cd6b6f1687f55af9c0e5
803bfb0a55083cc164df96acb045a89f9cf1af0e
d6ec679f1dda2cb717938728b02071b560578afc98884f5bc0252659a8a16fc5
Analyzer Verdict Alert fortinet Phishing
GET /bb/ZmRmUyBdWmRSMVlSaGBjZVlUYGNhH1RgXiAiJyQqISAlKiQhKiEeIyEpIyImHiIhKSkiIx4nJCglJx4hHiEgaGhoH1ZrWl9WH1VSWl1qHlZpVFlSX1hWH19WZSAgOFJkYVZjMVJUXF9gaF1WVVhWXlZfZR9nWmRmUl1SVWdaVFYfX1ZlICEgRl9kZlM9Wl9c HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 541
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
200 OK 6.3 kB URL HTTP/1.1 www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
IP
ASN #209945 Viasat Cloud SRL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (2564), with CRLF line terminators
Hash c9b7957e7ad4414443a8c6217cd7d3f7
4bb0df8d7883051a9edf9b7618ea24e0600eb39a
0c1eda2695c800e82eab650e53b3404a5a095d151f65e902234623f042b98918
Analyzer Verdict Alert fortinet Phishing
GET /unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: private
Content-Type: text/html; charset=utf-8
Content-Encoding: gzip
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 6349
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.ezine.daily-exchange.net/tracking/WebResource.axd?d=srdq82Jjjh_8FWHcy5YDw5iWFBYgqBt2N54JoZHnhEeezBSt6MlHy3uJX0u-goc_2dchg2mtWfhDPnniIqFMI_zow5pSKOdkYP8474PyWFM1&t=636403334294818574
200 OK 6.0 kB URL HTTP/1.1 www.ezine.daily-exchange.net/tracking/WebResource.axd?d=srdq82Jjjh_8FWHcy5YDw5iWFBYgqBt2N54JoZHnhEeezBSt6MlHy3uJX0u-goc_2dchg2mtWfhDPnniIqFMI_zow5pSKOdkYP8474PyWFM1&t=636403334294818574
IP
ASN #209945 Viasat Cloud SRL
File type ASCII text, with CRLF line terminators
Hash 06fd446079195e9866f38728a31b8416
bce7935598a51703a7077dd75e1d30882533c6e1
5466d19b6349cc09de47de356c3195b2fd367a5ab8f1c55e8aaf2f296915d46d
GET /tracking/WebResource.axd?d=srdq82Jjjh_8FWHcy5YDw5iWFBYgqBt2N54JoZHnhEeezBSt6MlHy3uJX0u-goc_2dchg2mtWfhDPnniIqFMI_zow5pSKOdkYP8474PyWFM1&t=636403334294818574 HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sat, 13 Jan 2024 22:17:02 GMT
Last-Modified: Thu, 07 Sep 2017 02:23:49 GMT
Vary: Accept-Encoding
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 6007
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=U43pgXBB0aZ29ooTcCBeZj6S94T5WgL7mWvqZpEAi3Q7W35n7NrnZeLBYXKBkIfeSXaQOHq2lIT5LLYg9-SM8vq0jdyuXRqLN2V_fWWkSXpwAylwZzQEcczk56z4kXKEbp4EwdZ1STP5YV-AnwlwCP-w3H5i8ZayEdHvM7Eh1BY1&t=29ce779a
200 OK 5.5 kB URL HTTP/1.1 www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=U43pgXBB0aZ29ooTcCBeZj6S94T5WgL7mWvqZpEAi3Q7W35n7NrnZeLBYXKBkIfeSXaQOHq2lIT5LLYg9-SM8vq0jdyuXRqLN2V_fWWkSXpwAylwZzQEcczk56z4kXKEbp4EwdZ1STP5YV-AnwlwCP-w3H5i8ZayEdHvM7Eh1BY1&t=29ce779a
IP
ASN #209945 Viasat Cloud SRL
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash cd81a5effc23af770be1c6ad035a5e4e
ec3cdf31293e2e43fb1f189decc18019cd3d2f23
0bbe6b1d897c994aa54d02d1692b8dd4d64a2f28d809f954ce6ba356c7d16abb
GET /tracking/ScriptResource.axd?d=U43pgXBB0aZ29ooTcCBeZj6S94T5WgL7mWvqZpEAi3Q7W35n7NrnZeLBYXKBkIfeSXaQOHq2lIT5LLYg9-SM8vq0jdyuXRqLN2V_fWWkSXpwAylwZzQEcczk56z4kXKEbp4EwdZ1STP5YV-AnwlwCP-w3H5i8ZayEdHvM7Eh1BY1&t=29ce779a HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sun, 14 Jan 2024 17:50:26 GMT
Last-Modified: Sat, 14 Jan 2023 17:50:26 GMT
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 5479
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 14 Jan 2023 17:17:25 GMT
age: 2264
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=YmOb4kdVR6l2C5E6g7hC7LxkqlUZI0HvsP5H5AuxkwWGu5ZM9wJF8yiAhfv89_R6xEIXTcHh5yT960a9IAoTB7-bdQ4tuk-aGiUOI9Vaa-FTs9Ncb32fQ6SqSidzm3f6viW49d5DzRuSQLmdUalLUw2&t=ffffffffd98c31ca
200 OK 2.1 kB URL HTTP/1.1 www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=YmOb4kdVR6l2C5E6g7hC7LxkqlUZI0HvsP5H5AuxkwWGu5ZM9wJF8yiAhfv89_R6xEIXTcHh5yT960a9IAoTB7-bdQ4tuk-aGiUOI9Vaa-FTs9Ncb32fQ6SqSidzm3f6viW49d5DzRuSQLmdUalLUw2&t=ffffffffd98c31ca
IP
ASN #209945 Viasat Cloud SRL
File type Unicode text, UTF-8 (with BOM) text
Hash 22dbcda895f9546767c140fe93520697
3634118d89439253c8941a201fb6a8adfb366710
57f8c497dc5dd1aff6de4279ae15b6b49868c31c13a0b94559c067fabc26b2ba
GET /tracking/ScriptResource.axd?d=YmOb4kdVR6l2C5E6g7hC7LxkqlUZI0HvsP5H5AuxkwWGu5ZM9wJF8yiAhfv89_R6xEIXTcHh5yT960a9IAoTB7-bdQ4tuk-aGiUOI9Vaa-FTs9Ncb32fQ6SqSidzm3f6viW49d5DzRuSQLmdUalLUw2&t=ffffffffd98c31ca HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Sun, 14 Jan 2024 17:54:24 GMT
Last-Modified: Sat, 14 Jan 2023 17:54:24 GMT
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 2075
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
www.ezine.daily-exchange.net/Telerik.Web.UI.WebResource.axd?type=rca&isc=true&guid=66c569b7-f048-4052-b8e5-3f15a3f1be1b
200 OK 3.3 kB URL HTTP/1.1 www.ezine.daily-exchange.net/Telerik.Web.UI.WebResource.axd?type=rca&isc=true&guid=66c569b7-f048-4052-b8e5-3f15a3f1be1b
IP
ASN #209945 Viasat Cloud SRL
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 182x50, components 3\012- data
Hash 6a08df9362b4edab09565c81f23eca8d
5b66b8c325c2a6bfabc946fdf449e4fe8e40382f
92b4ded2eeac9953338f409c0c378df8c5c7a31f714f16ce57975edd1094b37d
GET /Telerik.Web.UI.WebResource.axd?type=rca&isc=true&guid=66c569b7-f048-4052-b8e5-3f15a3f1be1b HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: private
Content-Type: image/jpeg
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 3348
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=xARgfY1Y5X8aEZMj4CMV_7d-SCGTNgkD5_OJr5hktbupRrGGk0xwjydKItaBTXSS1IQaKFLG8hniSNLVXiuRnDi0NHYPs0RzbnLlOHxBJIJJnBcwYHtn-glBdiuleAUgR1CVv24ZZ4KKMs96Phy-xCcPnrFB2qJP_RAxWav7u59Zf9trvwYhu5tOPehO9oEQ0&t=3d6efc1f
200 OK 15 kB URL HTTP/1.1 www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=xARgfY1Y5X8aEZMj4CMV_7d-SCGTNgkD5_OJr5hktbupRrGGk0xwjydKItaBTXSS1IQaKFLG8hniSNLVXiuRnDi0NHYPs0RzbnLlOHxBJIJJnBcwYHtn-glBdiuleAUgR1CVv24ZZ4KKMs96Phy-xCcPnrFB2qJP_RAxWav7u59Zf9trvwYhu5tOPehO9oEQ0&t=3d6efc1f
IP
ASN #209945 Viasat Cloud SRL
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 920d5a308e191f3eb45e339d4ec0c6c0
e876779528aca5dbb8176d8a0d4c6fef3bb55997
a10901b062cf38ec26dced20aa6e21ae648da3f7b2329d312213bf65410fd5eb
GET /tracking/ScriptResource.axd?d=xARgfY1Y5X8aEZMj4CMV_7d-SCGTNgkD5_OJr5hktbupRrGGk0xwjydKItaBTXSS1IQaKFLG8hniSNLVXiuRnDi0NHYPs0RzbnLlOHxBJIJJnBcwYHtn-glBdiuleAUgR1CVv24ZZ4KKMs96Phy-xCcPnrFB2qJP_RAxWav7u59Zf9trvwYhu5tOPehO9oEQ0&t=3d6efc1f HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sun, 14 Jan 2024 17:49:47 GMT
Last-Modified: Sat, 14 Jan 2023 17:49:47 GMT
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 15430
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=WSRj4_0c0C37wCAnU0EMCxNqPq2Nzt3PYht7oCg3qOdW12a7dtlnBgwsLM-8mvQYHqAJCHZ8slcvcS1FmQILeGrVjQBDQauU8wt1lYdDy9lDOU2aMHz10ZXgAHPaadcfRDEUyV7i9Kk0M-sjLdL-zA2&t=ffffffffd98c31ca
200 OK 15 kB URL HTTP/1.1 www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=WSRj4_0c0C37wCAnU0EMCxNqPq2Nzt3PYht7oCg3qOdW12a7dtlnBgwsLM-8mvQYHqAJCHZ8slcvcS1FmQILeGrVjQBDQauU8wt1lYdDy9lDOU2aMHz10ZXgAHPaadcfRDEUyV7i9Kk0M-sjLdL-zA2&t=ffffffffd98c31ca
IP
ASN #209945 Viasat Cloud SRL
File type Unicode text, UTF-8 (with BOM) text, with very long lines (457)
Hash 4d1a75edd8ebd4168de9438a33fa0cc6
5a1bf2205a644533bcc84a19742ac9ce586b4cc4
bc8e7ef308868bd252691f01385519fbbb000d9013d6717267a6aeb719212365
GET /tracking/ScriptResource.axd?d=WSRj4_0c0C37wCAnU0EMCxNqPq2Nzt3PYht7oCg3qOdW12a7dtlnBgwsLM-8mvQYHqAJCHZ8slcvcS1FmQILeGrVjQBDQauU8wt1lYdDy9lDOU2aMHz10ZXgAHPaadcfRDEUyV7i9Kk0M-sjLdL-zA2&t=ffffffffd98c31ca HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: public
Content-Type: text/javascript
Content-Encoding: gzip
Expires: Sun, 14 Jan 2024 17:52:43 GMT
Last-Modified: Sat, 14 Jan 2023 17:52:43 GMT
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 15068
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=hNW6POnPGlBpsgHzrXkbkNRsYjJfqlKgX7N9USosjlNHV_2qoA8qUAP8FSFcrgVQBs3iVg0CeFiaahF-MT9OTfY06tDzpvB9Wn2yXthfYAPYa7s3SZQ3LMcD6owK8cxvmIDgLKjJCW3TG1PmYKpMpidotmtLJ6-O_OUDPaGYBBlHIIl7Cs6oPvNgX-31tRao0&t=3d6efc1f
200 OK 48 kB URL HTTP/1.1 www.ezine.daily-exchange.net/tracking/ScriptResource.axd?d=hNW6POnPGlBpsgHzrXkbkNRsYjJfqlKgX7N9USosjlNHV_2qoA8qUAP8FSFcrgVQBs3iVg0CeFiaahF-MT9OTfY06tDzpvB9Wn2yXthfYAPYa7s3SZQ3LMcD6owK8cxvmIDgLKjJCW3TG1PmYKpMpidotmtLJ6-O_OUDPaGYBBlHIIl7Cs6oPvNgX-31tRao0&t=3d6efc1f
IP
ASN #209945 Viasat Cloud SRL
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 65e51bb190f398cf313e227869acefa4
9c0afdcb3a5911b456552850af11533aeadaad9b
5970d86e577ebffa7cb9d9f4579c01e3258f47de0cdde8c26ed0834fe2a2fa52
GET /tracking/ScriptResource.axd?d=hNW6POnPGlBpsgHzrXkbkNRsYjJfqlKgX7N9USosjlNHV_2qoA8qUAP8FSFcrgVQBs3iVg0CeFiaahF-MT9OTfY06tDzpvB9Wn2yXthfYAPYa7s3SZQ3LMcD6owK8cxvmIDgLKjJCW3TG1PmYKpMpidotmtLJ6-O_OUDPaGYBBlHIIl7Cs6oPvNgX-31tRao0&t=3d6efc1f HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 200 OK
Date: Sat, 14 Jan 2023 17:55:08 GMT
Server: Microsoft-IIS/10.0
Cache-Control: public
Content-Type: application/x-javascript
Content-Encoding: gzip
Expires: Sun, 14 Jan 2024 17:53:51 GMT
Last-Modified: Sat, 14 Jan 2023 17:53:51 GMT
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Content-Length: 47752
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /bbxPPGOvA95J4MNssG1gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: V0WLuznXbKMK5jQxHIRyQyT3uhg=
www.ezine.daily-exchange.net/favicon.ico
404 Not Found 209 B URL HTTP/1.1 www.ezine.daily-exchange.net/favicon.ico
IP
ASN #209945 Viasat Cloud SRL
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642
GET /favicon.ico HTTP/1.1
Host: www.ezine.daily-exchange.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.ezine.daily-exchange.net/unsub_verification.aspx?p=ZXppbmUuZGFpbHktZXhjaGFuZ2UubmV0LGxpc2FAaGF3b3J0aGNvcnAuY29tLDQ5MzA5MC0yMDgyMTUtMTA4ODEyLTYzNzQ2LTAtMCxodHRwOi8vbWNuMmJodHZxZnl2YzdtMDNzZjExcC02Z2ozMS5wdWIuc2ZtYy1jb250ZW50LmNvbS9oeGFmazRiaGU1Yz9lbWFpbD0mYW1wO3N0b3JlSWQ9JmFtcDtvcHRvdXRzb3VyY2U9RXhhY3RDdXN0b21lciZhbXA7Y3Rrd2Q9NDI1MDkmYW1wO2VjYWRpZD0jczEjJnRybmlkPTNlNThhODc0LWE0OGMtNGE1OC1iNmUwLTIyYzMwZGI2NzlhNw
HTTP/1.1 404 Not Found
Date: Sat, 14 Jan 2023 17:55:10 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.1e-fips
Content-Length: 209
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5506
Expires: Sat, 14 Jan 2023 19:26:57 GMT
Date: Sat, 14 Jan 2023 17:55:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5506
Expires: Sat, 14 Jan 2023 19:26:57 GMT
Date: Sat, 14 Jan 2023 17:55:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5506
Expires: Sat, 14 Jan 2023 19:26:57 GMT
Date: Sat, 14 Jan 2023 17:55:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5506
Expires: Sat, 14 Jan 2023 19:26:57 GMT
Date: Sat, 14 Jan 2023 17:55:11 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5506
Expires: Sat, 14 Jan 2023 19:26:57 GMT
Date: Sat, 14 Jan 2023 17:55:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d24ea1f095f492934a1f1c63f5d8590c
dade37148c9b9a941f93a8535d8ddc5de3952623
2d8e3f90eb347eb3479a6c5d20a1c2ca6a0560f335a6c6800948db2640e4c878
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F917985a1-aa8d-4c0a-860c-0b16c203387e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8181
x-amzn-requestid: 7ada8fbd-58e6-4433-a532-b4a4ef93ac9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0paH-OIAMFg5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce3c-582529522dbb67ee728484f8;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AHjOmYxva5avyA3gt9DvYLas_B2ACimer5QRQOi919HDtSjnKq22lw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:36:45 GMT
age: 73106
etag: "dade37148c9b9a941f93a8535d8ddc5de3952623"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: eb427fd6-c342-4a22-af45-ecc528cf4a8a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: epfDqEAZIAMFudQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c0787d-4f61ecd2422081224869da76;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:15:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RRMRT2BC5p1x0Vh20ut0Kjbz2mnaNToUIbzIg9oczduvzYCckvFORA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 05:58:29 GMT
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
age: 43002
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2363dbe7bb6a459853d8d19cab50e70b
ded76de1dd453e40dbf6eaa8607cf19fac7f71a4
f96da6354cec52143768014c36ba2b298224a58b0bf38bd2aa5f3bfce69d8670
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc0a5cc8b-8d62-447a-a39c-733e1afdd415.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7447
x-amzn-requestid: dd3543b7-4e6b-4605-acea-a21d39af02ca
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qSFjAIAMF7HQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce41-56e2ccc63669032d70cba0ba;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AYaeawnEmwHkyx3h-yliVx-ARcRB3W5kbtFH5tARnL3YMD6e4WYAQw==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 72370
etag: "ded76de1dd453e40dbf6eaa8607cf19fac7f71a4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 64ba27a2f0a3bc61bd325f1fb317b755
c65c58476b66cbb6269ba1d8412d270a0a003ae3
5f7f03752f8a7c8c08d92512ae93b193ea37f59354503c3129d33fd2910f87e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b0d4bc-9eea-491e-9fed-be68e71088e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9135
x-amzn-requestid: 2c5e9de0-9244-43ac-b7c4-712cbcf7038c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAnoG6roAMFzgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7afd-7fb640b30bab63bc1979a173;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:14:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RnAGo4OuBl5UjyOlUOJqu2nlFLHTOe0ETxokWtbI4frbpkNVnIBSew==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 01:41:40 GMT
age: 58411
etag: "c65c58476b66cbb6269ba1d8412d270a0a003ae3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4885191c-7ccc-4801-bef2-6d6bbb61cdb1.jpeg
200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4885191c-7ccc-4801-bef2-6d6bbb61cdb1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d9c918c3f0569cbf09fdcd8998e2fc00
ad06e348d49e8ae0550d922b50bc2a1d4905457a
8f96e49cf0dbbad59d260d0f991d79eb72ea25dcc0caa5ba4480056bd918d07d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4885191c-7ccc-4801-bef2-6d6bbb61cdb1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5371
x-amzn-requestid: fcbafc8b-5b89-49e6-8ebd-157cb3b24a55
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: es0qnERXoAMFsZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c1ce43-3eb3b4d84dbf415a3dec1308;Sampled=0
x-amzn-remapped-date: Fri, 13 Jan 2023 21:33:55 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AbaES_6874zaabJY_z0_FOZfJx86Zsv-osNxWqzef8DDNyelo0HRtQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 21:49:01 GMT
age: 72370
etag: "ad06e348d49e8ae0550d922b50bc2a1d4905457a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1378f107c1996ade14a8fe7fd728072
f52d98d9a0d1d343a539689ea14acf99e148cf8c
4be994757ec7ec42929590169de199e927889261334e258903a0929a1055047d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F78b55aad-884c-40db-a779-021d0c2305b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9154
x-amzn-requestid: fbb1140d-7ec2-4f86-8761-5d04601af70e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: enAkCEN2IAMFuMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf7ae6-4baebf1104f9cf2a0ee8a538;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 03:13:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jlRcVyQppaQaPPMKaqadtaEHfdOYXXXbnfrr44l_2E2qaOoh_O0Mog==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sat, 14 Jan 2023 04:21:52 GMT
age: 48799
etag: "f52d98d9a0d1d343a539689ea14acf99e148cf8c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
5.252.170.33
35.241.9.150
95.101.11.115