horizonwing.com/
194.5.156.2302 Found 230 B IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
Hash 110030b74252a1096b9cdb89a06c2c1e
49c25de1fb4be8f17fccd36e03810140fc3c3c62
b871d70f843e3c266dbb6e67f004d2d04abf191c13b881f9b730d1a0f540c973
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET / HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.2.34
location: login1.php
content-type: text/html; charset=UTF-8
content-length: 230
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 11 Oct 2022 21:39:08 GMT
server: LiteSpeed
cache-control: no-cache, no-store, must-revalidate, max-age=0
platform: hostinger
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash e0602913f3d432ffbfaa654440972ee1
e5aaf31749e65875fd840091f9a3bba641de413d
5495ad212166703dcd1d17d7aa6ff4d1c40e73dfad703d24f00f60f35bc7d56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5495AD212166703DCD1D17D7AA6FF4D1C40E73DFAD703D24F00F60F35BC7D56C"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10376
Expires: Wed, 12 Oct 2022 00:32:04 GMT
Date: Tue, 11 Oct 2022 21:39:08 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
54.230.111.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 3f17af4e8a1739eda4a518039f4892f9
c3feba08ae7e8f57e0fe9bcd2ebedea6bda67cbb
c485b09cad08b5233fe8753682faf59219fe0d18fcc34d90dc88fb0971295f5f
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 11 Oct 2022 20:48:50 GMT
Expires: Tue, 11 Oct 2022 21:30:38 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: nr8a4BMLaxbBs-r8UJgVIgfjV_EEBOvG2S8D-VeaVIfc-Hzkm-RDQw==
Age: 3018
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ceb45134349ef6afcb5b4bb730678041
15dc3ecb18e30e77cd7c694dd237bff9be583e7a
a39e0827fa31257562bb681e312ec2944a862e9ad4e568a803f6e09e994a6018
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A39E0827FA31257562BB681E312EC2944A862E9AD4E568A803F6E09E994A6018"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5423
Expires: Tue, 11 Oct 2022 23:09:31 GMT
Date: Tue, 11 Oct 2022 21:39:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: jeYiTSdukxuakASicOE/pSX/jlEM9HRPVBG9Xo4dFhuK+CApSB3JRxgM0IZK3p/Yvg2Nt+2mFoA=
x-amz-request-id: 67MX9XQSD4959AVX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 11 Oct 2022 21:01:01 GMT
age: 2288
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
horizonwing.com/login1.php
194.5.156.2200 OK 35 kB URL HTTP/1.1 horizonwing.com/login1.php
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (55863)
Hash 5737ac005e40cf42bd95d500154b1746
bce4e86b75540ec3890f8d7da5afbcb48b61b738
4b68c3795faf290545e6d50d6f77072540c8788db142d43536ace678bbce58e9
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /login1.php HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
x-powered-by: PHP/7.2.34
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Tue, 11 Oct 2022 21:39:08 GMT
server: LiteSpeed
platform: hostinger
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 11 Oct 2022 21:39:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
horizonwing.com/index_files/b67d172d5783.js.download
194.5.156.2200 OK 47 kB URL HTTP/1.1 horizonwing.com/index_files/b67d172d5783.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (65536), with no line terminators
Hash 3bbefedb00583e8f6ca3720d8b3495bb
cd45cff143bb4011eb3eaa9a86631d6a2b873995
b137723ce01dd63725189b56928481a3ebafcceeca7d1ae7e4ef3d2cce95b1f8
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/b67d172d5783.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/plain
last-modified: Wed, 06 Jul 2022 20:31:59 GMT
etag: "29481-62c5f13f-fbf7d8aa3dc2d298;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 47057
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/8e2c2a606042.js.download
194.5.156.2404 Not Found 1.2 kB URL HTTP/1.1 horizonwing.com/index_files/8e2c2a606042.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 735b0c705671877e2e36f9cd112c6286
7ec84db3e1d7c0d0e3560b4d9276bd63a409ca39
13d6771a98e17653adb78d1dec12c5dd11abb03a811bfab0527fcb77c63d6d05
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/8e2c2a606042.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Tue, 25 Jun 2019 07:06:47 GMT
etag: "999-5d11c807-253e7989ce99a290;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1159
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/96f2557117a2.js.download
194.5.156.2200 OK 21 kB URL HTTP/1.1 horizonwing.com/index_files/96f2557117a2.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
Hash 6506bf40c4bd88ca2de42f1fc7ab38c4
f9f59227e3a05d496bfda891dd85c2460d938691
0863c3efc5f636f70ea433e06a4d7ce928b4d5646d150989fd0ceec2c26a320c
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/96f2557117a2.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/plain
last-modified: Wed, 06 Jul 2022 20:31:57 GMT
etag: "f281-62c5f13d-da1030c3947c705c;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 20929
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/sdk.js.download
194.5.156.2200 OK 66 kB URL HTTP/1.1 horizonwing.com/index_files/sdk.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (18109)
Hash e48b2cb32d2f8ac48c0fe67c8a802dca
aa9810fac33e95bcfafcc4efcc3a397de2ca5f3f
c6633a5be3f3d2282f16ae55a7c3cf4179936cc01081a091c7a94cbbb0e74c36
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/sdk.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/plain
last-modified: Wed, 06 Jul 2022 20:32:05 GMT
etag: "3449d-62c5f145-93decafa44d76548;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 65830
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/d1f0f06b39df.js.download
194.5.156.2200 OK 124 kB URL HTTP/1.1 horizonwing.com/index_files/d1f0f06b39df.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type ASCII text, with very long lines (54549)
Size 124 kB (124169 bytes)
Hash 60d233cf82bac15731758b62849db060
2bd797c8e49694c827acd63bb8b40ef8b7dfeeb1
10bad375d150d3a3993071a2a97644fa0ab3c60eda96bf9eac36022522a9fbe7
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/d1f0f06b39df.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/plain
last-modified: Wed, 06 Jul 2022 20:32:00 GMT
etag: "68602-62c5f140-8ca1df7170144a44;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 124169
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/629d23a3c7b2.jpg
194.5.156.2200 OK 24 kB URL HTTP/1.1 horizonwing.com/index_files/629d23a3c7b2.jpg
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3\012- data
Hash 629d23a3c7b24459b2584bddb8a4a8e5
302e54effe6f4118a9cf003aef81b91e9ee62547
acd9e915679087545562b678b5f1ed295c0c9a06f19025a0d699e7dc8099640a
Analyzer Verdict Alert urlquery Phishing - Instagram
openphish Instagram
GET /index_files/629d23a3c7b2.jpg HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/jpeg
last-modified: Wed, 06 Jul 2022 20:31:56 GMT
etag: "5df4-62c5f13c-5546ae55026f7c67;;;"
accept-ranges: bytes
content-length: 24052
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/001bc33056c1.jpg
194.5.156.2200 OK 26 kB URL HTTP/1.1 horizonwing.com/index_files/001bc33056c1.jpg
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3\012- data
Hash 001bc33056c10fdbbdb1db41009b57e1
ba9c9ec52cb05c909c1c9fc2fba64f981aff65b4
05dbf03a18c2dc87edc2c5a5dfe083a5e5a1cded370ddcb66810372433f5dcb5
Analyzer Verdict Alert urlquery Phishing - Instagram
openphish Instagram
GET /index_files/001bc33056c1.jpg HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/jpeg
last-modified: Wed, 06 Jul 2022 20:31:55 GMT
etag: "674a-62c5f13b-50a65261b900acd5;;;"
accept-ranges: bytes
content-length: 26442
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/f9e5c0ca0804.js.download
194.5.156.2200 OK 155 kB URL HTTP/1.1 horizonwing.com/index_files/f9e5c0ca0804.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type HTML document, Unicode text, UTF-8 text, with very long lines (55484)
Size 155 kB (154717 bytes)
Hash 1ae1434be5db152484ebe706c77bd00d
2680ab08a2bb93ed4e9d01bff39bfd20b0e490c1
1ee549a8b53b23b0a3d049a1cd5378274886020f581f149e0c3d00400ff82c9f
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/f9e5c0ca0804.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/plain
last-modified: Wed, 06 Jul 2022 20:32:03 GMT
etag: "8468c-62c5f143-c59a482562e8762f;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 154717
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/4b70f6fae447.png
194.5.156.2200 OK 3.8 kB URL HTTP/1.1 horizonwing.com/index_files/4b70f6fae447.png
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type PNG image data, 306 x 90, 8-bit colormap, non-interlaced\012- data
Hash 4b70f6fae44727678540b68e876908b1
d5a23520acdf18636380e1a88d3de2a1efbf6ce1
14c09561486ba385a8a62bc0a8b41e03638a6334648113a7f28be47271eccb5e
Analyzer Verdict Alert openphish Instagram
GET /index_files/4b70f6fae447.png HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/png
last-modified: Wed, 06 Jul 2022 20:31:56 GMT
etag: "eaa-62c5f13c-b087a125cc87460f;;;"
accept-ranges: bytes
content-length: 3754
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/f55c258e826e.png
194.5.156.2200 OK 35 kB URL HTTP/1.1 horizonwing.com/index_files/f55c258e826e.png
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type PNG image data, 864 x 312, 8-bit/color RGB, non-interlaced\012- data
Hash f55c258e826e3ce5d39d1004f8c4ff31
a6cf2c4199458fb68c6b47687e186e9eec85299b
0044767308dc917efc445a03ab5d5b16ef5e446f9ee11faed8df47fdd2ab50fb
Analyzer Verdict Alert urlquery Phishing - Instagram
openphish Instagram
GET /index_files/f55c258e826e.png HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/png
last-modified: Wed, 06 Jul 2022 20:32:01 GMT
etag: "8730-62c5f141-a00531e8122d0836;;;"
accept-ranges: bytes
content-length: 34608
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/f5ae123ab1e2.jpg
194.5.156.2200 OK 35 kB URL HTTP/1.1 horizonwing.com/index_files/f5ae123ab1e2.jpg
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 240x427, components 3\012- data
Hash f5ae123ab1e24e72615bea84fc7b4845
40251760c3fc66529bfee516450952f3e174a2f4
9a82dc4aa881a8a4cb0c24f9ecf1357b0fb6faf6bf88ee9e791360ddae796bf8
Analyzer Verdict Alert urlquery Phishing - Instagram
openphish Instagram
GET /index_files/f5ae123ab1e2.jpg HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/jpeg
last-modified: Wed, 06 Jul 2022 20:32:01 GMT
etag: "88f0-62c5f141-9afe6ca58fe6b401;;;"
accept-ranges: bytes
content-length: 35056
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/f06b908907d5.png
194.5.156.2200 OK 10 kB URL HTTP/1.1 horizonwing.com/index_files/f06b908907d5.png
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type PNG image data, 564 x 168, 8-bit/color RGBA, non-interlaced\012- data
Hash f06b908907d5d4f2aaf733e2bee7ea8e
073dcf14c7c312be5daeb4fa2113429e019fdbc7
583714033cab0d76045a8d4bbfb2326983f40d5c2cfa239e9527da9617686e6b
Analyzer Verdict Alert openphish Instagram
GET /index_files/f06b908907d5.png HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/png
last-modified: Wed, 06 Jul 2022 20:32:00 GMT
etag: "2757-62c5f140-a7a15d9d5df31895;;;"
accept-ranges: bytes
content-length: 10071
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/fb48443ec9d3.png
194.5.156.2200 OK 78 kB URL HTTP/1.1 horizonwing.com/index_files/fb48443ec9d3.png
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type PNG image data, 439 x 407, 8-bit/color RGBA, non-interlaced\012- data
Hash eff79e15991ff54828686e10dabbb0dd
b879af7de52bb91831cd7f23266d52a729ca0494
6b01596e27245772fae3b1193031d4b244147060c796cc0762daecf7c36c1f4f
Analyzer Verdict Alert openphish Instagram
GET /index_files/fb48443ec9d3.png HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Tue, 18 Oct 2022 21:39:09 GMT
content-type: image/png
last-modified: Wed, 06 Jul 2022 20:32:02 GMT
etag: "1307f-62c5f142-e50731ccece0781e;;;"
accept-ranges: bytes
content-length: 77951
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/static/images/homepage/home-phones.png/38825c9d5aa2.png
194.5.156.2404 Not Found 1.2 kB URL HTTP/1.1 horizonwing.com/static/images/homepage/home-phones.png/38825c9d5aa2.png
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 735b0c705671877e2e36f9cd112c6286
7ec84db3e1d7c0d0e3560b4d9276bd63a409ca39
13d6771a98e17653adb78d1dec12c5dd11abb03a811bfab0527fcb77c63d6d05
Analyzer Verdict Alert openphish Instagram
GET /static/images/homepage/home-phones.png/38825c9d5aa2.png HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Tue, 25 Jun 2019 07:06:47 GMT
etag: "999-5d11c807-253e7989ce99a290;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1159
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
54.230.111.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 54.230.111.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Tue, 11 Oct 2022 21:29:41 GMT
Cache-Control: max-age=3600
Expires: Tue, 11 Oct 2022 21:41:20 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: tuNTXMs2xiMnvMXijwlOUoxm9ViZp0Cw0cKLIfVAu4FzqE4KR2RQxg==
Age: 568
horizonwing.com/index_files/8e2c2a606042.js.download
194.5.156.2404 Not Found 1.2 kB URL HTTP/1.1 horizonwing.com/index_files/8e2c2a606042.js.download
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (355)
Hash 735b0c705671877e2e36f9cd112c6286
7ec84db3e1d7c0d0e3560b4d9276bd63a409ca39
13d6771a98e17653adb78d1dec12c5dd11abb03a811bfab0527fcb77c63d6d05
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/8e2c2a606042.js.download HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
HTTP/1.1 404 Not Found
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Tue, 25 Jun 2019 07:06:47 GMT
etag: "999-5d11c807-253e7989ce99a290;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 1159
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
horizonwing.com/index_files/lY4eZXm_YWu.html
194.5.156.2200 OK 14 kB URL HTTP/1.1 horizonwing.com/index_files/lY4eZXm_YWu.html
IP 194.5.156.2:0
ASN #47583 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (5796)
Hash 2eaaab0e9e92beeb58880cff23fde918
f2b3ec5aba42e695b1db0f40f69f142810b8c949
53a5b2fbacd328b14ad99f7b487c46518ca2d952adc806e71e1c7a645ba3b59d
Analyzer Verdict Alert openphish Instagram
fortinet Phishing
GET /index_files/lY4eZXm_YWu.html HTTP/1.1
Host: horizonwing.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/login1.php
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
last-modified: Wed, 06 Jul 2022 20:32:04 GMT
etag: "a8cd-62c5f144-9e6806677e6b0003;gz"
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 14012
date: Tue, 11 Oct 2022 21:39:09 GMT
server: LiteSpeed
platform: hostinger
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/1.1 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://horizonwing.com/
HTTP/1.1 200 OK
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
Pragma: public
Cache-Control: public, max-age=1200
Expires: Sat, 01 Jan 2000 00:00:00 GMT
X-Content-Type-Options: nosniff
X-XSS-Protection: 0
X-Frame-Options: DENY
Strict-Transport-Security: max-age=31536000; preload; includeSubDomains
X-FB-Debug: NkMZdJQu3RdR9QGTBTakWyNvkHMI29btlejUHS7x7/ZsBe7un/8kdiv6NLXms+FZZcZCa9JCtRnQMEFv3oKYKw==
Priority: u=3,i
X-FB-TRIP-ID: 1904183273
Date: Tue, 11 Oct 2022 21:39:09 GMT
Alt-Svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
Connection: keep-alive
Content-Length: 26840
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9045885902afb286eef41988716895
550fd256897d4f483d00768972f56cd8c35e09e8
c3a8ae68f7eece41a71cd344042b97c99a12c61c5a40b29117fc3f6a8aa9eabd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1207
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 21:39:09 GMT
Last-Modified: Tue, 11 Oct 2022 21:19:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e448215e76a154dd75faa9aaea181c47
142e520ea4a3c1a78599dcb9b89c47ee1b7a9f1d
1f250f6c7d4121ef1ade842646c9bec40756466d71b71c39e551831bcb9a770c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2273
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 21:39:09 GMT
Last-Modified: Tue, 11 Oct 2022 21:01:16 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash e1327a02d76346c7e23d114e4e508b30
195b8ad875ab8f7a7adf735f1f70aa02b3a2e1a3
331e67b451c6559915b12ab2df810ccdba73b3971c5301b2010b54dd6d391de2
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://horizonwing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: NkMZdJQu3RdR9QGTBTakWyNvkHMI29btlejUHS7x7/ZsBe7un/8kdiv6NLXms+FZZcZCa9JCtRnQMEFv3oKYKw==
priority: u=3,i
content-length: 26840
x-fb-trip-id: 1904183273
date: Tue, 11 Oct 2022 21:39:09 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e448215e76a154dd75faa9aaea181c47
142e520ea4a3c1a78599dcb9b89c47ee1b7a9f1d
1f250f6c7d4121ef1ade842646c9bec40756466d71b71c39e551831bcb9a770c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2273
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 21:39:09 GMT
Last-Modified: Tue, 11 Oct 2022 21:01:16 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
www.instagram.com/static/images/ico/favicon-192.png/b407fa101800.png
31.13.72.174200 OK 35 kB URL HTTP/2 www.instagram.com/static/images/ico/favicon-192.png/b407fa101800.png
IP 31.13.72.174:0
File type PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash dc5dd2d4aae02d969a174c57e8cb24ba
ba0a803fb325c0f56082363346ef3e9639200787
e413af3093fdc4fa174691b4c5a8e649ff11a79ec646c68f07c9a4b0643bdafb
GET /static/images/ico/favicon-192.png/b407fa101800.png HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://horizonwing.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-encoding: br
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
etag: "b407fa101800"
cache-control: public,max-age=31536000,immutable
edge-control: max-age=1209600, no-transform
date: Wed, 05 Oct 2022 15:38:29 GMT
content-length: 34719
x-fb-trip-id: 1679558926
X-Firefox-Spdy: h2
www.instagram.com/static/images/ico/favicon.ico/dfa85bb1fd63.ico
31.13.72.174200 OK 3.6 kB URL HTTP/2 www.instagram.com/static/images/ico/favicon.ico/dfa85bb1fd63.ico
IP 31.13.72.174:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 584972b328e881fdec41d9e4db8b6c6c
c6428073565ac5a17c2cf0b1f05e7dcc38692dfb
3ff1a9339a92db4a91ab51c68f862ccb4ed7dc5e8c1417e89277b1803226b431
GET /static/images/ico/favicon.ico/dfa85bb1fd63.ico HTTP/1.1
Host: www.instagram.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://horizonwing.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-encoding: br
vary: Accept-Encoding
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
etag: "dfa85bb1fd63"
cache-control: public,max-age=31536000,immutable
edge-control: max-age=1209600, no-transform
date: Sat, 01 Oct 2022 06:31:32 GMT
content-length: 3589
x-fb-trip-id: 1679558926
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 34c15fee665f03aab24038618bb2d9a7
6b90ea5a496581b83daf1764938d1db1a5a32bb4
93e99055eb4a94f808eed2fac338d6c480047c30a56498b2a65036a7d5bdea04
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5089
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 21:39:09 GMT
Last-Modified: Tue, 11 Oct 2022 20:14:20 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9045885902afb286eef41988716895
550fd256897d4f483d00768972f56cd8c35e09e8
c3a8ae68f7eece41a71cd344042b97c99a12c61c5a40b29117fc3f6a8aa9eabd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5546
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 11 Oct 2022 21:39:09 GMT
Last-Modified: Tue, 11 Oct 2022 20:06:43 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
www.facebook.com/tr/?id=1425767024389221&ev=PageView&dl=http%3A%2F%2Fhorizonwing.com%2Flogin1.php&rl=&if=false&ts=1665524350140&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1665524350139.2013578366&it=1665524349703&coo=false&rqm=GET
31.13.72.36200 OK 0 B URL HTTP/2 www.facebook.com/tr/?id=1425767024389221&ev=PageView&dl=http%3A%2F%2Fhorizonwing.com%2Flogin1.php&rl=&if=false&ts=1665524350140&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1665524350139.2013578366&it=1665524349703&coo=false&rqm=GET
IP 31.13.72.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /tr/?id=1425767024389221&ev=PageView&dl=http%3A%2F%2Fhorizonwing.com%2Flogin1.php&rl=&if=false&ts=1665524350140&sw=1280&sh=1024&v=2.9.84&r=stable&ec=0&o=30&fbp=fb.1.1665524350139.2013578366&it=1665524349703&coo=false&rqm=GET HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://horizonwing.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/plain
access-control-allow-origin:
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
content-length: 0
server: proxygen-bolt
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
date: Tue, 11 Oct 2022 21:39:10 GMT
X-Firefox-Spdy: h2
push.services.mozilla.com/
44.237.163.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.163.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: qHhcFQKgLU+M5L5mvhjBPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: D2AnebdPoQLAnp1zKS4TSgLTLlE=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2560
Expires: Tue, 11 Oct 2022 22:21:51 GMT
Date: Tue, 11 Oct 2022 21:39:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2560
Expires: Tue, 11 Oct 2022 22:21:51 GMT
Date: Tue, 11 Oct 2022 21:39:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2560
Expires: Tue, 11 Oct 2022 22:21:51 GMT
Date: Tue, 11 Oct 2022 21:39:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 372301cc3e0ad3b9318a13a6ec327d30
9d34de85f08bf496e76a3577e0b23af5a2e06548
b5b57c12618c4d45d9b712be3fccaba0debbbf018f82b028bff74e39a077cf03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B5B57C12618C4D45D9B712BE3FCCABA0DEBBBF018F82B028BFF74E39A077CF03"
Last-Modified: Tue, 11 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2560
Expires: Tue, 11 Oct 2022 22:21:51 GMT
Date: Tue, 11 Oct 2022 21:39:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc6dbf06-fc04-4aa0-be3e-1b1f5a988e0f.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc6dbf06-fc04-4aa0-be3e-1b1f5a988e0f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a7910c19b8c04b1c7a9a03949dc54b8
40b0931f4705cc826564bd29418d17edbed84d7d
1f14b664a3587ad9b73b3d5bc37a670900622c467287f9a0dfad1f8bdf69606f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbc6dbf06-fc04-4aa0-be3e-1b1f5a988e0f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10795
x-amzn-requestid: 8efcb814-aa05-476a-b66a-161185920ed8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zj_dQHvHoAMFy_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633e45ee-7eb4a30a5d0b102845ba50d6;Sampled=0
x-amzn-remapped-date: Thu, 06 Oct 2022 03:05:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: sYu22nP23ebL-YER7jAfQOGRddML3giG_gWSfdHy_4NAeAY2--QIsA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 20:55:45 GMT
age: 2606
etag: "40b0931f4705cc826564bd29418d17edbed84d7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6943f4735bdb3eaf396cd0edbd101dae
3be209d8b74abe0d12033cf6149da04eb9e1a116
7578a8981216adc59909baf4e41ef4044d5a592e6dc7f80f4fa8f5f1cc1b282f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F647e8146-dad8-449f-a0ea-efe8d7b14e99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5957
x-amzn-requestid: e0f7c754-77bd-402d-9a94-424632468a2f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zt6HoGFvoAMFoHw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63423d63-32c98bad73afd14a4ee28593;Sampled=0
x-amzn-remapped-date: Sun, 09 Oct 2022 03:17:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Pq_yqwFfzr5QIsZKy1h6qtbDul9dGXzapXaLy9NOhGRMgLNxSnj6vQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Tue, 11 Oct 2022 03:39:45 GMT
age: 64766
etag: "3be209d8b74abe0d12033cf6149da04eb9e1a116"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ff8cfe3904cca89e3bdfa8186ae382ba
0b9dce744f5facad9a0a136d81cf24e928211856
a6f0925a9666a43d018c05d717310f57b86316290fb4a7cdd309c35842e557a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe3ade344-507f-44c8-8fe3-b03ac965aee2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7674
x-amzn-requestid: 126f9400-fa43-413b-b496-338908efb777
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZeqScHUVoAMFrRg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633c240f-1b7cff3e3415299a4d17e19e;Sampled=0
x-amzn-remapped-date: Tue, 04 Oct 2022 12:16:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BjBiRKpvs2LQznegxhvMFrczSZGWXGSMvk3bxR8UPpcthRUUA2eTBg==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:56:18 GMT
age: 85373
etag: "0b9dce744f5facad9a0a136d81cf24e928211856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9e6761274cf8c2ed62e317e310f74ac3
32b3631be51d3385f061fee29e41ed28fad4b914
45d68ffebd269cae06ae471a11a128c32070367db85f525b81df4164f510adea
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a938ec-0f85-4cc4-b114-6a3bb049c111.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11336
x-amzn-requestid: 2f64751f-13d2-49c3-85c4-fb0f28186a37
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zzt8mFh7IAMF_lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63449050-100b2d49411d4bed369655c1;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:36:16 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: lss2UdzBjP4PysNdrrEsK0WX20WfoKkbHuhcPzL6WWyyTXSynpXJDA==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 22:07:13 GMT
age: 84718
etag: "32b3631be51d3385f061fee29e41ed28fad4b914"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e9aa9808428e5fd81ac9d61d6f7c708
3a8d76badce50dd98938885082dcb6e30363ae88
d8f7c48a1cbe04af2f7e0455d1ef7af9b63506b9ae343ebf14ece8689bb06bf6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0583d755-2f5b-458f-86f0-774b9909eb6f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11800
x-amzn-requestid: 5f2ce4dd-0df8-4df7-a12d-e6fffd622752
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZnTQHGADIAMFXfg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633f98cd-5044665325e5d64975c1ff0c;Sampled=0
x-amzn-remapped-date: Fri, 07 Oct 2022 03:11:09 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LhwkinWopo6RX-yo5_35HWL9S2dGpdi7rAiwVWLxUicaHfHW3VF7DQ==
via: 1.1 4d8620b80ebe37d366388e117039aa8e.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:42:24 GMT
age: 86207
etag: "3a8d76badce50dd98938885082dcb6e30363ae88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a8720e1bfd92ce7ccfeb8ab6ca2477a
1277a8a73b2fbf48562a7f767c3219d836b1faa9
61cfaa0a0338ae710735fab66822d8227adeb6a8bc4035686fae4a4de6247f1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ea1c33c-766b-4b55-98a5-0a22380c61ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6645
x-amzn-requestid: 6e75c182-93bc-4339-a679-b069f78a397c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZzuQ0H3qoAMFi5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634490d1-4e134a93174cbf3559bea75c;Sampled=0
x-amzn-remapped-date: Mon, 10 Oct 2022 21:38:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 2T5ArGyU86KvuyKtp_G0XC9MaZQWS2luBYlIKcQRWNeeUjqcmQgMSA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 10 Oct 2022 21:42:38 GMT
age: 86193
etag: "1277a8a73b2fbf48562a7f767c3219d836b1faa9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
connect.facebook.net/signals/config/1425767024389221?v=2.9.84&r=stable
31.13.72.12200 OK 0 B URL HTTP/2 connect.facebook.net/signals/config/1425767024389221?v=2.9.84&r=stable
IP 31.13.72.12:0
GET /signals/config/1425767024389221?v=2.9.84&r=stable HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://horizonwing.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy-report-only: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script';
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: DTdXvEnmbL44xYvRB8XmE0wHtn52qXEMfbyj6e8EAAqK22G5kTxcuwgUY/zcF3qiz86K6Cw5b35dzmgrp88huA==
x-fb-trip-id: 1904183273
date: Tue, 11 Oct 2022 21:39:10 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2