3.209.241.40/
3.209.241.40200 OK 950 B IP 3.209.241.40:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 8265b6ca389a8af79f6006bccec8759b
5efddffbaecf48162309ac1311bd1a68cd1538bc
3bd1e9c2d916f457c6a38a66fec9d62bb5ca168ab91dc895aefdcdbf1a39983a
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:17 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Mon, 30 Jan 2023 17:15:14 GMT
ETag: W/"ba0-18603acfcd0"
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5d9435c884bf4a0777fdf4b57079ae09
7f04b9db47ffeec90ac6397416b7553e5336a550
fe77420ec3a11f547cf5172b68d30faa4fe0c13165ae305f0013b02914e61084
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE77420EC3A11F547CF5172B68D30FAA4FE0C13165AE305F0013B02914E61084"
Last-Modified: Sat, 25 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11865
Expires: Sun, 26 Mar 2023 02:38:02 GMT
Date: Sat, 25 Mar 2023 23:20:17 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash dfd491ebe7381221b3674c2c8bf9e566
d2ac5badf17f348c28a52e9db10e6eb80e5a231a
34a026664386054b0b73c36cd1ddfce023551ee41963df0e38248bac1e1eb56c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "34A026664386054B0B73C36CD1DDFCE023551EE41963DF0E38248BAC1E1EB56C"
Last-Modified: Fri, 24 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13904
Expires: Sun, 26 Mar 2023 03:12:01 GMT
Date: Sat, 25 Mar 2023 23:20:17 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 84db75194692d4afe13196bda6f22da8
4c1f49bc973a4917f146d93c8d598344edc021f6
a3bec66f95b3bdf1d310c726e8ed05f7b06c1901c62381a94582d581844d2c23
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Content-Type, Alert, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 25 Mar 2023 22:27:45 GMT
content-type: application/json
age: 3152
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9bb70197d53617b5e6889b890dd2ae26
f3e9b8a743de494529baf2d078a622539f965307
a094a13905b7f1cd89475f9c83f9245580d4c3c7228d51d5c16622aec3c6aa45
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A094A13905B7F1CD89475F9C83F9245580D4C3C7228D51D5C16622AEC3C6AA45"
Last-Modified: Sat, 25 Mar 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5582
Expires: Sun, 26 Mar 2023 00:53:19 GMT
Date: Sat, 25 Mar 2023 23:20:17 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5CI5hCv7iLrjRp1joWTkWd716vn5NKDh/CMtSEIlIMds9IIH99c2haNYE831C6HEO9/sHraNSz4=
x-amz-request-id: 5ST9447P26RBG7R9
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 25 Mar 2023 23:00:58 GMT
age: 1159
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 25 Mar 2023 23:20:17 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
104.18.10.207200 OK 21 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP 104.18.10.207:0
File type ASCII text, with very long lines (65371)
Hash 4bd0e7791e596c39af46134167918b5b
125a0ded209ceaed8c92e441204c06621b4d7b59
4c788ed7ee84373bfc105dd1d2708cd0ae31fb36eef4ab9ab306b1d06d97a02b
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3.209.241.40/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 25 Mar 2023 23:20:17 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 2021-04-23 06:29:02
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 6a91d2c867066733b6d92a7a528c5c2e
cdn-cache: HIT
cf-cache-status: HIT
age: 27896754
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 7adae2385a570b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
3.209.241.40/style.css
3.209.241.40200 OK 189 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 840edf4f49f8017308ada62fe3675718
88d4c33bf2cfb76000dd8be42b0cc0657c04b05d
bca3c24294dd759079d1869643b1bbf7ed280e7731d5d7a7adfbe292cdf04c03
Analyzer Verdict Alert quad9 Sinkholed
GET /style.css HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:17 GMT
Content-Type: text/css; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Tue, 07 Feb 2023 18:53:18 GMT
ETag: W/"122-1862d39a530"
Content-Encoding: gzip
ajax.googleapis.com/ajax/libs/angularjs/1.5.6/angular-cookies.js
216.58.207.234200 OK 2.8 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/angularjs/1.5.6/angular-cookies.js
IP 216.58.207.234:0
Hash d4c5e439fe08eded612d18c192b8b9ca
a9c8df0b089e3aab1ccb2befecf104db81cba283
1fe25c3f05cb15575e9ca660ece86abd92148adf77f891aac2f876ebde196aea
GET /ajax/libs/angularjs/1.5.6/angular-cookies.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3.209.241.40/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 2764
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 20:55:52 GMT
expires: Sat, 23 Mar 2024 20:55:52 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 95066
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
3.209.241.40/node_modules/angular-spinner/dist/angular-spinner.min.js
3.209.241.40200 OK 2.8 kB URL HTTP/1.1 3.209.241.40/node_modules/angular-spinner/dist/angular-spinner.min.js
IP 3.209.241.40:0
File type ASCII text, with very long lines (6658), with no line terminators
Hash 2c82bd26d54bd0ea0eae8eb2d5660613
1f24b160ec93da2938f82cd2d2407790e07020b3
e6890869cd0b2754ffc57e755822cdf692c211065030d3aa221a137666442646
Analyzer Verdict Alert quad9 Sinkholed
GET /node_modules/angular-spinner/dist/angular-spinner.min.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:56:58 GMT
ETag: W/"1a02-16d73708910"
Content-Encoding: gzip
3.209.241.40/graph-options.js
3.209.241.40200 OK 597 B URL HTTP/1.1 3.209.241.40/graph-options.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 5cdb134e0f319b37aaca18bb66a546ee
09296fc12583058e7f753d7e496db5d70a57fc99
d4f960e09c183cd62e35a52add5b43010071c11606c942198984a996b78498e4
Analyzer Verdict Alert quad9 Sinkholed
GET /graph-options.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Wed, 01 Feb 2023 17:28:52 GMT
ETag: W/"11a9-1860e063020"
Content-Encoding: gzip
3.209.241.40/defData.js
3.209.241.40200 OK 381 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 6b9fb0aa4a201bd203567128df298dab
b2a2a7c6643149f631f2a4d406c77bc1bb4c4f30
27ebdcb535e1a4484db6284358551de6fbd50571d4f6fe6eb68ea7f3ba3b8bd2
Analyzer Verdict Alert quad9 Sinkholed
GET /defData.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"393-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/util.js
3.209.241.40200 OK 3.1 kB IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 92097c9c7825223cdf7dd8a3451a1155
424ea1a3e275fb74ec9b5325acca547ded9f8700
20c49aa61b08022fd3b8791e67a901c57151094cb9143c6ff84d144ed98f807d
Analyzer Verdict Alert quad9 Sinkholed
GET /util.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Tue, 07 Feb 2023 19:11:42 GMT
ETag: W/"2498-1862d4a7db0"
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.209.241.40/appData.js
3.209.241.40200 OK 3.8 kB IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash aea8be717fa066c007334e4704aaf98c
e7916eacf77eec3cc43cb096dde5c158c870e7d3
230ca5dd09bfb34f6bf428295aa00a849836b76b1bc4b6601f7044cf05dbf72d
Analyzer Verdict Alert quad9 Sinkholed
GET /appData.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Wed, 01 Feb 2023 17:15:32 GMT
ETag: W/"6384-1860df9fb20"
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/angularjs/1.5.6/angular.min.js
216.58.207.234200 OK 56 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/angularjs/1.5.6/angular.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (640)
Hash 75ea4158d67df621fde95276239f8915
0e096f49a4c2328f3fb9cc1d7c3fcd1a246feaea
0a9b10d9d69a7bda47eda6af8c41d13ac3a4edacac88c1f739f2c2901787af03
GET /ajax/libs/angularjs/1.5.6/angular.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://3.209.241.40/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 56240
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 20 Mar 2023 14:00:33 GMT
expires: Tue, 19 Mar 2024 14:00:33 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 465585
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 63ca8c4e17e0b692d1829cd62b9af3af
d0bbecbe0b93ea21026898dbd13edee5fc071cb2
1208545ecf01edb7bcef0b3c288d9edd34d2034c7404ba68a64c2ef251cb42f1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 25 Mar 2023 23:20:18 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
3.209.241.40/mainApp.js
3.209.241.40200 OK 3.0 kB IP 3.209.241.40:0
File type Unicode text, UTF-8 text, with very long lines (2051), with CRLF line terminators
Hash d5967f24290af678459f0e43f67dc9c6
d4de7197b860c730cc718a1bb27496d0739ee3bc
d8956c112864ee8cb93d2ce937adb2e12539925e88c0253fb309ba39c64a3e72
Analyzer Verdict Alert quad9 Sinkholed
GET /mainApp.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"1be9-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/node_modules/moment/moment.js
3.209.241.40200 OK 35 kB URL HTTP/1.1 3.209.241.40/node_modules/moment/moment.js
IP 3.209.241.40:0
File type Algol 68 source text\012- Pascal source, ASCII text
Hash 011be5235d9f66762f57c4884efab496
134b2694e1f6caf02eb28de6d0d5c311ba5e8669
a7d57bf3021b9171ecfa1c0b0f655a1f693193aa0965edba4aad26643dad4407
Analyzer Verdict Alert quad9 Sinkholed
GET /node_modules/moment/moment.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"23d84-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/index.js
3.209.241.40200 OK 183 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 3ef7dd51bba4956f683ad62689766711
011cf6d0bf83af53f288c7735a33d59f2cedc924
85f3cc0da172763b3d6fca86bd9598b4b14df7e3c8d1e06d62d7297391886903
Analyzer Verdict Alert quad9 Sinkholed
GET /index.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"fb-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/login.js
3.209.241.40200 OK 567 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash cf887e09d016a5ce4768d96c3372e3fe
0ae20a8ac82c4e4461c20c74918bb442df200e66
8cbdf6cd25049482fcb10f4f4aa1ea5686ca7f2a46fb74fd370c92aabe94a117
Analyzer Verdict Alert quad9 Sinkholed
GET /login.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"61e-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/definition.js
3.209.241.40200 OK 431 B URL HTTP/1.1 3.209.241.40/definition.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash b7bc68aced6ef4f7076a194b8f6c42e9
d5a7e7932b549bdf42768a670e9da8ff78b7a890
e90f6bfd5215958ad778b31dde3d4ce90d1214f7c87f50c4aca4f32f90d8239c
Analyzer Verdict Alert quad9 Sinkholed
GET /definition.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"683-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/analyticsTable.js
3.209.241.40200 OK 919 B URL HTTP/1.1 3.209.241.40/analyticsTable.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 614c5a0a4a9c6a0f29d47d6adcf59251
2d14c8e574be66c8cd1b4c560a41201aca5e5c84
45c3de1c527cb59809d55b3ace7a82edc63677af5cab2feeb69c9342dfa87ea7
Analyzer Verdict Alert quad9 Sinkholed
GET /analyticsTable.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"b28-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/testUser.js
3.209.241.40200 OK 442 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash cc65ce56083f4dc4ed6f87b1eb036a22
595f494f20e22b5dc2a6da3dcb2f671ad5df5a66
3642bfcec72d86c08fd0288ba1dfe07aa4dbef7674af4cf37555b496ecfe9a04
Analyzer Verdict Alert quad9 Sinkholed
GET /testUser.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:12 GMT
ETag: W/"6de-16d7370bfc0"
Content-Encoding: gzip
3.209.241.40/metrics-dau.js
3.209.241.40200 OK 964 B URL HTTP/1.1 3.209.241.40/metrics-dau.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 1d2fbaa77793295738e28183de30880b
5a1824d70b3a10290bd077cc8489962b18bf7c2c
9566b085375bcd6f85c56676da1c2652ea69caa84e98fde4cc7cd8c1b716467f
Analyzer Verdict Alert quad9 Sinkholed
GET /metrics-dau.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"1138-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/metrics-retention.js
3.209.241.40200 OK 657 B URL HTTP/1.1 3.209.241.40/metrics-retention.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 48973ceba0317f2552e8154ef37afb8e
61d4e09f6f3e3c5898bc1cef2a9f75be212e84f4
01da84eb990a8fe34c0159eb67267998c40af2d1173b7ca4cdd424ebfeb2118a
Analyzer Verdict Alert quad9 Sinkholed
GET /metrics-retention.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"a82-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/analytics.js
3.209.241.40200 OK 354 B URL HTTP/1.1 3.209.241.40/analytics.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash a8befa9acfdcdf0d127fa834d0a48b55
da38bfc8f39c2084d745b2cfb87ae2d71895631a
dbf1f320d9d635f158f2c337ca0e4fb8a6d86f4dc322f2f8c93869689df73292
Analyzer Verdict Alert quad9 Sinkholed
GET /analytics.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Tue, 08 Jun 2021 16:25:50 GMT
ETag: W/"30c-179ec71c6b0"
Content-Encoding: gzip
3.209.241.40/metrics-revenue.js
3.209.241.40200 OK 744 B URL HTTP/1.1 3.209.241.40/metrics-revenue.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 90967515d5e87f2935f2aa59af90d8bd
eb6d3faf4456e593760eb99266ea5c5e2944e778
85c922f4042ea366179ec08499895f7ed0e0983769c91327b1c75a9b418b9edd
Analyzer Verdict Alert quad9 Sinkholed
GET /metrics-revenue.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 23 Apr 2021 15:37:42 GMT
ETag: W/"b78-178ff612d70"
Content-Encoding: gzip
3.209.241.40/metrics-accumulation.js
3.209.241.40200 OK 1.1 kB URL HTTP/1.1 3.209.241.40/metrics-accumulation.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash a7e15cec9c20fe2326a3676dc0bade9f
107ec0d91f1bead27319e6b819c66446f4f8d0ee
33fae6b5e38c33d4325d21b33896019a86b3b0f4e9febee90659bf55b6e397db
Analyzer Verdict Alert quad9 Sinkholed
GET /metrics-accumulation.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 17 Feb 2023 16:04:02 GMT
ETag: W/"1576-186601e4550"
Content-Encoding: gzip
3.209.241.40/home.js
3.209.241.40200 OK 250 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash dccdab54a8c119364c7664413b70693e
5e9e00a474ac3c3b9e086c5e663d564fdbae8f58
0c28c8948619f9c17ea56e2a6e1afc2e01f7009f93da708d77c442dabec2b48f
Analyzer Verdict Alert quad9 Sinkholed
GET /home.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"1c3-16d7370b7f0"
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Last-Modified, Retry-After, Content-Length, Alert, Cache-Control, Expires, Content-Type, Backoff, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 25 Mar 2023 23:17:24 GMT
age: 174
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
3.209.241.40/app-selector.js
3.209.241.40200 OK 765 B URL HTTP/1.1 3.209.241.40/app-selector.js
IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 6e14df4a9caff5943f225c506f316232
80f9aca1a5fec09fdf58e033cf14e834272b4626
788acd9ee7da21637f2c2bda197716bcfb7fc5a58ebbee04b7d483f75b0b8a8c
Analyzer Verdict Alert quad9 Sinkholed
GET /app-selector.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"b3b-16d7370b7f0"
Content-Encoding: gzip
3.209.241.40/node_modules/angular-chart.js/dist/angular-chart.min.js
3.209.241.40200 OK 2.5 kB URL HTTP/1.1 3.209.241.40/node_modules/angular-chart.js/dist/angular-chart.min.js
IP 3.209.241.40:0
File type ASCII text, with very long lines (6168)
Hash fce35cf6fefc3bd06263dbc811c6d4e1
bc6f6bad8e82105bb709b2ff3fe117263b81f12d
43dcc0ae9e9f8ed3bd7698f6a6cf151b26e1471594991fbec9c81c02cf9ed202
Analyzer Verdict Alert quad9 Sinkholed
GET /node_modules/angular-chart.js/dist/angular-chart.min.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:56:52 GMT
ETag: W/"195c-16d737071a0"
Content-Encoding: gzip
3.209.241.40/node_modules/chart.js/dist/Chart.min.js
3.209.241.40200 OK 40 kB URL HTTP/1.1 3.209.241.40/node_modules/chart.js/dist/Chart.min.js
IP 3.209.241.40:0
File type ASCII text, with very long lines (32050)
Hash b7acc59d2da66503bfb9009c27ceaf36
dd8bf7401a5b07b1e7fbf51747456d3c4451fe54
ed557bebdd4f6e7a92d586de2107c1ec38d2d65ec666963fd9f36861d4dff44d
Analyzer Verdict Alert quad9 Sinkholed
GET /node_modules/chart.js/dist/Chart.min.js HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:56:58 GMT
ETag: W/"232c5-16d73708910"
Content-Encoding: gzip
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 717ebcc65cb1390c2509851bac7b5878
1e04e3058329f3809bc01022d441172dcacc1aaa
3c8d41efe14dc75e001ce50aae65e133d90bcb2e2f86b2426cefe7abe4c7b588
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C8D41EFE14DC75E001CE50AAE65E133D90BCB2E2F86B2426CEFE7ABE4C7B588"
Last-Modified: Fri, 24 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5293
Expires: Sun, 26 Mar 2023 00:48:31 GMT
Date: Sat, 25 Mar 2023 23:20:18 GMT
Connection: keep-alive
3.209.241.40/favicon.ico
3.209.241.40200 OK 1.2 kB IP 3.209.241.40:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash d0524f475e7bfaa4732b1ca53b971cd6
a8379dbdf5b078e633edf7a9db98bd777ffc2acd
80ad0c1a072632e2c41b8e4b034d7541180f481d1bad3b0582613df209bc951f
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: image/x-icon
Content-Length: 1150
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=31536000
ETag: "47e-qDedvfWweOYz7fep25i9d3/8Ks0"
3.209.241.40/login.html
3.209.241.40200 OK 273 B IP 3.209.241.40:0
File type ASCII text, with CRLF line terminators
Hash 5f4874b7e2034eb79b53efbc34a6f719
62388c4ccb19db779b992bb6e39c4915829b0b08
2c2e1b9000f7ce4d0871d15fcbf25b8c479a6db4075d53c7a5aa57f898058b09
Analyzer Verdict Alert quad9 Sinkholed
GET /login.html HTTP/1.1
Host: 3.209.241.40
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://3.209.241.40/
HTTP/1.1 200 OK
Date: Sat, 25 Mar 2023 23:20:18 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: nginx/1.12.1
X-Powered-By: Express
Cache-Control: public, max-age=0
Last-Modified: Fri, 27 Sep 2019 15:57:10 GMT
ETag: W/"26c-16d7370b7f0"
Content-Encoding: gzip
push.services.mozilla.com/
52.13.249.229101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.249.229:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 7gb/7MSq8enKXFsPgtkM7w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0SXDJtL4H3pSqLYt5pPjdbgwknM=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Sun, 26 Mar 2023 01:30:48 GMT
Date: Sat, 25 Mar 2023 23:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Sun, 26 Mar 2023 01:30:48 GMT
Date: Sat, 25 Mar 2023 23:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Sun, 26 Mar 2023 01:30:48 GMT
Date: Sat, 25 Mar 2023 23:20:20 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b62c9b9530dd66bb7f03ba2ce3d835da
bf8560766de78dd925e395f59610ab2f1335e565
62a45c1bedd4241448ab43b535518e423b0500901328b3a0b984d758c9b0540d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62A45C1BEDD4241448AB43B535518E423B0500901328B3A0B984D758C9B0540D"
Last-Modified: Fri, 24 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7828
Expires: Sun, 26 Mar 2023 01:30:48 GMT
Date: Sat, 25 Mar 2023 23:20:20 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1ec08d4bd079a92161fc80f41281b5a9
bf61369962342cce85de8f48942b4b150fd2721e
8a8ed12c31d89d71c3cb88f0813ded83939529206461e917dcb0b8bc11abdda4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3fb4d16c-eef2-49cc-ac24-b125a7d6d9e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3589
x-amzn-requestid: 9c09af43-79e8-4734-b28b-4194e0bb1e4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uyE2joAMF50g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6991-7607d33f6301182b591c56e8;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:21 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: pjRA439kqSg5daR_Zuvsf2l45R4oqv3AMWNiMCGQ_C5o2KA8kEd3TQ==
via: 1.1 46673955829b59a6da0ab071e0b7fbea.cloudfront.net (CloudFront), 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:21 GMT
etag: "bf61369962342cce85de8f48942b4b150fd2721e"
content-type: image/jpeg
age: 6179
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6530dbbc16d84b7047fa4bc66364fbf4
a53e0919923151e009e12010c60acb5a9175d37e
e64a2699e763d75a068ee6ceafd4eb2a1922488dc2e052699fb4242f0bf20524
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb3b49ab-f78e-4860-8aae-369eacfe43e3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9486
x-amzn-requestid: b0324b5e-303e-485a-ae57-c001378aa401
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2eRHjaoAMF74w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6ac1-27f002da252bd7ee19802f3d;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:42:25 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: V-lhHgr1lyxVF9XaxHQ6abgEwVC_llAl8opmQ8qKJ7Ee76HWSP1ZoA==
via: 1.1 185f4b03b711932fc7e735c08fdc5abe.cloudfront.net (CloudFront), 1.1 1ec2938341958d70d56193d709c89dee.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:08:53 GMT
age: 4287
etag: "a53e0919923151e009e12010c60acb5a9175d37e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8e19767dbe464134f0ab81b0eadb98fa
007758853c1d1605db69131eb50ff433a4da5f8c
63f1f08cd038e7b6d3316bbdc59a598b01c3bedd1ef04ba1986152e239fa128c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc872b459-32b1-4ecb-a595-95cee4c53ca4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12991
x-amzn-requestid: 16bc16bf-b87e-4ed7-a559-3e900595928e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1smH_kIAMF5oA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6983-21e7ce61788315866c752f28;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:07 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: MOu16Tzq-SiBg8abwfGrqkmSgxnr_WMJO0wSoVcNfIW-xgIPC1MWYQ==
via: 1.1 4b800f7fa2c3fbb9f4f3c505b0df315e.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:07 GMT
etag: "007758853c1d1605db69131eb50ff433a4da5f8c"
content-type: image/jpeg
age: 6193
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08d32734-eed8-49a0-b130-4b792c0776a7.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08d32734-eed8-49a0-b130-4b792c0776a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 073d7b39a5d1d400fce97accc61209ea
83e31c1bda5551eb05d926bc4b16b7a2f5920ab0
3336340f79556f7effd3a56536e49d4951bc40447c4ef549af185d13900ec9cf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F08d32734-eed8-49a0-b130-4b792c0776a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9192
x-amzn-requestid: 973b7d1d-0726-4b07-bf31-f17f700950cc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW1uKHYOoAMFrkQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f698d-079fc061602811d02e9fa3a5;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:37:17 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ffod7RhQg11m1d4Sani8kcGpsg7JUPIcd_BBjNmSS2ggIPXf8SugwA==
via: 1.1 0a166b53605851fe961f5a2952e5a748.cloudfront.net (CloudFront), 1.1 34f8ef0e4c880df0650a814412a26ea6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 21:37:17 GMT
etag: "83e31c1bda5551eb05d926bc4b16b7a2f5920ab0"
content-type: image/jpeg
age: 6183
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 85351059b67b0a42eda7e69a31b3b4b4
b798268806dc2f79f033e5872676019faf0e0cc1
86e163b7159b197d6358ab01333ac6da221de0ebe1c5da8d5cef2977d38625fe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F255e6a5a-97bb-4a35-8a48-4d120747a63c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4000
x-amzn-requestid: 68dc01d7-3eed-48f6-8532-8efaa96cc1ec
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CJpraEqyoAMFgNQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641a2315-3852cc8961365a560d1fa02f;Sampled=0
x-amzn-remapped-date: Tue, 21 Mar 2023 21:35:17 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: I3GuoZ4ZxAtz0sKe3wrW67aitLlCAbaZkiPw23fl0F3FoumJDEnXiQ==
via: 1.1 288c777a01e22425da9494dad7a69734.cloudfront.net (CloudFront), 1.1 d90109c5a0c30f43223e0db85921c5c2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 05:56:24 GMT
age: 62636
etag: "b798268806dc2f79f033e5872676019faf0e0cc1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1782dd235045315ec9b8d127a4a61dfd
4242d3ff0a1ca9f76166585532a815c4b1f15175
c404e097daf50098edf2d46b1d314fb2ab95f1d655293f0a9e123867fc11a982
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa47e8d1c-6343-48dc-966b-71e83875b350.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7778
x-amzn-requestid: 5794fe13-ddf8-4a4d-86e3-53da34af0c98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CW2QAF91IAMFoNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641f6a66-1f6247aa2651e9a35dbccec7;Sampled=0
x-amzn-remapped-date: Sat, 25 Mar 2023 21:40:54 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: ym5ku830id9iQl1QzIRpIo1jrMq7KILCx91VgOKApAkkDpEdLi_lug==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 c9b161639a9353c2354b895548ea9fca.cloudfront.net (CloudFront), 1.1 google
date: Sat, 25 Mar 2023 22:11:26 GMT
age: 4134
etag: "4242d3ff0a1ca9f76166585532a815c4b1f15175"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2