Overview

URLplantproductupdate.com/HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx
IP 104.16.207.86 ()
ASN#13335 CLOUDFLARENET
UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed2022-11-09 23:47:58 UTC
StatusLoading report..
IDS alerts0
Blocklist alert1
urlquery alerts No alerts detected
Tags None

Domain Summary (9)

Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
plantproductupdate.com (5) 0 2021-08-03 14:41:55 UTC 2022-11-09 15:30:39 UTC 104.16.208.86 Unknown ranking
cdnjs.cloudflare.com (4) 235 2015-04-17 20:46:33 UTC 2022-11-09 08:11:02 UTC 104.17.25.14
img-getpocket.cdn.mozilla.net (6) 1631 2018-06-21 23:36:00 UTC 2020-02-19 04:43:25 UTC 34.120.237.76
push.services.mozilla.com (1) 2140 2014-10-24 08:27:06 UTC 2020-05-03 10:09:39 UTC 54.186.209.73
r3.o.lencr.org (5) 344 No data No data 23.36.77.32
ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2020-05-02 20:58:10 UTC 93.184.220.29
content-signature-2.cdn.mozilla.net (1) 1152 No data No data 34.160.144.191
contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-11-09 05:26:04 UTC 34.117.237.239
code.jquery.com (1) 634 2012-05-21 17:28:02 UTC 2020-04-21 12:46:20 UTC 69.16.175.42

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro
 No alerts detected

Blocklists

OpenPhish
 No alerts detected

PhishTank
 No alerts detected

Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-11-09 2 plantproductupdate.com/HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx Phishing

mnemonic secure dns
 No alerts detected

Quad9 DNS
 No alerts detected


Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 104.16.207.86
Date UQ / IDS / BL URL IP
2023-01-29 22:22:25 +0000 0 - 4 - 0 pt.umusic-online.com/4YZ5-688M-MAAE2-5P7AJ-1/ (...) 104.16.207.86
2023-01-28 11:30:52 +0000 0 - 1 - 0 emailfredolsencruises.com/t/8ID-85PAG-TY62J-5 (...) 104.16.207.86
2023-01-26 09:41:09 +0000 0 - 0 - 1 netzerocarbonupdate.com/HY8-860ZH-CMZ2FG-516J (...) 104.16.207.86
2023-01-20 13:26:44 +0000 0 - 0 - 203 email.aaofoo.com/6TI7-68B4-32G0SE-5P9N5-1/c.aspx 104.16.207.86
2023-01-12 10:48:50 +0000 0 - 1 - 0 firstaid4less-email.co.uk/3SWC-1IVVE-7Q633K-1 (...) 104.16.207.86


Last 5 reports on ASN: CLOUDFLARENET
Date UQ / IDS / BL URL IP
2023-02-01 15:26:02 +0000 0 - 0 - 0 email.infos-assoconnect.com/c/eJxc0Mtq8zAUBOC (...) 188.114.97.1
2023-02-01 15:25:57 +0000 0 - 4 - 0 info-education.pt/ 172.67.145.172
2023-02-01 15:24:39 +0000 0 - 6 - 27 qatskevpgngsn.com/ 188.114.96.1
2023-02-01 15:21:58 +0000 0 - 2 - 0 rencevre.com/ 104.21.76.194
2023-02-01 15:21:28 +0000 0 - 0 - 2 namesonframes.co.uk/ 104.21.5.202


Last 2 reports on domain: plantproductupdate.com
Date UQ / IDS / BL URL IP
2022-11-09 23:47:58 +0000 0 - 0 - 1 plantproductupdate.com/HY8-83D2I-8C7F81788D12 (...) 104.16.207.86
2022-11-09 23:46:55 +0000 0 - 0 - 1 plantproductupdate.com/HY8-83D2I-A718FH-4Z0O7 (...) 104.16.209.86


Last 5 reports with similar screenshot
Date UQ / IDS / BL URL IP
2023-01-22 01:03:11 +0000 0 - 0 - 2 digitalpharmaupdate.com/HY8-85AJ7-EF34038F785 (...) 104.16.210.86
2023-01-09 13:41:18 +0000 0 - 0 - 1 financialcustomerinsight.com/HY8-85UG4-6D2321 (...) 104.16.207.86
2022-12-13 10:12:03 +0000 0 - 0 - 1 financialcustomerinsight.com/HY8-84XQT-2D711C (...) 104.16.207.86
2022-11-23 10:06:09 +0000 0 - 0 - 1 digitalpharmaupdate.com/hy8-83wla-558dd86d89a (...) 104.16.210.86
2022-11-22 09:31:51 +0000 0 - 0 - 1 digitalpharmaupdate.com/hy8-83rla-66866824b89 (...) 104.16.207.86

JavaScript

Executed Scripts (7)

Executed Evals (0)

Executed Writes (0)


HTTP Transactions (26)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3021
Expires: Thu, 10 Nov 2022 00:38:08 GMT
Date: Wed, 09 Nov 2022 23:47:47 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3972
Cache-Control: max-age=128969
Date: Wed, 09 Nov 2022 23:47:47 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 11:37:16 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx HTTP/1.1 
Host: plantproductupdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

search
                                         104.16.208.86
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 09 Nov 2022 23:47:47 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=s.38aP9nUORGBHC6XcfpjnqHPkoPuFhAdRVt7B4s2Oo-1668037667-0-ATKbIiwoRc3uggEPi2hq0mWCYmTtzYInQn7RksTbnubkNfngFHorBvPC+YH1i8k0MhcfbZY2O+UvGnDI3YucFAw=; path=/; expires=Thu, 10-Nov-22 00:17:47 GMT; domain=.plantproductupdate.com; HttpOnly; SameSite=None __cflb=0H28vbka3Tp63XFuYsqHHrawjcNu2Nbr6o5pWEBqEha; SameSite=Lax; path=/; expires=Thu, 10-Nov-22 22:47:47 GMT; HttpOnly
Server: cloudflare
CF-RAY: 767a6f7d38d8b50b-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (519), with CRLF line terminators
Size:   1386
Md5:    129485e29ad67a6f01379838e0e3232f
Sha1:   ce83e0653eb97b01b58d76d942a16fead554dadb
Sha256: 416f31a22fa4ace0d824f135271b4190222204ff039fbf0da298f4378062e3c5

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2870
Expires: Thu, 10 Nov 2022 00:35:37 GMT
Date: Wed, 09 Nov 2022 23:47:47 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
x-amz-id-2: ST4yG8hJdQCkMmOsQCrKcqzT7HXqmqpBH49Xap9wX7+TjqqyTijaaffBa0F6EdOyCyVw3qXd7p0=
x-amz-request-id: 2SJ81MJSP2930WGM
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 09 Nov 2022 22:49:09 GMT
age: 3518
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    67d5a988edcda47bc3b3b3f65d32b4b6
Sha1:   d4f0e0da8b3690cc7da925026d3414b68c7d954f
Sha256: 55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Wed, 09 Nov 2022 23:47:47 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://plantproductupdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 09 Nov 2022 23:47:47 GMT
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 9082888
expires: Mon, 30 Oct 2023 23:47:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6GSvG%2BNl4rHTneDdPM%2B8wW4%2FNViDChgz8ItABol%2FT%2B1RMwsnNe1n6oYcoL%2FW9CPqHmOv0g46L35MCBl6gzSkDHfQNetnp55tmPC8WjDm4qBquW1pXDUgbBhGeUvDMlu6o3uOd3T%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 767a6f8048ed1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65447)
Size:   27938
Md5:    d900ca08873ee57d40616d39a44cc0aa
Sha1:   7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
Sha256: 1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b
                                        
                                            GET /ajax/libs/jqueryui/1.12.1/jquery-ui.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://plantproductupdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 09 Nov 2022 23:47:47 GMT
content-length: 57137
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ec4-3dee5"
last-modified: Mon, 04 May 2020 16:11:48 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13478116
expires: Mon, 30 Oct 2023 23:47:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fNUhTEltc0PwDkomfLEe7uHp74dVMGS%2BKATjlbxCOaBCRf7pqZMXQpj0v6Utu4iyi1FKS6km%2BtbmN3bT8%2F6IdN7WIk%2Fj6Wm%2BDalZjF7PTA84oL4UO0ZhlpY3z8VZpJRaUrLVt8Vp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 767a6f8048f11c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32074)
Size:   57137
Md5:    8486da289409cd85cf8b6fd169c721c4
Sha1:   72d46568b1412639c71f218761c4e637773c4bfc
Sha256: 552f8314a7e6f840ab958f4a71ee38b747deb74634ea9797806f38c95b48c3ef
                                        
                                            GET /ajax/libs/jquery-validation-unobtrusive/3.2.12/jquery.validate.unobtrusive.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://plantproductupdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 09 Nov 2022 23:47:47 GMT
content-length: 1947
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "6021e167-16ef"
last-modified: Tue, 09 Feb 2021 01:12:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 13486433
expires: Mon, 30 Oct 2023 23:47:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sCut7zoBwLgT8hX1MTJ%2FLfIMneGrBmjzRIw5ogGu2eelGlR5wTttiMvsxq4XVhQwMq60Vd3zj7zpdhV3C%2FSy5QmyzV767me3yXyNXcHBcLSOj%2FkeDc3k3IhjaP15hDNGXCxnxXLc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 767a6f8048f71c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (5607), with CRLF line terminators
Size:   1947
Md5:    b93f73af47ad554d205de896e64e4e2e
Sha1:   b5afe1497b81980a5ae6d4dd9bc40e0efb5acef5
Sha256: 69637730908765a4b1ffb1e0584924ce47950d8aca199e951c5de053c8f697b3
                                        
                                            GET /jquery-1.11.0.min.js HTTP/1.1 
Host: code.jquery.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://plantproductupdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         69.16.175.42
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 09 Nov 2022 23:47:47 GMT
content-encoding: gzip
content-length: 33357
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1787d"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1668037667.dop203.sk1.t,1668037667.cds258.sk1.hn,1668037667.cds206.sk1.c
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (32341)
Size:   33357
Md5:    665423f5df5f30d3e991653d594fd1cd
Sha1:   ad2be638c57e37aa00adacc89d233d70d5c5c927
Sha256: fce13e871876bba3561cf18484a8f4fcab2d1b954079b78c1d8ff7a727583b33
                                        
                                            GET /ajax/libs/jquery-validate/1.19.3/jquery.validate.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://plantproductupdate.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

search
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Wed, 09 Nov 2022 23:47:47 GMT
content-length: 6996
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "60c342a7-1b54"
last-modified: Fri, 11 Jun 2021 11:01:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1190839
expires: Mon, 30 Oct 2023 23:47:47 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jKXdmBwfCTnDFokPrn70S84pNdojJ1jVlyiGCmQlVjeUER0G57D9CSe231Kpyss2GVER%2F%2BRL61hqIXaoU10nF0bCva%2BDR3SNwU83Ozqve6MNuP8Z6DNNahQhFWfCd%2BorOlDnS%2FW5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 767a6f80790e1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (24292)
Size:   6996
Md5:    ba5982f457768a57088c572b54db5973
Sha1:   82841900939e7c0e2f2b9436658424f4ad0fc5b5
Sha256: 26dac46cc168804ca4c3edf998fe419343d9d28704e15c52c003dc0792b7496f
                                        
                                            GET /css/style.css HTTP/1.1 
Host: plantproductupdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://plantproductupdate.com/HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx
Cookie: __cflb=0H28vbka3Tp63XFuYsqHHrawjcNu2Nbr6o5pWEBqEha

search
                                         104.16.208.86
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 09 Nov 2022 23:47:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"1d8f3947a4ce3ce"
Last-Modified: Tue, 08 Nov 2022 17:06:44 GMT
CF-Cache-Status: MISS
Set-Cookie: __cf_bm=JAQbNJt3S74FXi0K4VpGepza40Cvig_QfXlb10Ny_LQ-1668037668-0-AZdq+jT9AlFrW91+7VqE21hpU9LOLsNLoZufA7fgJezTkawKkcVrlnIKa3L9/2C6cMkktPEa59zSbC7wVGEQIyw=; path=/; expires=Thu, 10-Nov-22 00:17:48 GMT; domain=.plantproductupdate.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 767a6f7fead5b50b-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   842
Md5:    f41ab17248d60fbff62168bea5fa1c16
Sha1:   338ca4e5624f00389a094412f91e4f751d464d32
Sha256: 61a7e7644410166427d0bbfdc9362290d552c2d33ca8f4fc2deac6c32e2f858b
                                        
                                            GET /css/NewStyleBeta.css HTTP/1.1 
Host: plantproductupdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://plantproductupdate.com/HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx
Cookie: __cflb=0H28vbka3Tp63XFuYsqHHrawjcNu2Nbr6o5pWEBqEha

search
                                         104.16.208.86
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Wed, 09 Nov 2022 23:47:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"1d8f3947a4cc1de"
Last-Modified: Tue, 08 Nov 2022 17:06:44 GMT
CF-Cache-Status: MISS
Set-Cookie: __cf_bm=yAX_fS_nr6D53s5lyyLpV.6xuz7qKA4Kl96Qxki0b7c-1668037668-0-AeH7ub4iB2aZZn5H5rfTiI3TPsYEyszFIkES3hDc07sff+XeC2WmqTPRCI7qMtlXj/R9XlxqCPvzWM227AA94kY=; path=/; expires=Thu, 10-Nov-22 00:17:48 GMT; domain=.plantproductupdate.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 767a6f7fee66b4eb-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  ASCII text, with very long lines (526), with CRLF line terminators
Size:   2901
Md5:    b6244a251bb750f0cd60f30d922b2239
Sha1:   0fc81308a2437b84944e8e30762334de2369f767
Sha256: 7d655b16c3f4d31d8591adc40c86121b2640c757ce0784fa0bfcc5ddd43740fe
                                        
                                            GET /images/spacer.gif HTTP/1.1 
Host: plantproductupdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://plantproductupdate.com/HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx
Cookie: __cflb=0H28vbka3Tp63XFuYsqHHrawjcNu2Nbr6o5pWEBqEha

search
                                         104.16.208.86
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Date: Wed, 09 Nov 2022 23:47:48 GMT
Content-Length: 43
Connection: keep-alive
ETag: "1d8f3947a4cea2b"
Last-Modified: Tue, 08 Nov 2022 17:06:44 GMT
CF-Cache-Status: MISS
Accept-Ranges: bytes
Set-Cookie: __cf_bm=sUtOSiYKqlBuV2EqmGzQAMKVVLJ1IBPDwb1IOe99z3w-1668037668-0-ASGpL5RfuyWDxXffxZufKjAlJdU4gD3UDBY/Mv1Z9dxVVJe0Z7GHkQ1+GmVN2WEeX0xN+JV02aI5wY97lG5SN4g=; path=/; expires=Thu, 10-Nov-22 00:17:48 GMT; domain=.plantproductupdate.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 767a6f817ae3b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  GIF image data, version 89a, 1 x 1\012- data
Size:   43
Md5:    221d8352905f2c38b3cb2bd191d630b0
Sha1:   d804b495cb9b84b9007a25b5d85f9ae674004cde
Sha256: 89fe0ee6020314794fc2cfeacf3d10c31050cfe56f8ebddf1ed0a33fbe941fa7
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 6186
Cache-Control: max-age=126127
Date: Wed, 09 Nov 2022 23:47:48 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 10:49:55 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: plantproductupdate.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://plantproductupdate.com/HY8-83D2I-8C7F81788D121A1FA718FH9AE13B2F8F78C62C/uns.aspx
Cookie: __cflb=0H28vbka3Tp63XFuYsqHHrawjcNu2Nbr6o5pWEBqEha

search
                                         104.16.208.86
HTTP/1.1 404 Not Found
Content-Type: text/html; charset=utf-8
                                        
Date: Wed, 09 Nov 2022 23:47:48 GMT
Transfer-Encoding: chunked
Connection: keep-alive
CF-Cache-Status: MISS
Set-Cookie: __cf_bm=NMdzZQsHXivZz6kx4.5Tyn4sydAUkWmkDoOtewQZtAI-1668037668-0-AYoenh0QadN/hXzbrAvKc36yHkRQ2dAxDBxqsi7bjs64q3Y2+2WJrtNgWz7qb5ui+8+ZtQN8oGVK7qmYFE9Iwfo=; path=/; expires=Thu, 10-Nov-22 00:17:48 GMT; domain=.plantproductupdate.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 767a6f82f840b4eb-OSL
Content-Encoding: gzip
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (501), with CRLF line terminators
Size:   1509
Md5:    54135f45bab81cb68c0e8ecb051d4292
Sha1:   1bae3a72e44aa6954dff496f56dd727967350976
Sha256: 6813d891525e49d82ef4aab0eb32dd0b98fad3ddacc75563edc7e5ba466b01db
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hO8Z5vI5vn2JujQgXEqxtA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

search
                                         54.186.209.73
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: LKZwodLuFFKyzlH9UcgqaMSFlDw=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 10 Nov 2022 01:52:38 GMT
Date: Wed, 09 Nov 2022 23:47:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 10 Nov 2022 01:52:38 GMT
Date: Wed, 09 Nov 2022 23:47:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

search
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7489
Expires: Thu, 10 Nov 2022 01:52:38 GMT
Date: Wed, 09 Nov 2022 23:47:49 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F571618d6-4a7c-4655-9a3f-1a43863258d2.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5209
x-amzn-requestid: 065bcafb-c718-4313-a11e-86c96f43fb88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmCeF3gIAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d42-16886ef54cf2da932a8cefad;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cqWFX2xWvC_wT6zQTwfBN09QlPMejOPIWxPt0N-ZQeqSjZy12y1GJw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:51:08 GMT
etag: "7392dfd49233a2653b99feed8b73a8deea709d24"
age: 7001
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5209
Md5:    2ce8780a7be7c6df77fe53398560075f
Sha1:   7392dfd49233a2653b99feed8b73a8deea709d24
Sha256: e6d97c56796c69609430d9e1d802fd8b1169e3fceb749d034aa827fda30383a9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1301540a-8618-4725-97e7-ac03773f7ed0.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9283
x-amzn-requestid: c800cccd-80cc-4cd6-8856-66cfd07141c9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmC2HnpIAMF3kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d45-686eac2b6c65b8dd41dfb44a;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:05 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: y9jHtcAFR3KyG8gWBDJ13rjekqGz6dUoqn0d_yHYW9beFkeCGSxbsA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:51:10 GMT
etag: "9caf2466f70995d5763b970f916c4944b364a4ff"
age: 6999
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9283
Md5:    a929256680885031f55121c35d626bcc
Sha1:   9caf2466f70995d5763b970f916c4944b364a4ff
Sha256: 9366db1c171fe9dae5946198415c9a02005a432fccd359896f94bce874c91027
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F209aa2c7-5455-4bcc-a570-020a64d657cc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10006
x-amzn-requestid: 322dbafd-30b5-43b5-a077-aa729ffbc91f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWl_1EKfoAMFS6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d31-242c7c5c5f670e7332c2fa36;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:35:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6moD3qGG4N5Cd7Q75CUld7Fhowwsr4v4AsPumhI6BCdL9KlP83tuRg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:49:15 GMT
age: 7114
etag: "afc8ee4a5b899e95c4b229d48494ae058bfa4c33"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10006
Md5:    899d03c61f3b79a2176e6cdbaa7441f0
Sha1:   afc8ee4a5b899e95c4b229d48494ae058bfa4c33
Sha256: 62b52d966cd4216513a0c0cc12f9faa9c2fbb0d4707a458c247047c455b2b6e9
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c73f10e-9c01-44bd-95d2-c18ba845fe07.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8875
x-amzn-requestid: 1374243f-4fd8-4405-8f8a-946a8f92c457
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniEw2oAMFtfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-195c58a826eae13b58d21aa0;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MfDIK2PCS_o7UuNXVSNOb3YbR_P8vlF7xw75qf8WdbjRr8hzCVYu6A==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
age: 7282
etag: "5dd8989fb1129638361c16ad2a1fde93a4c4aafd"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8875
Md5:    2917b487c605eb7f53d20ff3b4fbfef0
Sha1:   5dd8989fb1129638361c16ad2a1fde93a4c4aafd
Sha256: aaf620d791f23829e15a454b3faf5b47a0f00ff37ada91d6de5c62c322fe90ff
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y5MD-207EEHTD7hC8z0SzYCHA0JdOpYRrUhYDwo0cQ9ITGRbtQ-McA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
age: 7282
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11316
Md5:    848af62ec10d0c297922f8600b6ad12d
Sha1:   4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
Sha256: a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca824564-f412-4dc2-b493-0624bc480eed.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

search
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7696
x-amzn-requestid: e0cf148f-08b1-4399-b07c-5519d852c486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmHfFepIAMFebw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d62-57d6f0964bceb9711a56cfb7;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:34 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q332Vdi1jyNfDnwszgERBrjmfPxvvz-EnsLImaK_W7-FdZUlbZw0nA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:53:01 GMT
etag: "ef3011cd851559ba8ee39b4bd0dc0af7a25bc651"
age: 6889
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7696
Md5:    6c390c15d10148f43af21450af434cc7
Sha1:   ef3011cd851559ba8ee39b4bd0dc0af7a25bc651
Sha256: d76ceb9b671f98d0bbaa47544883108274d4a26c11840f628e7466b23ca541c6