firefox.settings.services.mozilla.com/v1/
18.164.68.15200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.164.68.15:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 24 Sep 2022 08:05:36 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6777bbd78e2191b131d624eba7093540.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: JQ_CvUMFoFewZu5q00wzPx7JRuECwJUfJswLYMc7E-RTOfSreDB44A==
Age: 1730
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9474
Expires: Sat, 24 Sep 2022 11:12:20 GMT
Date: Sat, 24 Sep 2022 08:34:26 GMT
Connection: keep-alive
g.sonicavolcano.xyz/wbiwxb/i13s21m/index-nl-s10.html
104.18.72.149200 OK 4.2 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/index-nl-s10.html
IP 104.18.72.149:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2373)
Hash 7b818fbac0855b5f9abf0446e04a0ffb
71dd6c5f967edd2dbbc02dfd0ba6c11e5c4f6031
0002386df8c26f5f56a0745113ebe1916cd98442b5b31632783438bba1ae0884
Analyzer Verdict Alert fortinet Phishing
GET /wbiwxb/i13s21m/index-nl-s10.html HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 11:13:18 GMT
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Dsrycbsm6KbXRcq79ExVhrzVo67IZqZMxdTvLR6lZQB9VXser23o6pWun6WvtoD9tZFXFloNrJ2XMr1z4tC04Yo6QgPD56Bw%2FG0YqCmpmXU8RmaU2nP072Y20hF9NXy7orPZ%2BRE7"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74fa2e5089271bfe-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.51200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.51:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 24 Sep 2022 04:13:03 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f546fae491a152f9c1396e6d0a62bb42.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: j8eRi4386xGTrcfzL6VFXoiNYhaiRu2mKttWLGWjosNLYisZgXrmEA==
age: 15683
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 24 Sep 2022 08:34:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
104.18.72.149200 OK 3.0 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
IP 104.18.72.149:0
File type ASCII text, with very long lines (650)
Hash 4eee55370b6210da2cec438cda2e7f20
552c35510193b1d1ba7f18ac8b22cb19ac338634
a49b70eb310aa73c7deea0a7f4b4f7c014d7aeff55a38c1c003357f3078b0e8d
GET /wbiwxb/i13s21m/clean.css HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 11:12:56 GMT
ETag: W/"2c20-5de2db50ec4b0"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pr%2B6Bm1UNRWlc1mg7zDVOJgBxj6YmfcMPKuYBIrw%2FFKkEZUBQ2gag6NCrgSb1%2BLG0rbTHiLjgxxv1Px2sAOvRX0YykaMZoTMfzu6h%2B7Ge%2BMlqTrBh2VYQkBqU17XnQPT%2BBC9IFSl"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74fa2e530b851bfe-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/names.js
104.18.72.149200 OK 1.6 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/names.js
IP 104.18.72.149:0
File type Unicode text, UTF-8 text, with very long lines (3143)
Hash f58b7a31eed0e943185e3103feb06945
47b22cfa86f1ef87e3b4db6aa3c1efc1216c347b
f8d5d10fedafd21d29679ef067109640e8499d70bc504110117212dde02b3007
Analyzer Verdict Alert fortinet Phishing
GET /wbiwxb/i13s21m/names.js HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: W/"c70-5de2db6e04a2d"
Content-Encoding: gzip
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eshwrwp5q9sgkiQYuzkVtLpsu39OgxFvuCLzJ3yLjO1f1dVao4HHtYub9rIoOk9idnnII%2BuMAXcwLqQJAPSO2EZB8IkeIb3V2KcXaIkNCfKeu3zswkA48SmWT2KxAM2RnINxqEPZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74fa2e530b48b4ee-OSL
alt-svc: h2=":443"; ma=60
gauvaiho.net/pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js
139.45.197.251200 OK 40 kB URL HTTP/1.1 gauvaiho.net/pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js
IP 139.45.197.251:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash f9ffde8ce428406d5bd3e06d5e1f20bd
59f87900612a0b74cd318dc19b50873e3be8bf59
c58109c8aa8bcfb8047ae706bfdec016f49ab839ed777f91b3585492ac5e0baa
GET /pfe/current/micro.tag.min.js?z=4984707&sw=/sw-check-permissions-4eee0.js HTTP/1.1
Host: gauvaiho.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: application/javascript
Last-Modified: Tue, 20 Sep 2022 07:25:49 GMT
Transfer-Encoding: chunked
Connection: keep-alive
ETag: W/"63296afd-1a407"
Access-Control-Allow-Credentials: true
Cache-Control: no-cache
Pragma: no-cache
Content-Encoding: gzip
g.sonicavolcano.xyz/wbiwxb/i13s21m/like_user_1.jpg
104.18.72.149200 OK 1.8 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/like_user_1.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash e12b6068c207cd33798d4b16dba16734
c2018b9b4f5fe43286049d216a197591dfefc5ba
7893062f7d46552a092de765d1a0844e3d642a963ba7c93d96f28ccb0562de6f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /wbiwxb/i13s21m/like_user_1.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/jpeg
Content-Length: 1791
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:25 GMT
ETag: "6ff-5de2db6cc6c2c"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tt8Ilmig1xL4OPiU0%2FOPg36DQCPheqJ4%2BK4Ze1TU0QIHg9DlizDKgkMmOW5xR0JRFCAhiwggVktrvx25XTJfVOIRNYDSV6ClOED%2FGoUdbJlrCT7KeoFD5XmmmS3lb%2BbQltYlfyxT"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e540c6c1bfe-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/like_user_2.jpg
104.18.72.149200 OK 1.6 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/like_user_2.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 0fdf7c38b0b303cfe1d1a7f526f22fe7
865fce3860231d7aad0777434bbf8852a42b5d96
8af263791c44ddc331f9758bb8ac54a88614ad0c7e64b5148bf017098e5ee938
GET /wbiwxb/i13s21m/like_user_2.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/jpeg
Content-Length: 1621
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:25 GMT
ETag: "655-5de2db6cf525e"
Cache-Control: max-age=14400
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GPpYNODHnXmz59LQesHZ2moo5jTQbOMM7ygTR%2FhklFoAQak2h2Ozuv9%2BopLHeUaUbzFa6ZmbHW3M%2BPixknLS8A005e2G6TMizW7m7Ro0SlIdNtP3TseOsJLoHSJ4CoO0%2BaL5I2oB"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e541cbcb4ee-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/pw_s21-m.png
104.18.72.149200 OK 35 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/pw_s21-m.png
IP 104.18.72.149:0
File type PNG image data, 501 x 501, 8-bit colormap, non-interlaced\012- data
Hash 52e0337942425e0982927aec970ed1da
ef3d6c22fb86ba2aa299a636f7921f0779eacba1
b69ac274e54f601c153deccf0bee9f0b56b778e74e748738a66c0792c9ecaaa0
GET /wbiwxb/i13s21m/pw_s21-m.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 34826
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:17 GMT
ETag: "880a-5df42d15f0bff"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=51sfL29LHANW9yNCxXl4gzEzp44amYHgFznX3i%2B04KyB92ZgfuzHL5zM9CT8fhVqipGaOZ26SKimnexnhdTjVxUZdK4hNoVUp3Io67wZUdDImDm4XjkkrRqkS%2BGcWLkIAsUA1K7W"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e540f1fb4e8-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/s21-black.png
104.18.72.149200 OK 15 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/s21-black.png
IP 104.18.72.149:0
File type PNG image data, 200 x 265, 8-bit colormap, non-interlaced\012- data
Hash 6077a22f2c5becdcaac952fa794c5556
b9a5961bec0281b415517af5368b9a19dcace8c4
f36b16b480db0e7285da1d86d1890525863a44f8a904b923c1880bb7e8e8714d
GET /wbiwxb/i13s21m/s21-black.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 14816
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:04 GMT
ETag: "39e0-5df42d0a62751"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wQCKs%2FACh8dGUZn%2Fd%2F5GZYbFKNPuVpr9NfOHco4EcyHrmW2Qb%2BegL8LDjjVJXa%2FuvSYM8XZIczNQBOpPk064NiFYAXEsKcfYab8ncy6MNXfJSwhAnsWAGeiyxMMFqx83BAiy6clz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e541e9ab529-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/s21-pink.png
104.18.72.149200 OK 16 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/s21-pink.png
IP 104.18.72.149:0
File type PNG image data, 200 x 281, 8-bit colormap, non-interlaced\012- data
Hash 508227e0e7ce3075297a7dbee40ce87a
6e210408957b0a19b2c3a53d3f990e845d5c3040
10c09c69d2d40416e25f2eb826b788cbd105d80463495fe7711103848346d92c
GET /wbiwxb/i13s21m/s21-pink.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 16226
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:04 GMT
ETag: "3f62-5df42d0a1c635"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8AAD7sfXFAi6qUYBExVH%2FdyNPddueFiwzNrLbzOtMwuqpXtgwjrJ6uAEwFVix9GU7s5dgtBY4H9mm%2F3sBwVUUvKIhjWdsZEAI1k5OJApbFB72UmAZAVucrvwaieRqqjlpJqoZsfo"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e54189fb52d-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.164.68.15200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.164.68.15:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sat, 24 Sep 2022 08:21:03 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sat, 24 Sep 2022 08:49:06 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 49e8093d0b1ec293275e8b264631ad18.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P4
X-Amz-Cf-Id: T_D_fZd9U1vEdqz3Ks71j17HQERpsnq5EsuVPjG1gBWvgbyBotw3gA==
Age: 820
g.sonicavolcano.xyz/wbiwxb/i13s21m/s10.png
104.18.72.149200 OK 50 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/s10.png
IP 104.18.72.149:0
File type PNG image data, 510 x 610, 8-bit colormap, non-interlaced\012- data
Hash 8b9edf06eee38fb21a1a6a9bcd208031
15e64c36affa2ea263387d2e2665c4e652991e25
43df2aced8fcc9f2cb2e56d9bdfc1863233aa79b0b96ac8d04bd92d0926185ce
GET /wbiwxb/i13s21m/s10.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 50024
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:03 GMT
ETag: "c368-5df42d08919b7"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sddXpoZASeAyQMuBWLItJx7LRkHx%2BDRkKhovnEjFngRNOvi2ngyH4UZYopgjYzMwF%2FkDA%2FrBc7o0Ts4MLNFiQD2DdvCSk6pCnfio1xA2Ory71bJa%2Fd7EOVpRdcVaj3KjKXLiMzJd"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e540e760b3d-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/menu_2x.png
104.18.72.149200 OK 134 B URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/menu_2x.png
IP 104.18.72.149:0
File type PNG image data, 40 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash f52e2d6d695477104d4b95055195699b
1a27830c84e12c53e47497c645c52dd538b0af9c
1328a243e666f96278e1b9dce4de847ca2afa6ea45678714c73e7f42a04cc55d
GET /wbiwxb/i13s21m/menu_2x.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 134
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:10 GMT
ETag: "86-5df42d0f8ac9b"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s2YUfhqVJX2CfFFSRr4qrknRO3mbnOtFh3CzECbaHKZ%2BFGdtBmR76qcEYAxitnrzpLhzziMF2piFaMoZ619TfPXiOqD0yGgjmR5qfu7lNSbJxwrLhtfkYBxP6Bs5XIchJdZFPErQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e551d701bfe-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/notify_2x.png
104.18.72.149200 OK 240 B URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/notify_2x.png
IP 104.18.72.149:0
File type PNG image data, 36 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 0934ca67ac2496e77dee48c5c4f7ef87
d9359ccd28c232736d2d0c50af1161ec918d4fe6
b2459aecc95ad5f9c83b2fa52fbc52481122b68e4e73fa923e565c90d455328d
GET /wbiwxb/i13s21m/notify_2x.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 240
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:11 GMT
ETag: "f0-5df42d1090ffa"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HXI9XfwPhPv%2BA%2FJzJ5Tpwn5VXQVqHEJL4vWF3IJmc0Y9HMcpfuxe2HM15ZMISWRTWTF2fjkgnVoNyw4lZ79a4jGZT7hWBTs7v%2B4Nndv08nNsrkOushVIN2PYDtwWOO8W4NBkOmPj"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e552de1b4ee-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/spin_prize2.png
104.18.72.149200 OK 2.8 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/spin_prize2.png
IP 104.18.72.149:0
File type PNG image data, 142 x 173, 8-bit colormap, non-interlaced\012- data
Hash f278c8d30fc51b72e0774b9ecb49214c
03b574db82b31ee5758eb5093fda8ea25d1b00d8
43f3e6d7e7b011430b39020bc5ff8fe6be2947100c597de44ca549ea96a0fd7c
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /wbiwxb/i13s21m/spin_prize2.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 2814
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:49:06 GMT
ETag: "afe-5df42d0b74631"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HbRLFRubJypXRfTpvog9utmkv5%2BiC%2BXxtsQgF3K0%2FW99fo5sGJUEXN9QeofxnBNziQ3jkIOYtcR771Xrs8sUeJXZi7EEM6yu2griSWOftip0pCEU6%2FiSTSO2gnArE%2BDLQfb%2BAYBm"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e556896b4e8-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/action_icons_20px_2x.png
104.18.72.149200 OK 1.7 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/action_icons_20px_2x.png
IP 104.18.72.149:0
File type PNG image data, 40 x 360, 8-bit colormap, non-interlaced\012- data
Hash b699975b5fe73b087e711a33ff24ee1e
0e33cc5c32a5e7d18440751e3946076664caaf53
4e06866c22bb275c6c4f01265e1f3e9f00fe9face9739f6531371d688a8e7a7e
GET /wbiwxb/i13s21m/action_icons_20px_2x.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/png
Content-Length: 1726
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:48:54 GMT
ETag: "6be-5df42d00d1730"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nZE72sdW%2FbWzcxV6TAngQH9dtS7x3XnkdYaNkmEJCfYtqlJw6ayike2fqu63Pbzv5gweq2kJAyZtIVBfzpVPfN7faEB7EirQr7CXH7pFpwZ5W0rFITGdnowT8zPBCuofB3t8O%2Bjr"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e557840b529-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl17.jpg
104.18.72.149200 OK 1.4 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl17.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash d9fece5251e39a72fea34daadb4c8304
9bfca151508a1eaa24fd83461e1398fd0dadedd1
ee832f9c6952533b7d0145a0c91136b69e8c205e16c85955f2c4f0e2953d919a
GET /wbiwxb/i13s21m/nl17.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:26 GMT
Content-Type: image/jpeg
Content-Length: 1365
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "555-5de2db6e40b21"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NLVCKctLB1GwR2alaOXXMJvcO%2F1H0ADF4c4eHYqp1OVa7Ss5zyMp4upJLp7M35SAqE6aTJmLAJ54EMuNxNytlBw3sgJFHQGdbz2pXjPTZlCxRLhl9JhCG%2Fs6ttRlvtkTWBWdQ%2FC5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e5589a7b52d-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/comment_action_2x.png
104.18.72.149200 OK 641 B URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/comment_action_2x.png
IP 104.18.72.149:0
File type PNG image data, 24 x 120, 8-bit colormap, non-interlaced\012- data
Hash e9b3872b3e63e19728176d45f0aa6986
b638f89d5d80c4cd65327da973c52f778e30bd55
a3f59e07404f1745bed88a314113a86da376526e7e1e555c99b3e249178c6ba5
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /wbiwxb/i13s21m/comment_action_2x.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://g.sonicavolcano.xyz/wbiwxb/i13s21m/clean.css
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/png
Content-Length: 641
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:48:54 GMT
ETag: "281-5df42d00bcb27"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I0565kinKs6FlezS%2BJrxityL2OXoK7QiOfo1lw10leVf4xSLrV%2Fzn5iFqMap0guF16yHK1wryIH23%2BArLlNYV09d2n5PA%2BKpgxpEp2KwbLT9jIOi6tJV8uC92GS7gFna43Sj%2FySy"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e55c8860b3d-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl14.jpg
104.18.72.149200 OK 1.2 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl14.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 30c627130fbf0c023fe3e0282f60bda8
1a5993309c831dc851c6923d4befe9770563baac
5939820ac4026df7bbf801b987a032930a8ea75f179fbc9eba93a7b7a5a52479
GET /wbiwxb/i13s21m/nl14.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/jpeg
Content-Length: 1241
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "4d9-5de2db6e1a1ef"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HQvqmubWQdKATvGzg70Gkr6lCegUcMItdCvA2j%2BJ74oqS3mUmxVZBHcjInahMQXq6%2BF42tvglx%2BtWk8BSChnwaTxBnytUYEqMxPcRkYey20%2B%2F%2F0eAK%2FikvROT7ZtFj9%2BqV8UCub0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e5669c4b4e8-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4575
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 24 Sep 2022 08:34:27 GMT
Last-Modified: Sat, 24 Sep 2022 07:18:12 GMT
Server: ECS (ska/F70F)
X-Cache: HIT
Content-Length: 471
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl12.jpg
104.18.72.149200 OK 1.3 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl12.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash eab10f06c5535801819186501e781ed4
9fddd2a278fa8d1f30d352ddbe636f91e4f33cfa
7c58a11d66d87d5ec9f381e059e845c8538339849051cdac89a9f4fffe304929
GET /wbiwxb/i13s21m/nl12.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/jpeg
Content-Length: 1256
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "4e8-5de2db6e01b4d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BDLW3z6PdUXUvpz9Yzg0nSlt8W7cKE%2Bcpc8STpKJRa9z48ZAr%2BNF1w7CQTv4rnf4nDYnKPhHIFEXXbQ9IXeioNkWWO6xUMsMRM7h40HJMHHXchMLx9flsruX3iBKlrb2IK8oBf%2BH"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e561e661bfe-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl11.jpg
104.18.72.149200 OK 1.1 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl11.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash e691ad806c4630c71eb55d9c1222c82d
81ceef36cfac53bb023a8f8f43a797d7279a4f2a
116745ff3a4dd5fa367b5f97946e4c7d3ee344995aa50f3b5192c07eb3819871
GET /wbiwxb/i13s21m/nl11.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/jpeg
Content-Length: 1122
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "462-5de2db6df8ead"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BgKlznhRRhQqNhA34O7cgLyS88G2oaOfMu6C0ifve4Z636UlTYv79NW21UsqbewK76suclnX7jjUfw1bwOR7ERwANtnErJPdNLq1uLPYAra7XZ%2B6L0ZjTEPjVhiMr8LHcUFW4sbz"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e56c9bf0b3d-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl13.jpg
104.18.72.149200 OK 1.3 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl13.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 658808b9e1506808f9fbe8a3c647859f
77392597923c06c821f88bfa939ce4c0e09e3e9b
c7f2ebec059b097bb2bdd178b9fa217ba6dcd9bb8dd54cd7285a4c86aa9efd1b
GET /wbiwxb/i13s21m/nl13.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/jpeg
Content-Length: 1259
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "4eb-5de2db6e15b9e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AW6n9FhwpaENw%2FrjXTbMQyi58qI28BNTaDJcRtsiKZxamwNgrA46RWXfnmGuN5P65eBlgp6PXUxjkRvRZNWDGIjv8%2FnZYpbcp0FoxXPGlMfrSkvnttBYwVsxobPnleWJYRL0q%2FjC"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e563f0ab4ee-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/clip_footer_3.png
104.18.72.149200 OK 2.5 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/clip_footer_3.png
IP 104.18.72.149:0
File type PNG image data, 52 x 59, 8-bit colormap, non-interlaced\012- data
Hash e1b626392882cc25b4d891afaa68afd4
454d7abdbc2548d04feb95436ea0ab4126b4f00b
ef3b8785199a0a640150a9d9ceb9b7cff2b118ee377ce36317d4a3e716bd944f
Analyzer Verdict Alert urlquery Scam / Brand infringement
GET /wbiwxb/i13s21m/clip_footer_3.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/png
Content-Length: 2460
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:48:56 GMT
ETag: "99c-5df42d0213f6a"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nXtUIe8FU8TeiuGkFVXsHVNrE5REHSjfKBYi%2FKuFDBLEO1tVANEcJQjj5DGlplzbg55f6IZyiZvHSzTp4ggwfRzZOww1eoGN7EaUqCrnWo97MA1spCqSXzwWmHuRmTuh%2FDWQlXfs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e56ca2cb4e8-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl15.jpg
104.18.72.149200 OK 1.4 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl15.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 5a9ddc93b1acc8a54c3271a50e6a851a
0c343cb6b17d8957b06da2f9db7b9473bcbfa042
a6ff08ae0aa8b8b9eb133b24c90d0628a2f4b0a9deb29a79f07a7e2c83d25918
GET /wbiwxb/i13s21m/nl15.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/jpeg
Content-Length: 1448
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "5a8-5de2db6e28097"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iNM8LUVgOzJ%2BmKsf%2Ft%2BBpK6njknoKOClBEU11i0BXywZ%2F%2Bw%2FT6CHsQStthxZ7cjhTS6UHa2zOb%2Bfl5LhRYO3XZBR3svyE%2B3wnldUfwMb%2BhLipS%2Fwoyxzk1JYQsMPlkIRzf%2FDBNN0"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e567989b529-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/nl16.jpg
104.18.72.149200 OK 1.1 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/nl16.jpg
IP 104.18.72.149:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, baseline, precision 8, 50x50, components 3\012- data
Hash 21c041878a62c5ec16b176825aeb9145
b1f07562d12007fdfa929984cefb322434328569
a6689bc60a406486176cc0bb7b6373c6fc04eb414e88d63d5ccc4e23f95d28b8
GET /wbiwxb/i13s21m/nl16.jpg HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/jpeg
Content-Length: 1117
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 11:13:26 GMT
ETag: "45d-5de2db6e343e8"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K1S6XAJOSB9yPE7yMrvf0uAGYdGZqoB13BZZ2FwGR2uhMSFpm4GvF8rX17KhKHT4KfZFSBpggjUTt80l8pTBC6uL4%2Bg1Hrl4xSAjLTiicD0gVeKyMC2%2BRvCJZOOPdDrqErsQ9%2F4W"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e568a68b52d-OSL
alt-svc: h2=":443"; ma=60
g.sonicavolcano.xyz/wbiwxb/i13s21m/footer_right.png
104.18.72.149200 OK 5.0 kB URL HTTP/1.1 g.sonicavolcano.xyz/wbiwxb/i13s21m/footer_right.png
IP 104.18.72.149:0
File type PNG image data, 168 x 66, 8-bit colormap, non-interlaced\012- data
Hash b6815b95565d1e9238f3ebd6f74ad116
0cca9bc8234c992ca956f170439fa5e8c9d0c97e
c5d55f43a576869d9a3494000810bf654e24ac0bcf65bbca6e095c8098865cd1
GET /wbiwxb/i13s21m/footer_right.png HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/png
Content-Length: 5023
Connection: keep-alive
Last-Modified: Wed, 18 May 2022 05:48:56 GMT
ETag: "139f-5df42d02189a3"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N0BX6N0%2BQbDVRjx40A2ajFeU1Dqs8zrYfysf2Qe6BscXtMBiGF%2FedMZWVM146uUhtBVRbONrZU226Ue44LI0WRQdeKaLPUY1fjtzqfBq9aUVyHxY1XYy%2Fci56OnUOogsHNU%2FLhP2"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e571f461bfe-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
44.238.202.79101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.238.202.79:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: DiutgH3Icvv9OqHdLx3QeQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qZ92Vpv9h3C1OBihazEs5tFujiA=
g.sonicavolcano.xyz/favicon.ico
104.18.72.149200 OK 62 B URL HTTP/1.1 g.sonicavolcano.xyz/favicon.ico
IP 104.18.72.149:0
File type MS Windows icon resource - 1 icon, 1x1, 24 bits/pixel\012- data
Hash 74f60f0216cc1cb10b33dbeff395f192
de23674230843f409d5a7f840d6a30343675ae66
3a5f2a1419874bc1fac0fed7484c13a962f706e8ba99f7c6dca7a979c71d77c4
GET /favicon.ico HTTP/1.1
Host: g.sonicavolcano.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Date: Sat, 24 Sep 2022 08:34:27 GMT
Content-Type: image/vnd.microsoft.icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 04 May 2022 10:33:34 GMT
ETag: W/"46-5de2d28462a14"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NA543mZ6MvaX16aP09cyD%2BFaVxO0oAymrU%2FZi3DHIPHe1VfwAXkMftMNlwCaBMz7DoCdYPF5s8jw84JiYxuyVhKxW5pH6l1cHIx%2FatpWEKLpQZnUOoJ5%2BTJmhp57AMRdx5E0irY%2B"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74fa2e584b6b0b3d-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12467
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 08:34:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12467
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 08:34:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12467
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 08:34:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12467
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 08:34:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12467
Expires: Sat, 24 Sep 2022 12:02:15 GMT
Date: Sat, 24 Sep 2022 08:34:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 7DX67a-HmEh76IorINvRU61AKtSiimdPnHFnYeR2OJezZJ1_mJq0MA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 38762
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg
34.120.237.76200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146cb832dec96067e5e003b2f7617941
b0697adfd0fab611ba6afae2218645977846c341
e3ebac2261c6243caf678babe5350ae70da1e24fd7a0bbfdb449fd2b933eb237
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4c80a02c-1515-49a8-8ea9-716d3094dcfa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6510
x-amzn-requestid: 1d584980-5495-4925-b420-ef8b5a5e30e4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruGGusoAMFe6g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-370b00862dfed1606ac36797;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1n3rcgCsC9jDDWDLNrwAQabcAXCoYwH5jh6j8cLJPwAF9SKe9yx5ng==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:57:27 GMT
etag: "b0697adfd0fab611ba6afae2218645977846c341"
content-type: image/jpeg
age: 38221
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8d9af95acfc8b9b431eb1e020157f6d
f6f926be6e265a597aaede424f05fcd7c76fcc20
0b61d6cb0e0908cb8d303b9e951e2854166bd232e0291b5d698a6b757c064e88
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F76fa20bb-9883-4867-b55e-fc56c8f8fc57.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6386
x-amzn-requestid: 4380489e-d0ba-4f67-ac4f-67619ba34422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shGHryIAMF6zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-005f9c783c7722f16c178026;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: RuUOjTDRTkcaGFf_hTWrHZ89edOajgGUdl5PjbaUV7CUppat6IYsRg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:27 GMT
age: 38761
etag: "f6f926be6e265a597aaede424f05fcd7c76fcc20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0b722574c0e6f63a78a19eff0f100ae4
96185aa90e560a4bd9462cef2e280561ee557413
c5b1012f1fca39d949f4b70e69b94bc6e03521d93ab8c38bb30d2c9c43bac633
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f6ca22e-ec7b-41a4-aef7-7cf4a871bbdb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12087
x-amzn-requestid: 2779f1ce-50e8-4bdc-b8c2-6f87976a9daf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4WAYErZoAMFYrg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd068-1f1831806dffda454e532ac8;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:15:20 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: wsZ5UX2rbxGMECRjV6NR4fTFrfj-jK94RDMZn0_SKU-DDYKHl8JgMw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 04:39:00 GMT
age: 14128
etag: "96185aa90e560a4bd9462cef2e280561ee557413"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 0f361c26-1f12-421a-9752-7d4fcdf839ac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4V65GTXIAMF9-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd045-25677a637307879044de8242;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:14:45 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HfslSWhSAKRjZr-qqajVm6bKf9jGt2pXq8N8GlXgyTwRxWqw0y-CgA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 05:14:28 GMT
age: 12000
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa150280eb113504d61a25935c0f0127
ed04f74fbb4c77b21e2babc51a82857f5e23d169
07df17fffb391aa82efb09e30d97e88fa4dbe6df00e37bb90304f69179f4848e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd719f7db-20e1-4834-9525-3117f1824f36.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10032
x-amzn-requestid: 521c4012-9834-4100-a7ed-30093502f1a9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPBHGYoAMFh-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-77b03c321240d76a572d603a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: N7TwxCLUL8qnvm3YuZ6CGyJquVerc266VvZ1g8j5RxGpQXoUJwhULg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:51:16 GMT
age: 38592
etag: "ed04f74fbb4c77b21e2babc51a82857f5e23d169"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2