r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a2104f935c638b4767ca5ae0d738ef23
85c6af15af749be0ceeae6de17c36925b750f166
5d4789a3696bd7faa9916768cb627bbc89bf70a756d80e53860cbac13c2bc8b1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D4789A3696BD7FAA9916768CB627BBC89BF70A756D80E53860CBAC13C2BC8B1"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5468
Expires: Mon, 30 Jan 2023 06:02:05 GMT
Date: Mon, 30 Jan 2023 04:30:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81dd5c5cc5b3278876cb44dcb520a60f
c0511a59e9eccdcdda98717b87c89c5d59974808
41736c303afdb3d31e48724b107dcb22883cae02f3562308eb52d9164001a2de
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "41736C303AFDB3D31E48724B107DCB22883CAE02F3562308EB52D9164001A2DE"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10967
Expires: Mon, 30 Jan 2023 07:33:44 GMT
Date: Mon, 30 Jan 2023 04:30:57 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2942
Expires: Mon, 30 Jan 2023 05:20:00 GMT
Date: Mon, 30 Jan 2023 04:30:58 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 03:43:11 GMT
content-type: application/json
age: 2867
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: ap7+v+t6kZ9tX7We1PyL/6U4adxONMmYDStN5bM3grnSeIfdnQ0Vwq6c/9XZ+4vLu68tsxDKLFw=
x-amz-request-id: M06KGJWM3R8MEYPW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 03:50:35 GMT
age: 2423
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
20.2.83.53/
20.2.83.53302 Found 0 B IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 30 Jan 2023 04:30:57 GMT
Server: Kestrel
Content-Length: 0
Location: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 04:30:58 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
20.2.83.53200 OK 8.0 kB URL HTTP/1.1 20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (379), with CRLF, LF line terminators
Hash 2e4da5495e8cce6181139776d382e0e0
ff08ff574fd8baa3879cf7c2d6992207ca2bd6ee
58ac1fe04e7067418f6acae78be9db7285342815cb0a7c9a6bcac059e5d2623d
Analyzer Verdict Alert quad9 Sinkholed
GET /Identity/Account/Login?ReturnUrl=%2F HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: text/html; charset=utf-8
Server: Kestrel
Cache-Control: no-cache, no-store
Pragma: no-cache
Transfer-Encoding: chunked
Expires: Thu, 01 Jan 1970 00:00:00 GMT
Set-Cookie: Identity.External=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax; httponly
.AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc; path=/; samesite=strict; httponly
.AspNetCore.Mvc.CookieTempDataProvider=; expires=Thu, 01 Jan 1970 00:00:00 GMT; path=/; samesite=lax; httponly
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4d7558590df4900b070b2fe8b287200c
3cafd50a13b92b1d6e550a20d9400fbb0dcdac20
4296f44c456e0fc3ece5fa3529e2c9007220f954ff1cfa5fc3d4b9405f780dde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3140
Cache-Control: max-age=164791
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:30:58 GMT
Etag: "63d71c75-116"
Expires: Wed, 01 Feb 2023 02:17:29 GMT
Last-Modified: Mon, 30 Jan 2023 01:25:09 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
ajax.aspnetcdn.com/ajax/jquery.validate/1.17.0/jquery.validate.min.js
152.199.19.160200 OK 9.4 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jquery.validate/1.17.0/jquery.validate.min.js
IP 152.199.19.160:0
File type Unicode text, UTF-8 text, with very long lines (23122)
Hash f51c9eadb01279cac68387f82cce3931
c3eefe883121002096761ea5cfe2625365ad8fd3
981d6595853be9234bb46f5fdfeccbee7e28eed6e87e98dfa1c25e88f7e01453
GET /ajax/jquery.validate/1.17.0/jquery.validate.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://20.2.83.53
Connection: keep-alive
Referer: http://20.2.83.53/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 16770548
cache-control: public,max-age=31536000
content-type: application/javascript
date: Mon, 30 Jan 2023 04:30:58 GMT
etag: "bec5c2228ad31:0"
last-modified: Mon, 31 Jul 2017 18:09:21 GMT
server: ECAcc (ska/F6BD)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 9409
X-Firefox-Spdy: h2
ajax.aspnetcdn.com/ajax/jquery.validation.unobtrusive/3.2.9/jquery.validate.unobtrusive.min.js
152.199.19.160200 OK 2.6 kB URL HTTP/2 ajax.aspnetcdn.com/ajax/jquery.validation.unobtrusive/3.2.9/jquery.validate.unobtrusive.min.js
IP 152.199.19.160:0
File type ASCII text, with very long lines (5607), with CRLF line terminators
Hash 0f3f8cad5d3852ef5259d359a41a9558
ed18d0fe44a0d0b38176517925a89b0339b7b45b
962d1b3bc8567d5a58c51e1d4b10c022fa8e25dbe5137887335f3379f986602b
GET /ajax/jquery.validation.unobtrusive/3.2.9/jquery.validate.unobtrusive.min.js HTTP/1.1
Host: ajax.aspnetcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://20.2.83.53
Connection: keep-alive
Referer: http://20.2.83.53/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
age: 20496822
cache-control: public,max-age=31536000
content-type: application/javascript
date: Mon, 30 Jan 2023 04:30:58 GMT
etag: "bc773470adcad31:0"
last-modified: Mon, 02 Apr 2018 18:07:18 GMT
server: ECAcc (ska/F6F3)
timing-allow-origin: *
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 2607
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 4d7558590df4900b070b2fe8b287200c
3cafd50a13b92b1d6e550a20d9400fbb0dcdac20
4296f44c456e0fc3ece5fa3529e2c9007220f954ff1cfa5fc3d4b9405f780dde
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3140
Cache-Control: max-age=164791
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 04:30:58 GMT
Etag: "63d71c75-116"
Expires: Wed, 01 Feb 2023 02:17:29 GMT
Last-Modified: Mon, 30 Jan 2023 01:25:09 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 278
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 03:41:41 GMT
age: 2957
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8728
Expires: Mon, 30 Jan 2023 06:56:26 GMT
Date: Mon, 30 Jan 2023 04:30:58 GMT
Connection: keep-alive
20.2.83.53/lib/font-awesome/css/all.min.css
20.2.83.53200 OK 59 kB URL HTTP/1.1 20.2.83.53/lib/font-awesome/css/all.min.css
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (59158), with CRLF line terminators
Hash c6920efb7784a86ed443ef70db8f317d
2c2236d61417d354b5cbbc907dfc9c0eb1325a7f
c493875ea907c37e2ef7b9560f75ad5dd918121a0f42889eda351ccab0373eb1
Analyzer Verdict Alert quad9 Sinkholed
GET /lib/font-awesome/css/all.min.css HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: text/css
Server: Kestrel
Content-Length: 59348
Last-Modified: Wed, 31 Aug 2022 02:23:21 GMT
Accept-Ranges: bytes
ETag: "1d8bce0a38cd554"
20.2.83.53/css/site.css
20.2.83.53200 OK 2.0 kB IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash fd5ada6cb5c7b85ad5a73336f629848c
a3338521775dae3740ecf1dbabda9c04b6ec5fc2
3a9cf850a0c8e815d4893b55eb9e4bdb33c453eeb1244a6b574f13d0b7fbc9ad
Analyzer Verdict Alert quad9 Sinkholed
GET /css/site.css HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: text/css
Server: Kestrel
Content-Length: 1980
Last-Modified: Fri, 25 Nov 2022 04:55:52 GMT
Accept-Ranges: bytes
ETag: "1d9008a317e7bbc"
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: w1gX3WmMDqCXVUxP8g5XRQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: f2/4pw9NCWVeNcwztuhzSu+NeBo=
20.2.83.53/startbootstrap-sb-admin-2/js/sb-admin-2.min.js
20.2.83.53200 OK 1.3 kB URL HTTP/1.1 20.2.83.53/startbootstrap-sb-admin-2/js/sb-admin-2.min.js
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (1028), with CRLF line terminators
Hash 3c607585cfe6f6596427f919f972b721
19e16338f862676a8387012bb9ed31f1b1234308
55a644c42780a8bcb12cd35141f376b92b44d2d07f0158ed77e7853844e7eb3a
Analyzer Verdict Alert quad9 Sinkholed
GET /startbootstrap-sb-admin-2/js/sb-admin-2.min.js HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: application/javascript
Server: Kestrel
Content-Length: 1271
Last-Modified: Wed, 31 Aug 2022 02:23:12 GMT
Accept-Ranges: bytes
ETag: "1d8bce09e2eecf7"
20.2.83.53/js/site.js
20.2.83.53200 OK 2.0 kB IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash 67f15a605b68e4d7e39a4b0e1852b67a
66fb8a449b7e0a052d4ccad0a5a8ea0ef1a154e9
cf06e62ed65ef2eb2faf91faee654bd5be4df522d2481046f21fcb7c5f2eb3bd
Analyzer Verdict Alert quad9 Sinkholed
GET /js/site.js HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: application/javascript
Server: Kestrel
Content-Length: 1974
Last-Modified: Wed, 31 Aug 2022 02:23:07 GMT
Accept-Ranges: bytes
ETag: "1d8bce09b33f036"
20.2.83.53/lib/jquery/dist/jquery.min.js
20.2.83.53200 OK 90 kB URL HTTP/1.1 20.2.83.53/lib/jquery/dist/jquery.min.js
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65450), with CRLF line terminators
Hash b61aa6e2d68d21b3546b5b418bf0e9c3
9c1398f0de4c869dacb1c9ab1a8cc327f5421ff7
f36844906ad2309877aae3121b87fb15b9e09803cb4c333adc7e1e35ac92e14b
Analyzer Verdict Alert quad9 Sinkholed
GET /lib/jquery/dist/jquery.min.js HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: application/javascript
Server: Kestrel
Content-Length: 89478
Last-Modified: Wed, 31 Aug 2022 02:23:27 GMT
Accept-Ranges: bytes
ETag: "1d8bce0a71ee406"
20.2.83.53/lib/bootstrap/dist/css/bootstrap.min.css
20.2.83.53200 OK 156 kB URL HTTP/1.1 20.2.83.53/lib/bootstrap/dist/css/bootstrap.min.css
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65319), with CRLF line terminators
Size 156 kB (155764 bytes)
Hash 8fe70898895271ddc62823321011273a
60f0159744e3b554a45da027f9e7faa992aed71a
ae576713bc196098f7438dede6ff1f835a23291c32b745ad7e6fb6db809a719b
Analyzer Verdict Alert quad9 Sinkholed
GET /lib/bootstrap/dist/css/bootstrap.min.css HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: text/css
Server: Kestrel
Content-Length: 155764
Last-Modified: Wed, 31 Aug 2022 02:23:30 GMT
Accept-Ranges: bytes
ETag: "1d8bce0a8eb1d74"
20.2.83.53/lib/bootstrap/dist/js/bootstrap.bundle.min.js
20.2.83.53200 OK 79 kB URL HTTP/1.1 20.2.83.53/lib/bootstrap/dist/js/bootstrap.bundle.min.js
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65292), with CRLF line terminators
Hash b41fe9374205bd087a4d4f0ab5a195be
ff398162cf8cbdbaa30110512524ecce2ca040be
5d97e438677a16e845f3c8791a0126448a576e6fa1064168ef8c980cf639adbc
Analyzer Verdict Alert quad9 Sinkholed
GET /lib/bootstrap/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: application/javascript
Server: Kestrel
Content-Length: 78641
Last-Modified: Wed, 31 Aug 2022 02:23:31 GMT
Accept-Ranges: bytes
ETag: "1d8bce0a98320b1"
20.2.83.53/startbootstrap-sb-admin-2/css/sb-admin-2.min.css
20.2.83.53200 OK 170 kB URL HTTP/1.1 20.2.83.53/startbootstrap-sb-admin-2/css/sb-admin-2.min.css
IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (65082), with CRLF line terminators
Size 170 kB (169749 bytes)
Hash 402a3811f460d87383d299ce0e9d2949
add6e18085774d6d7aa1fab7a831d6d7de5d0f16
63a7d8421fdb918152c50d2c9d6316789dd75d9c059489c4aaf0228612a552d1
Analyzer Verdict Alert quad9 Sinkholed
GET /startbootstrap-sb-admin-2/css/sb-admin-2.min.css HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:58 GMT
Content-Type: text/css
Server: Kestrel
Content-Length: 169749
Last-Modified: Wed, 31 Aug 2022 02:23:12 GMT
Accept-Ranges: bytes
ETag: "1d8bce09e2c7f15"
20.2.83.53/favicon.ico
20.2.83.53200 OK 32 kB IP 20.2.83.53:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 4859e39ae6c0f1f428f2126a6bb32bd9
1c0c85678ae963bc96d0b7fbe1eb89074cf1fbe0
a94f8a8553caea8430dd4ca3cc01d4e318d19828f74cb65453ffb7f5d9e2f44d
Analyzer Verdict Alert quad9 Sinkholed
GET /favicon.ico HTTP/1.1
Host: 20.2.83.53
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://20.2.83.53/Identity/Account/Login?ReturnUrl=%2F
Cookie: .AspNetCore.Antiforgery.kA_uAbBxVZc=CfDJ8HwRRsBCGMtMg8pJg8Q69eCLHtl998A-IoFy6rFSblWnrhyi12NazxBzt2rz-DqtnKPPmUKs6J5God_pn3JpYpQ9fSXd2XRbA1uFxBjY63s65CwFdbSWS6iaWA_8oyTPeSRX9DdPn1Gz53HEPPTcrZc
HTTP/1.1 200 OK
Date: Mon, 30 Jan 2023 04:30:59 GMT
Content-Type: image/x-icon
Server: Kestrel
Content-Length: 32038
Last-Modified: Wed, 31 Aug 2022 02:23:05 GMT
Accept-Ranges: bytes
ETag: "1d8bce09a02b7a6"
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5114
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 04:31:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5114
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 04:31:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5114
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 04:31:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5114
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 04:31:00 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f2a0c2c0f25bdd19baf87cbb3a87dcdb
bc78ca6206ee8cc1cc05ab7778df71c7e6d1182a
c57f26c0c2e439dc2f69181e1b2f6ae371bff9d299af739e0047eabc8bfb5a69
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C57F26C0C2E439DC2F69181E1B2F6AE371BFF9D299AF739E0047EABC8BFB5A69"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5114
Expires: Mon, 30 Jan 2023 05:56:14 GMT
Date: Mon, 30 Jan 2023 04:31:00 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 65c02d8a1b0d6a210cb2a649c5c67469
027dbc7a104c922904f067ed15d696c363c11774
89d5443a1d313c632d09a583ef602aa4645a16986076387329f434262d15b0a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F72e6599c-6a41-4dd2-a346-b15fa84cb20a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10997
x-amzn-requestid: a6fac0ab-1acf-4808-8785-3b4ec5e32edf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj30FX7IAMFa5w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e698-005109ec2e76529e793678d6;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: skGKI_MWvDwpAbGibUcr8wTlimgoPU9ZYhEHltd3uhdJZ_GoNznVAA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:53:08 GMT
age: 23872
etag: "027dbc7a104c922904f067ed15d696c363c11774"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff57d053c-9c4b-473c-bba7-21efecd434c5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff57d053c-9c4b-473c-bba7-21efecd434c5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b485aec4da73d34c0e9f038d397871d
aa98f1d472d9ac390270d49e7c1e0ed480760ee9
4add6befb6fd5b1ca37f68e3303e2ac14db1ac36b8c065f87e1f9f3ace5b4e23
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff57d053c-9c4b-473c-bba7-21efecd434c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5298
x-amzn-requestid: b58aa40f-ae16-45e3-93d1-9ed4711838e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkEsHdNoAMF3Sw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e6ea-0c22a0aa70c34bab594597fc;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:36:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: py0Ls4_GFBdrFyvRN--G0Pl9l13TX_9CVFkJnYi1M4AT3uhtC5SuKA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:54:36 GMT
age: 23784
etag: "aa98f1d472d9ac390270d49e7c1e0ed480760ee9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3be81f83687ddb6c93d3ff3c09a9dba2
50a48e737310d3f31840db4301b25927fbcc12c5
e78c909e2381898e7f546183784a05dff47c31734c95358aaada8c2777ad47be
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9a423a9-16ee-4e3f-b9b4-34f6a469aba9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9167
x-amzn-requestid: f644ca78-a07a-43d1-96e4-95bcdecff7fb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fPGLfFtOIAMFp7w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63cf83e2-202ca7160544acd24259bd5d;Sampled=0
x-amzn-remapped-date: Tue, 24 Jan 2023 07:08:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xRwqrWS66l4qJfg2HnGphN1dbrIUod9XKW3zTk_-Km9AQRPyV2UqWg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 20:46:17 GMT
age: 27883
etag: "50a48e737310d3f31840db4301b25927fbcc12c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83495dde-218f-4893-8556-3013e3f83f78.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83495dde-218f-4893-8556-3013e3f83f78.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e8901f99d8e3001e442c887f89e2e650
a61875fcee6c09087462f0443286482d903725bc
d3a69a5bce1852c464755452d7f5a88f0d20fbed14b9f16ac6f539d4d1bfdb21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F83495dde-218f-4893-8556-3013e3f83f78.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5960
x-amzn-requestid: 313f5526-984b-4224-b321-732fe5ae5a7d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhkl0HimoAMFvAQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-430032d00080eff464e4d574;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: TiZDGG_JsgbKWvLfQn_uioEKmxzYKKV8cT9wJ2PntoNPb4r1a2YKtg==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 21:55:33 GMT
age: 23727
etag: "a61875fcee6c09087462f0443286482d903725bc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9a2197-1d4c-4aad-a76e-04d2a1f77b60.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9a2197-1d4c-4aad-a76e-04d2a1f77b60.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c400859d7b0e7bf4d60b6b72da0d3b5a
edcc70016fce38a4ad14c3737712685ae1d282f2
45f69c6dcc83120058b731e39103cb1a2a40414eed2da633b43bdccc021665cd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9a2197-1d4c-4aad-a76e-04d2a1f77b60.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12991
x-amzn-requestid: a5b71869-0509-443a-ada0-2f7a7cfb8166
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhj4AEncoAMF_LQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e699-24b0a146699561100a8d592f;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:35:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 7ssAFEDfDB-_QvsQ5x_WJRH6Jwn-nJaG32DTw8_H2fYUpJ6kBWowXw==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:01:16 GMT
age: 23384
etag: "edcc70016fce38a4ad14c3737712685ae1d282f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb138c2a-a013-4652-92e0-920b0ab6d6fa.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb138c2a-a013-4652-92e0-920b0ab6d6fa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8fce79ef35b4c943c2b60d5092d17b6f
d29ce982633d0cc50b2a968ea22893d92b9663e3
297e951e4ab09c3465deb222cbe8f66579f9154d4e8806eec3a52350e577fded
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb138c2a-a013-4652-92e0-920b0ab6d6fa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5934
x-amzn-requestid: 75aeb64a-1ba1-4349-84f3-b94aabeccc9f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fhklyFUMIAMF3nA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d6e7be-56d6fb7b337769986c5c567b;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 21:40:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RKiUEsflAz1PfeT8AvkmfNGxTkGO_0Ajo5hgnRIvo0qdiVUA0wD46Q==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sun, 29 Jan 2023 22:34:18 GMT
age: 21402
etag: "d29ce982633d0cc50b2a968ea22893d92b9663e3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css
104.26.6.173200 OK 0 B URL HTTP/2 code.ionicframework.com/ionicons/2.0.1/css/ionicons.min.css
IP 104.26.6.173:0
GET /ionicons/2.0.1/css/ionicons.min.css HTTP/1.1
Host: code.ionicframework.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://20.2.83.53/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 30 Jan 2023 04:30:58 GMT
content-type: text/css; charset=utf-8
x-origin-cache: HIT
last-modified: Fri, 28 Oct 2022 02:55:05 GMT
access-control-allow-origin: *
etag: W/"635b4489-c854"
expires: Sat, 28 Jan 2023 15:14:32 GMT
cache-control: max-age=31536000
x-proxy-cache: MISS
x-github-request-id: 80AE:452F:15A3BC2:168D3DE:63D5397F
via: 1.1 varnish
age: 25116
x-served-by: cache-bma1671-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1675027942.169832,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 9cf97c68b0c0ea3129c7a4916d5078e920fe12e7
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DBEpGUo4nA6WxO9aE%2B%2FvfPSzlAiGla1qwyyMD4b2zHIyaS8dJ%2BwrxZaEyEuYBg%2FOXb76X2sPreMKPRfDfy%2Byu%2F3Ih63gquhJJx166FMxrn9YlB9aoQ3I%2BAYorTCCRn9z0kuwWvqeCubl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 791779afeb5efac0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2