Overview

URL www.prolexis.ro/_cgi/authen
IP89.42.218.85
ASNROMARG SRL
Location Romania
Report completed2022-06-22 14:12:06 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Added / Verified Severity Host Comment
2022-06-21 2 www.prolexis.ro/_cgi/authen Deutsche Telekom
2022-06-21 2 www.prolexis.ro/_cgi/authen Deutsche Telekom
PhishTank  No alerts detected
Fortinet's Web Filter
Added / Verified Severity Host Comment
2022-06-22 2 www.prolexis.ro/_cgi/authen Phishing
2022-06-22 2 www.prolexis.ro/_cgi/ Phishing
2022-06-22 2 www.prolexis.ro/_cgi/authen Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/js/jquery-3.2.1.min.js Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/images/data_protection.svg Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/fonts/teleicon-outline.woff Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/fonts/telegroteskscreen-regular.woff Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/fonts/telegroteskscreen-ultra.woff Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/fonts/teleicon-ui.woff Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/fonts/telegroteskscreen-bold.woff Phishing
2022-06-22 2 www.prolexis.ro/_cgi/static/factorx/fonts/telegroteskscreen-thin.woff Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (8)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
[Mnemonic Passive DNS] www.prolexis.ro (16) 0 2017-09-23 09:20:41 UTC 2022-06-22 11:32:48 UTC 89.42.218.85 Unknown ranking
[Mnemonic Passive DNS] ocsp.digicert.com (1) 86 2012-11-29 12:49:49 UTC 2022-06-22 10:55:53 UTC 93.184.220.29
[Mnemonic Passive DNS] push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2022-06-22 04:45:40 UTC 44.240.140.78
[Mnemonic Passive DNS] img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-06-22 08:07:04 UTC 34.120.237.76
[Mnemonic Passive DNS] r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-06-22 04:45:09 UTC 23.36.76.226
[Mnemonic Passive DNS] firefox.settings.services.mozilla.com (2) 867 2016-03-17 08:25:01 UTC 2020-05-25 20:01:47 UTC 54.230.111.118
[Mnemonic Passive DNS] content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-06-22 04:45:39 UTC 54.230.111.99
[Mnemonic Passive DNS] contile.services.mozilla.com (1) 1114 No data No data 34.117.237.239


Recent reports on same IP/ASN/Domain

Last 3 reports on IP: 89.42.218.85

Date UQ / IDS / BL URL IP
2022-07-02 20:49:20 +0000
0 - 0 - 3 www.jckfirs.punctulcentral.org/ 89.42.218.85
2022-06-17 06:21:06 +0000
0 - 0 - 3 inchiriereelicoptere.ro/wp-content/plugins/fo (...) 89.42.218.85
2022-06-02 07:41:40 +0000
0 - 0 - 2 comsid.ro/cd/Doc/ 89.42.218.85

Last 10 reports on ASN: ROMARG SRL

Date UQ / IDS / BL URL IP
2022-07-07 01:59:01 +0000
0 - 0 - 1 actualitatea-crestina.ro/laudantium-reiciendi (...) 89.42.218.232
2022-07-07 01:37:31 +0000
0 - 0 - 1 vladimirghika.ro/et-dolor/documents.zip 89.42.218.232
2022-07-07 01:37:20 +0000
0 - 0 - 3 mediaworld.ro/minima-quasi/documents.zip 89.42.218.232
2022-07-07 01:37:16 +0000
0 - 0 - 4 acordimobiliar.ro/qui-quia/documents.zip 89.42.218.99
2022-07-07 01:36:24 +0000
0 - 0 - 6 chop-shop.ro/maiores-repudiandae/documents.zip 89.47.242.199
2022-07-07 01:35:28 +0000
0 - 0 - 1 seinsweise.com/laborum-rerum/documents.zip 89.42.218.164
2022-07-07 01:31:41 +0000
0 - 0 - 2 turismtimis.ro/a-quas/documents.zip 89.42.218.164
2022-07-06 19:58:36 +0000
0 - 0 - 1 metalline.ro/sint-eveniet/documents.zip 89.42.218.72
2022-07-06 17:16:55 +0000
0 - 0 - 4 acordimobiliar.ro/qui-quia/documents.zip 89.42.218.99
2022-07-06 10:37:35 +0000
0 - 0 - 18 farmacia-organika.ro/doc/bME/o3Y/j3S/LR3cf33.zip 89.39.83.31

No other reports on domain: prolexis.ro



JavaScript

Executed Scripts (2)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (34)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "22A7AFFA696C3188DD074DEB68A2EC519EA227AC839D0238C9F82660B9E14D6A"
Last-Modified: Tue, 21 Jun 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9015
Expires: Wed, 22 Jun 2022 16:42:05 GMT
Date: Wed, 22 Jun 2022 14:11:50 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Wed, 22 Jun 2022 13:28:42 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: eGnQPWh4wdVAkW0rjzHIt9ir95IjKFfmEO7KUrMBbOL6Ujo0e3kN1g==
Age: 2588


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    c98c56ff7bc7ba547517573963f425e3
Sha1:   58c8dccc28ecd76424af6ed9988575a35cf8a0c2
Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.99
HTTP/2 200 OK
                                        
content-type: binary/octet-stream
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 22 Jun 2022 02:10:52 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 2d5cbe05385a7f3bbffc8a562b8711f6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LGIGKCOPI_fAW2PGkigQCg9syoWTKzyUz5Soq07Ac-Jjs5EOL99-1w==
age: 43259
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
                                        
server: nginx
date: Wed, 22 Jun 2022 14:11:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /_cgi/authen HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         89.42.218.85
HTTP/1.1 307 Temporary Redirect
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
set-cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2; expires=Wed, 22-Jun-2022 16:11:50 GMT; Max-Age=7200; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: http://www.prolexis.ro/_cgi/
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 22 Jun 2022 14:11:50 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - openphish: Deutsche Telekom
    - fortinet: Phishing
                                        
                                            GET /_cgi/ HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2
Upgrade-Insecure-Requests: 1

                                         
                                         89.42.218.85
HTTP/1.1 307 Temporary Redirect
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
location: http://www.prolexis.ro/_cgi/authen
content-type: text/html; charset=UTF-8
content-length: 0
date: Wed, 22 Jun 2022 14:11:50 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  
Size:   0
Md5:    d41d8cd98f00b204e9800998ecf8427e
Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709
Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/authen HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2
Upgrade-Insecure-Requests: 1

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
content-type: text/html; charset=UTF-8
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Wed, 22 Jun 2022 14:11:50 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (441)
Size:   4488
Md5:    01afc911574a550dcbd03fdb0098e9cd
Sha1:   b11cad11236a331c85d074e09fae87e1a2435e3b
Sha256: d4c17ce6ef2f26383b47f92ca908672ab42a98ac7575833050a6c6e053f41690

Alerts:
  Blocklists:
    - openphish: Deutsche Telekom
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2768
Cache-Control: max-age=153662
Date: Wed, 22 Jun 2022 14:11:51 GMT
Etag: "62b2cd95-1d7"
Expires: Fri, 24 Jun 2022 08:52:53 GMT
Last-Modified: Wed, 22 Jun 2022 08:06:45 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /_cgi/static/factorx/css/login-24.12.2.css HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/authen
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 05:09:58 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 3678
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (18238)
Size:   3678
Md5:    49aca9a6e8f8023788d193c95a5fc0c1
Sha1:   10af65099bd7dd74e07d7878c8dde2f3d6e31833
Sha256: 6e01e526398455a49db7c8904738394f33f7161105dfa48189483a0b6e024fa6
                                        
                                            GET /_cgi/static/factorx/css/components.min.css HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/authen
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: text/css
last-modified: Tue, 15 Feb 2022 04:41:32 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 18641
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (65442)
Size:   18641
Md5:    275c6feb06eed861acefc299ed5ed888
Sha1:   404d331d49a4c76b1a6004d4c3ec8f1099b2abc1
Sha256: fc5841877bec0c63a6addcf2067192935ffafbd225471154a2665937cb405959
                                        
                                            GET /_cgi/static/factorx/js/jquery-3.2.1.min.js HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/authen
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: application/javascript
last-modified: Tue, 15 Feb 2022 04:45:46 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 30229
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  ASCII text, with very long lines (32058)
Size:   30229
Md5:    2b9c3a55026fa687fa8add847adc9703
Sha1:   f2d759f36127a585a1353362fc0888eb5ccc38f8
Sha256: 5a2a26016574209924c64a06714a35f93eb82a215bb635a98706e3421e5e305d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.118
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Wed, 22 Jun 2022 13:19:25 GMT
Cache-Control: max-age=3600
Expires: Wed, 22 Jun 2022 13:53:23 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 04c4f064943f75498361739eb063cb7a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: im_uf7EFN2C9hMHi6SPnvNzbC-8mXdq_Fg-dr658bSZu594tAp2PRA==
Age: 3146


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CAQa+r6Pv+vW53VmkQSajQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         44.240.140.78
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zkKxw/i+c5dFl2WZT0bBAMAZPAA=

                                        
                                            GET /_cgi/static/factorx/images/services.png HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/authen
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: image/png
last-modified: Tue, 15 Feb 2022 04:40:14 GMT
accept-ranges: bytes
content-length: 22647
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  PNG image data, 270 x 48, 8-bit/color RGBA, non-interlaced\012- data
Size:   22647
Md5:    70e3abc323721940a3fde12ec5a337cb
Sha1:   cd37490fee37309e370e0a4d73a29eac2b49d007
Sha256: 14977cb7057352ad7715b93dec52f4993fc16980836d03b64f79566e8c9bec22
                                        
                                            GET /_cgi/static/factorx/images/data_protection.svg HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/login-24.12.2.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: image/svg+xml
last-modified: Tue, 15 Feb 2022 04:40:30 GMT
accept-ranges: bytes
content-encoding: gzip
vary: Accept-Encoding
content-length: 454
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text
Size:   454
Md5:    b16cad3e482157789868ee8df45a96f0
Sha1:   8ecb0b67fef9d5d603b51b2c14034503403259c3
Sha256: 002ac43d5cc64bdea0337d8016c33f4ef06b3507c4b6d0b31b6b36544413a18a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/static/factorx/fonts/teleicon-outline.woff HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/components.min.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: font/woff
last-modified: Tue, 15 Feb 2022 04:36:46 GMT
accept-ranges: bytes
content-length: 8824
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 8824, version 2.200\012- data
Size:   8824
Md5:    5dc5e36d344b5d8876eb73f451d92e01
Sha1:   fd2835b1428970d8df70e0a29aef6417d60fbf7d
Sha256: 01fa42140c7fd1e43496b320027681e75123e8121c4ff52e7a390a4ec37d9379

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/static/factorx/fonts/telegroteskscreen-regular.woff HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/components.min.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: font/woff
last-modified: Tue, 15 Feb 2022 04:36:32 GMT
accept-ranges: bytes
content-length: 54684
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 54684, version 1.0\012- data
Size:   54684
Md5:    179dec2b30e30c5b09f10478ae273639
Sha1:   1fe138b840993579f42929090c7df61de1a63566
Sha256: b80effdb6b1baee7ad8a926a027a9f085d0b91a1b52e3a8cf34e9a6b087aad97

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/static/factorx/fonts/telegroteskscreen-ultra.woff HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/components.min.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: font/woff
last-modified: Tue, 15 Feb 2022 05:05:36 GMT
accept-ranges: bytes
content-length: 53428
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 53428, version 1.0\012- data
Size:   53428
Md5:    5c389a411627b7bedab70df1ef5e0ca2
Sha1:   9cd8f2eb2d2467258f17f51a10cd62dafb3bd9c6
Sha256: 3b6317d7c6288f6380f182e8bdc16b4cea82df91bc0f0209dfbce457b3e16910

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/static/factorx/fonts/teleicon-ui.woff HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/components.min.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: font/woff
last-modified: Tue, 15 Feb 2022 04:38:12 GMT
accept-ranges: bytes
content-length: 2736
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 2736, version 0.0\012- data
Size:   2736
Md5:    0902a6d34545258aa8a18f304ebae9ba
Sha1:   e0da40bd3f6723cea9cf0554fe6761378353ba48
Sha256: 3cf35b128c4c5dcd9bb0a12bcc009f2e46e382edec4737360a623d0052a6fe34

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/static/factorx/fonts/telegroteskscreen-bold.woff HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/components.min.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: font/woff
last-modified: Tue, 15 Feb 2022 04:36:30 GMT
accept-ranges: bytes
content-length: 53500
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 53500, version 1.0\012- data
Size:   53500
Md5:    a1f05af86de48779a73dda888042a2ca
Sha1:   3be31c9362c1bd05383d467a182958eaa079691b
Sha256: dff75c72abbd5b70b8cf2acb31155760116d14517cc89b81d00285da85306497

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /_cgi/static/factorx/fonts/telegroteskscreen-thin.woff HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/static/factorx/css/components.min.css
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 200 OK
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
cache-control: public, max-age=604800
expires: Wed, 29 Jun 2022 14:11:51 GMT
content-type: font/woff
last-modified: Tue, 15 Feb 2022 04:36:34 GMT
accept-ranges: bytes
content-length: 58248
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  Web Open Font Format, TrueType, length 58248, version 1.0\012- data
Size:   58248
Md5:    8b89ab4ea001775d72ba921b09ac4b96
Sha1:   f483b6124328aa884413f62396c7a75f18cf7204
Sha256: 3c3cff57406992d5b880806e120965b2a77f6a9ac1bbe7a781bfc9f752b4ab5c

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.prolexis.ro/_cgi/authen
Cookie: cazanova=11djmphjq57fubufmjlv95jcai2k1hs2

                                         
                                         89.42.218.85
HTTP/1.1 301 Moved Permanently
                                        
Connection: Keep-Alive
Keep-Alive: timeout=5, max=100
content-type: text/html
content-length: 707
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
location: https://www.prolexis.ro/favicon.ico
x-xss-protection: 1; mode=block
x-content-type-options: nosniff


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   707
Md5:    1304294c0823ca486542ba408ed761e3
Sha1:   b2a70fb2d810ca13985882e6981f33998823e83e
Sha256: 3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: www.prolexis.ro
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.prolexis.ro/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         89.42.218.85
HTTP/2 404 Not Found
                                        
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 22 Jun 2022 14:11:51 GMT
server: LiteSpeed
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Size:   1238
Md5:    0bde7d4b3da67537eaf9188e6f8049cf
Sha1:   64300fc482d01d38b40ab20e15960b6509665e5a
Sha256: 5dc1ae0b875dc0d78dbc5532226f5f31b762b4d1229984f605d27bf895ab6807
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9143
Expires: Wed, 22 Jun 2022 16:44:16 GMT
Date: Wed, 22 Jun 2022 14:11:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9143
Expires: Wed, 22 Jun 2022 16:44:16 GMT
Date: Wed, 22 Jun 2022 14:11:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9143
Expires: Wed, 22 Jun 2022 16:44:16 GMT
Date: Wed, 22 Jun 2022 14:11:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9143
Expires: Wed, 22 Jun 2022 16:44:16 GMT
Date: Wed, 22 Jun 2022 14:11:53 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "1394332035FF30FC505CCB0EB81DD131660600CACDD2559D109B725075B69669"
Last-Modified: Tue, 21 Jun 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9143
Expires: Wed, 22 Jun 2022 16:44:16 GMT
Date: Wed, 22 Jun 2022 14:11:53 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fae9d4d-0def-4061-8627-8275cb9bf063.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8199
x-amzn-requestid: b6222d8e-dbdc-4ce5-aa29-bf19f2c3c899
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UGNjeE3yIAMFsBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b25c7c-40acd1742b019c356825aee2;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 00:04:12 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: o25CUj9w0fB-6yJt-wIpIRSxvdaZeLGIdyFLa_qq7Z4OCjDkJUHLog==
via: 1.1 27f6faf9790b5a2877fb528fa31f7922.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Jun 2022 00:22:49 GMT
age: 49744
etag: "9401f89dae8f91b3102639ce24040d18dd72afdb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8199
Md5:    b832f744cfbfe4a0d8c0dd7f98e9be61
Sha1:   9401f89dae8f91b3102639ce24040d18dd72afdb
Sha256: a0dce5d6323ac0cfff9c26bc6462e191008e5ed687cba352bf86b2b94bed3569
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F01c04346-905f-4658-9bb7-bd48f21d6db6.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5620
x-amzn-requestid: 91d872c2-2490-414f-8102-84e64c1c131c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UGNjeGpfoAMF8hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b25c7c-74eb579b5f627ccc0b510311;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 00:04:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: RgC1-l8Y4meQOtuaWUPA3x0QArKlevHIWByObzrl3J3NbGR8R2qcCQ==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Jun 2022 00:25:47 GMT
age: 49566
etag: "5d89612219a31a5aa62f45d53de992bbc1f13dc9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5620
Md5:    0e9280567705803171502fbb4071f8f9
Sha1:   5d89612219a31a5aa62f45d53de992bbc1f13dc9
Sha256: d8a752d834b7f34906e945d0c5582616367d3993ed76004ac97d0997f84f1a15
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9d8e86cf-e66a-4358-813c-3f6069f7b20c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 8220
x-amzn-requestid: 617272a3-c32b-4cac-993c-715e8e8cb929
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UGOhdE-IIAMFZnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b25e09-7fbefe0708da9a72384c19d6;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 00:10:49 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Ndjk2sNJtIXCOi_G3C3mGw1x5hv5ycxpwx40jnVCAa0ssn42LPs9cg==
via: 1.1 bd6f70221217681265382902c6157c76.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Jun 2022 00:39:24 GMT
age: 48749
etag: "5323f8c12bd5da81ce07788cf02ee097def3f900"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8220
Md5:    48931840ffa0a845a7b81dce33ffaa1c
Sha1:   5323f8c12bd5da81ce07788cf02ee097def3f900
Sha256: e6a7d95740d15c062cb7c56d85b15ed5e57cb6649ff03363ca7dcc359ebbdb53
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e4cee16-0def-4a04-89ce-28368d3c7aff.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 10817
x-amzn-requestid: 420f8fd1-2abd-4502-9f49-3af6c6776a01
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UGNjgFe9IAMFqKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b25c7c-6fdf2bf711003b4540c0789e;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 00:04:12 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: YUQHRfofJ3hYZaSpIoRgF9PdMj0m5HqfMTXQJZruqvyd2XbnBA3QKg==
via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Jun 2022 00:31:27 GMT
age: 49226
etag: "dd780cc82345ebca7413e10fa33158c935787c1e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10817
Md5:    d9bb0ee64a394cf737009f704c0dafd5
Sha1:   dd780cc82345ebca7413e10fa33158c935787c1e
Sha256: 64db0ca087450a3d6985cc57def91edb9265c0394bad3b175bc39928b55e2f6b
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F35047430-55a7-4bc0-8f13-3c1a0222fb17.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 5460
x-amzn-requestid: c3127dcb-8f17-4906-95f0-9dad693eeaee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: T8VMpF2woAMFa-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62ae68b7-5b99e987073cb76b42f246ae;Sampled=0
x-amzn-remapped-date: Sun, 19 Jun 2022 00:07:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: X-LOI4JINANLeMNdnFQxxRsOdoEbW9L5Es90j4PAvu2LRnnHZGPCag==
via: 1.1 b838ef1ff22a4a994af82d5178c30e1c.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Jun 2022 01:32:56 GMT
age: 45537
etag: "486af4712134398a87e28eb15542e6ec7a6b58f5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5460
Md5:    9a0845d2cc570a323170a9984c7ec7d3
Sha1:   486af4712134398a87e28eb15542e6ec7a6b58f5
Sha256: 53f57f6f3c97389a6796809ba8cef1dadfec0b593787df97ef2ed51f10188a82
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5f9cc6e-f4e5-46de-9a9b-995f5318a34b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
                                        
server: nginx
content-length: 11348
x-amzn-requestid: fcbf79fc-b455-478c-aded-8c2d78832d22
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: UGPV6FUCoAMF_aw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-62b25f58-6348d1e47b6d75c63806df02;Sampled=0
x-amzn-remapped-date: Wed, 22 Jun 2022 00:16:24 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pUq3AZuLpUU9TnC51pKjVCbDmk8SIffrsBDqbc9FfEWQVr2Pth0bRw==
via: 1.1 7f06047c304d80ea094816a27c933914.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 22 Jun 2022 00:37:40 GMT
age: 48853
etag: "a5c407eda54f2227af33402f2a5849607bc89cd2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11348
Md5:    597be1695e3f4eb29c402f9cf128d35b
Sha1:   a5c407eda54f2227af33402f2a5849607bc89cd2
Sha256: bc9d30809c9847e8237de2e68b4226433c93583bdb3aebda05b134ad4a4f1b1c