r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 584dc97b4a725bab46f43b0c52ea2f21
4c7d5484aca5c64746185fa7a1e6103672fd6beb
726714a5ebdaa8dda3c669eedad6503ffd2a822cfd0bbdf5eb8a1d8ad43ad5bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "726714A5EBDAA8DDA3C669EEDAD6503FFD2A822CFD0BBDF5EB8A1D8AD43AD5BD"
Last-Modified: Wed, 15 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11497
Expires: Thu, 16 Feb 2023 05:46:27 GMT
Date: Thu, 16 Feb 2023 02:34:50 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9b39c3955aa73765d5c9cbe0d4c52f83
b13bf774f0189207d90d846b86b68fcf2f64f868
f6fea261b800d26e329ced17006c9f5d10b6c490dac3b2276cc7b0e2aa38316c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6FEA261B800D26E329CED17006C9F5D10B6C490DAC3B2276CC7B0E2AA38316C"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14177
Expires: Thu, 16 Feb 2023 06:31:07 GMT
Date: Thu, 16 Feb 2023 02:34:50 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b44c4b5daa307a355e7bab1c83c1ca82
dbd14cd873f1dd4502f277b3f51cb7bc8da0c080
fd4604461cfa002c8a261bb14eb8dda56817db231b9012b2eb38d6dbc2674df5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 16 Feb 2023 01:49:11 GMT
content-type: application/json
age: 2739
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 3534c46dafa4e959cb5f4aba0b1d8cd7
f4aa8774355b04bf1f074aeb73c56c52b32568ab
68b7b6679046611b607c073416e818c6d0391e2953ecc8781b02e57a9b5af306
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68B7B6679046611B607C073416E818C6D0391E2953ECC8781B02E57A9B5AF306"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6902
Expires: Thu, 16 Feb 2023 04:29:52 GMT
Date: Thu, 16 Feb 2023 02:34:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Dc09kgXiT+m5yGbiWzWbJzQPsEmmaUEoc2F/2IFJV4ju/ZS8h580jpYt0lH8yN2OXQcXaO2EltVv4LgFKkAXtw==
x-amz-request-id: J1EEJD74D39ZA2FW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 16 Feb 2023 01:49:10 GMT
age: 2740
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
c2401252.ferozo.com/
200.58.112.96200 OK 1.4 kB IP 200.58.112.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 08eb14bb09cce56dee35d79ffbb77640
56845d091b0acdd539a3d746beff58b8bacc6ddf
fb4d4aa54c29d754e47500ca0ad708dc45158c92bc55d80422f183da3007d4c7
Analyzer Verdict Alert openphish Banco Galicia
fortinet Phishing
GET / HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:50 GMT
Server: Apache
X-Powered-By: PHP/7.4.25
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1403
Keep-Alive: timeout=10, max=200
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 16 Feb 2023 02:34:50 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash ea0ca8da1be2786b4aa8f8d0fce34865
71866f091b4bfeb606abcba25302c0c38933fb06
37eca64edf23acaa559bef3503dd03dfc15bd57a964582f7780973b8cac64e53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3854
Cache-Control: max-age=124577
Content-Type: application/ocsp-response
Date: Thu, 16 Feb 2023 02:34:50 GMT
Etag: "63eccadd-116"
Expires: Fri, 17 Feb 2023 13:11:07 GMT
Last-Modified: Wed, 15 Feb 2023 12:06:53 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 278
use.fontawesome.com/releases/v5.5.0/css/all.css
172.64.132.15200 OK 12 kB URL HTTP/2 use.fontawesome.com/releases/v5.5.0/css/all.css
IP 172.64.132.15:0
File type ASCII text, with very long lines (51030)
Hash c27f1d3046c28474a597a648bed9e534
815b21aa5c92ad4382ca7bdc9f7d59e6b017dc99
e2cb601b622552f390f579fb4c783497f805b944e372e3b314ca15a35c4f58bc
GET /releases/v5.5.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://c2401252.ferozo.com
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 16 Feb 2023 02:34:50 GMT
content-type: text/css
x-amz-id-2: NDDdNkHe1P/vLEu5w0u3O56pKekCVvp/QgkivuNUM54TBWSC/RkeDh1062LoFa1PyqBMI4W7uN8=
x-amz-request-id: 6S5GTQRAESR10FW8
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:32 GMT
etag: W/"1cc6c92172d124fbd305ba3d8e263333"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 21253
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=m1z0nruOKUtB%2FK%2FDbvVV50B1u0Wo8xGpid5YMpoGLqf15J%2FKFjpwJ%2BqCCwcL02o1Wa3kB7TIctv8d%2B%2FeMYbyzsDaSqvw60feTjlj2Cwz%2Fbbqs%2FyuAsfOuycb3w%2BYeDkOZb%2FIUufd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79a2e2f11f1023f6-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c2401252.ferozo.com/assets/keyboard.css
200.58.112.96200 OK 278 B URL HTTP/1.1 c2401252.ferozo.com/assets/keyboard.css
IP 200.58.112.96:0
File type ASCII text, with CRLF line terminators
Hash a5d2d0a1837623406d0cb2e560323ee7
911a453441ae4f3ad5153f6d8e9ab4e0db972049
f55c9f92dbd10dd9195fa810aba195c3e724148b21e119a58b52dd668ff9e536
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/keyboard.css HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 14 Feb 2023 00:15:57 GMT
ETag: "1f7-5f49dde1c6940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 278
Keep-Alive: timeout=10, max=200
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, Pragma, Expires, Cache-Control, Retry-After, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 16 Feb 2023 02:14:54 GMT
age: 1196
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
c2401252.ferozo.com/app.css
200.58.112.96200 OK 487 B URL HTTP/1.1 c2401252.ferozo.com/app.css
IP 200.58.112.96:0
Hash 4bb4b49c106cc605f9717733df27aeeb
9758e68b4d39144333cda81196f03d9e9bfafba5
bc9096a154cb2f798a416ca2a78b723c66d0640659428202726b757d77cd0d01
Analyzer Verdict Alert openphish Banco Galicia
GET /app.css HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 14 Feb 2023 17:34:15 GMT
ETag: "4b4-5f4ac5f5c73c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 487
Keep-Alive: timeout=10, max=200
Content-Type: text/css
c2401252.ferozo.com/app.js
200.58.112.96200 OK 1.2 kB URL HTTP/1.1 c2401252.ferozo.com/app.js
IP 200.58.112.96:0
Hash 3cd9ecbc32fd46948e837a780fa79009
15692d1c92d0d9b719c9d3e3b85ce80e6f0ca243
e39b73ec6c4c441de65b2cae1863a7c06910a383e3f7739388aa1f2ead084212
Analyzer Verdict Alert openphish Banco Galicia
fortinet Phishing
GET /app.js HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:50 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 14 Feb 2023 17:24:19 GMT
ETag: "f56-5f4ac3bd636c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1240
Keep-Alive: timeout=10, max=200
Content-Type: application/javascript
c2401252.ferozo.com/assets/styles.css
200.58.112.96200 OK 43 kB URL HTTP/1.1 c2401252.ferozo.com/assets/styles.css
IP 200.58.112.96:0
File type Unicode text, UTF-8 (with BOM) text, with very long lines (418), with CRLF line terminators
Hash d2be34c9394c5f41dc3d4e357c1212bd
aaa69bd1cc6391cdf92a0db8426ed03713fdee05
65769f5b5da38534474cac0073bbb541597cf75dd4981525ad950e0b5f39e7b8
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/styles.css HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:50 GMT
Server: Apache
Last-Modified: Tue, 14 Feb 2023 19:11:48 GMT
ETag: "40e02-5f4adbc3a2500-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 42745
Keep-Alive: timeout=10, max=199
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9510916a15d80ca2eb9fc98904cb93ee
420495d8896aeaf34e73a1c6ad8d95c882553c11
4391a82749b95a599bd1605b98b665772676ea8707765b8d9f8451774f6a709f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4391A82749B95A599BD1605B98B665772676EA8707765B8D9F8451774F6A709F"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15845
Expires: Thu, 16 Feb 2023 06:58:55 GMT
Date: Thu, 16 Feb 2023 02:34:50 GMT
Connection: keep-alive
c2401252.ferozo.com/assets/jquery-1.7.2.min.js
200.58.112.96200 OK 34 kB URL HTTP/1.1 c2401252.ferozo.com/assets/jquery-1.7.2.min.js
IP 200.58.112.96:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32411), with CRLF line terminators
Hash 62e225aa8c000df6af0190e25eebe457
e582ae873609aacc79050c84320b6efe21a63610
7b2030df78cbc1d5b1965bd143f75433a092e75e3b002d52d9fdffbaec59cd7e
Analyzer Verdict Alert openphish Banco Galicia
fortinet Phishing
GET /assets/jquery-1.7.2.min.js HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:50 GMT
Server: Apache
Last-Modified: Tue, 14 Feb 2023 00:15:57 GMT
ETag: "1727d-5f49dde1c6940-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 33636
Keep-Alive: timeout=10, max=199
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
35.83.217.74101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.83.217.74:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 0HFDTCuWEGyJtkn0Tff+Lw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: jD5WKnl86LsAmTovmoWwM5jfxfA=
use.fontawesome.com/releases/v5.5.0/webfonts/fa-regular-400.woff2
172.64.132.15200 OK 15 kB URL HTTP/2 use.fontawesome.com/releases/v5.5.0/webfonts/fa-regular-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 14844, version 1.0\012- data
Hash bdadb6ce95c5a2e7b673940721450d3c
f1e8cb035436d638da83d4696248cec831dcbe7a
92ba7bfaa43a35c94353e96860d99376313ee9b5fce6124d4e64067280f9a841
GET /releases/v5.5.0/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://c2401252.ferozo.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 16 Feb 2023 02:34:51 GMT
content-type: font/woff2
content-length: 14844
x-amz-id-2: CqWUVT4ETSGEKzG4gwRcArWxWSbKzVhY8tdNJOUDAkfDzwgqG35W/LwjajANmm45Fnc3oWb1oJs=
x-amz-request-id: FWFCTZ6XM9E05D1F
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Wed, 30 Jun 2021 15:43:51 GMT
etag: "bdadb6ce95c5a2e7b673940721450d3c"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 21253
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=UpSV03CqDrzxqEZh%2BpE%2Fp2Xvomas4xcJ5AcasGq19yllgfgG85sTUetlysXs4NXdQe%2Fftl6hyFAGViiW83UfUUFmHXMCQ2aG39rp0nCMBY9hN9MP0rDfbDnQfNEN1NITkYUxf3YO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79a2e2f5ca0923f6-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c2401252.ferozo.com/assets/logo-galicia-new.png
200.58.112.96200 OK 3.6 kB URL HTTP/1.1 c2401252.ferozo.com/assets/logo-galicia-new.png
IP 200.58.112.96:0
File type PNG image data, 148 x 39, 8-bit/color RGBA, non-interlaced\012- data
Hash 3529d3d714f5550a9f669230656f925b
01d37bd9daa559ba7eeb3441c810a4faf96c417c
c1ac115788f922e9bb68fc1e4710ed077bcae6e5014bc163c434b598e1e17ec9
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/logo-galicia-new.png HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 14 Feb 2023 03:01:16 GMT
ETag: "e05-5f4a02d545700"
Accept-Ranges: bytes
Content-Length: 3589
Keep-Alive: timeout=10, max=200
Content-Type: image/png
c2401252.ferozo.com/images/commons/l-accesos.png
200.58.112.96404 Not Found 196 B URL HTTP/1.1 c2401252.ferozo.com/images/commons/l-accesos.png
IP 200.58.112.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert openphish Banco Galicia
GET /images/commons/l-accesos.png HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/assets/styles.css
HTTP/1.1 404 Not Found
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=10, max=198
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
c2401252.ferozo.com/images/commons/icon-commons.png
200.58.112.96404 Not Found 196 B URL HTTP/1.1 c2401252.ferozo.com/images/commons/icon-commons.png
IP 200.58.112.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert openphish Banco Galicia
GET /images/commons/icon-commons.png HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/assets/styles.css
HTTP/1.1 404 Not Found
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=10, max=200
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
c2401252.ferozo.com/assets/logo-ob.png
200.58.112.96200 OK 41 kB URL HTTP/1.1 c2401252.ferozo.com/assets/logo-ob.png
IP 200.58.112.96:0
File type PNG image data, 155 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash c851c4526ba661d60b4b762e3f08a0cd
64cee333c93089d045001c0f6130448b9e9312b5
8ba5487a3441be54f0d77878bdde04863c7918e7551eae45e7d4d039d701d313
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/logo-ob.png HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 14 Feb 2023 03:01:16 GMT
ETag: "a122-5f4a02d545700"
Accept-Ranges: bytes
Content-Length: 41250
Keep-Alive: timeout=10, max=200
Content-Type: image/png
c2401252.ferozo.com/images/commons/icon-buttons.png
200.58.112.96404 Not Found 196 B URL HTTP/1.1 c2401252.ferozo.com/images/commons/icon-buttons.png
IP 200.58.112.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 62962daa1b19bbcc2db10b7bfd531ea6
d64bae91091eda6a7532ebec06aa70893b79e1f8
80c3fe2ae1062abf56456f52518bd670f9ec3917b7f85e152b347ac6b6faf880
Analyzer Verdict Alert openphish Banco Galicia
GET /images/commons/icon-buttons.png HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/assets/styles.css
HTTP/1.1 404 Not Found
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Content-Length: 196
Keep-Alive: timeout=10, max=199
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
c2401252.ferozo.com/assets/logo-norton-secured.png
200.58.112.96200 OK 55 kB URL HTTP/1.1 c2401252.ferozo.com/assets/logo-norton-secured.png
IP 200.58.112.96:0
File type PNG image data, 83 x 41, 8-bit/color RGBA, non-interlaced\012- data
Hash c775ec4a1ad4351e8aa7eddc2749d027
d5110d97f622fc23a512f4622d631ee67319d21d
35cb5eab45d68fb30d35b279656e72d0d55c16a133b194aaa0282b9ee053a8a6
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/logo-norton-secured.png HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Last-Modified: Tue, 14 Feb 2023 03:01:16 GMT
ETag: "d56d-5f4a02d545700"
Accept-Ranges: bytes
Content-Length: 54637
Keep-Alive: timeout=10, max=199
Connection: Keep-Alive
Content-Type: image/png
c2401252.ferozo.com/assets/favicon.ico
200.58.112.96200 OK 1.6 kB URL HTTP/1.1 c2401252.ferozo.com/assets/favicon.ico
IP 200.58.112.96:0
File type PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash b700b544f2fa87e37e6b728fef00fcb0
c0735fa743392c2f3032c22d241854b88832cdb7
f20a33fd40173f122bec15a105374059fb3ec612d51146485ed84ef0001f2f03
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/favicon.ico HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Last-Modified: Tue, 14 Feb 2023 14:52:57 GMT
ETag: "617-5f4aa1e81e440"
Accept-Ranges: bytes
Content-Length: 1559
Keep-Alive: timeout=10, max=199
Connection: Keep-Alive
Content-Type: image/x-icon
c2401252.ferozo.com/assets/login-banner-07.jpg
200.58.112.96200 OK 104 kB URL HTTP/1.1 c2401252.ferozo.com/assets/login-banner-07.jpg
IP 200.58.112.96:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=4, orientation=upper-left, xresolution=62, yresolution=70, resolutionunit=2], baseline, precision 8, 566x380, components 3\012- data
Size 104 kB (103852 bytes)
Hash 6977e160e3a70aff4dc1e73d9a3e6f8e
df39f46876fca4f5f886cebea5d0fb765699ceef
31afa957108f620ee57fedf4b247b461f88e30f921b6a6216576b9f42d72fbad
Analyzer Verdict Alert openphish Banco Galicia
GET /assets/login-banner-07.jpg HTTP/1.1
Host: c2401252.ferozo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://c2401252.ferozo.com/
HTTP/1.1 200 OK
Date: Thu, 16 Feb 2023 02:34:51 GMT
Server: Apache
Last-Modified: Tue, 14 Feb 2023 03:01:16 GMT
ETag: "195ac-5f4a02d545700"
Accept-Ranges: bytes
Content-Length: 103852
Keep-Alive: timeout=10, max=199
Connection: Keep-Alive
Content-Type: image/jpeg
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5392
Expires: Thu, 16 Feb 2023 04:04:44 GMT
Date: Thu, 16 Feb 2023 02:34:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5392
Expires: Thu, 16 Feb 2023 04:04:44 GMT
Date: Thu, 16 Feb 2023 02:34:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5392
Expires: Thu, 16 Feb 2023 04:04:44 GMT
Date: Thu, 16 Feb 2023 02:34:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5392
Expires: Thu, 16 Feb 2023 04:04:44 GMT
Date: Thu, 16 Feb 2023 02:34:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash c9333ebd8634e6b287e0b58265edf328
6ea57e1529609f015e198c72d2455c758f5b45ab
6bc07733856e4fbefbb42e5ad6423539ccbc855c66cf4279bf515997ea8933d2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6BC07733856E4FBEFBB42E5AD6423539CCBC855C66CF4279BF515997EA8933D2"
Last-Modified: Tue, 14 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5392
Expires: Thu, 16 Feb 2023 04:04:44 GMT
Date: Thu, 16 Feb 2023 02:34:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fbf08b9-9c96-48f8-978f-f74255aeda16.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fbf08b9-9c96-48f8-978f-f74255aeda16.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1dc057a780f575d4975ebdd480946364
2f6ce606ec30aa95dfb52af523f12c28efcd18e4
a9937cdfabaf18eff0dbeaa95ed93023e52d12167193ced665b354f85b672aef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fbf08b9-9c96-48f8-978f-f74255aeda16.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5443
x-amzn-requestid: f0c2fa8d-5f99-4cf0-965e-c3cc3360033e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZlygFtwoAMFwqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed500f-4aca9e2c157dce49115f97a5;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:35:11 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XgON0GAGU7hD34yUORZmIryWobZ9unpPofXS07vU-O3A254SeczQFA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:38:57 GMT
etag: "2f6ce606ec30aa95dfb52af523f12c28efcd18e4"
content-type: image/jpeg
age: 17755
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F088042eb-8368-43cc-87ea-092286978e94.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F088042eb-8368-43cc-87ea-092286978e94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ebf2b034739bd071054ebf80a1ff595d
7e4585aeab4a996e3fbfd37968bb02931da854a9
d6a6c170482ba37606716f8ef9c6edcbc8b77f3105459b1c5d65687ac1371c16
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F088042eb-8368-43cc-87ea-092286978e94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10755
x-amzn-requestid: 2f618b25-3ded-41b9-bccc-342418ee044f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZmNwFUjIAMFvoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed50be-44bde92d5eb1132233a6b160;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:38:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bmiv1bevUuK-iqhxFkFwOWWFkG281vjBZG2tY8_9_NINkaLZW7Pl4g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:55:01 GMT
age: 16791
etag: "7e4585aeab4a996e3fbfd37968bb02931da854a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89ef5d48-1788-42ed-8783-74786ed5e58e.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89ef5d48-1788-42ed-8783-74786ed5e58e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4b987ea3c521e264bfd29dadb0e54af
81489568b473d2595e4bf13195eaf02c743db411
c0f2bc87d33a95bafa287a33c2845447c3f4a53e193231880f799df72c894985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F89ef5d48-1788-42ed-8783-74786ed5e58e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10754
x-amzn-requestid: d752ab38-bca4-4314-87cf-b7b4d6c14edd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZmNwGtgoAMFveg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed50be-00692d922fe8e97e27cbc02a;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:38:06 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1Ajm2cr1EE6NunZgOJVg5RXfyjeu0TsLbUxNelYgM4JjdCZDhBtNSg==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:38:53 GMT
etag: "81489568b473d2595e4bf13195eaf02c743db411"
content-type: image/jpeg
age: 17759
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9d3d9db-55d4-4430-857b-e062406727dd.jpeg
34.120.237.76200 OK 4.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9d3d9db-55d4-4430-857b-e062406727dd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 74582100d5b61f9773dd3436fbbfbc20
7db7cac233e40cbc057e85403b7a60b20593a4e5
eacbab03bcbc1a1a8cdc9bb2c8d793eb29c7f577489cd453e7ddc08fe9ee48e5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb9d3d9db-55d4-4430-857b-e062406727dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4056
x-amzn-requestid: e06bcf49-9a6c-4889-8dba-1ca146183716
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZmVwHvyoAMF7HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed50f1-2dd38ed55b4756940d312d97;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:38:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: o6QrZzWOHeMy79WVpgwAsFFAJUqQQo3ygrbyw9s7rVHPh_lo6j9xQA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:38:57 GMT
etag: "7db7cac233e40cbc057e85403b7a60b20593a4e5"
content-type: image/jpeg
age: 17755
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33b1c914-808f-4087-bb21-b717b26f3496.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33b1c914-808f-4087-bb21-b717b26f3496.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a4e84c4a1c0ed65e3bf372657fd7e496
e38c5908a977b024db07283a627c865988a1ed19
0fcfe03ec49c359f171162e3fca564bb105e50f191ed73fc79d54a71ca560410
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33b1c914-808f-4087-bb21-b717b26f3496.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5697
x-amzn-requestid: 72be2345-9c59-4845-95eb-25df25ec9717
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AZlzzHc8IAMFRMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ed5018-3ce084a057dfb9a8400c743b;Sampled=0
x-amzn-remapped-date: Wed, 15 Feb 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XE6c9P_jyohdKOZ_iwMTKI1V1Si2UQ8qznV7u4PfAbzjyq7qMxj-gA==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 21:59:59 GMT
age: 16493
etag: "e38c5908a977b024db07283a627c865988a1ed19"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 504b69ec2b6350345c36777959b0765a
c302824325b8f0839c7de54af9c5bd02541e4269
6e3a5b1cd7d17a9f448b8189d5683567269b3b3d461838770482283898008f39
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9fe38f96-4b04-43d2-9644-5b2f7cd0c0c9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14477
x-amzn-requestid: 2544b5cc-3fb0-4536-88ec-8cb9044fb612
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ANtsXFBYoAMF6tA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e88fe8-452901f67af9f5d95ccc61c3;Sampled=0
x-amzn-remapped-date: Sun, 12 Feb 2023 07:06:16 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 18cnMMCsvwUvJVsvM8s2v0k3P6WL1kzo4S9dOvsskdYEBk748cj3Cw==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Wed, 15 Feb 2023 05:17:43 GMT
age: 76629
etag: "c302824325b8f0839c7de54af9c5bd02541e4269"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2