bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
91.227.204.35200 OK 3.1 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
IP 91.227.204.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, Unicode text, UTF-8 text
Hash 49cdfa5ee0010b9f26997483e1cbb08d
94f9ebb7fcc0cb5fc8cae1bcf27927686ed3724c
f5b79cfcd07ca74cf7618553fbfc9c7e716176e50fb4d369a002ae7c9187228f
Analyzer Verdict Alert openphish Societe Generale
fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/sms.php HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:07 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3058
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 22:05:16 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 93d70a809cf3aeccfbe0810f5e50a6fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: 5z7NhKx5m9aITMANi31H2sdci7Jm8wYAewMvlDV_ROb8qyGSo_PGJw==
Age: 652
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7541
Expires: Sat, 24 Sep 2022 00:21:49 GMT
Date: Fri, 23 Sep 2022 22:16:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash afb65a07bf7214addf83d17a53acba32
a8e973204431320aa7b362a4e73944520c4b51b9
46e1a9e6c98245afb7fa84bc6d9ba6844105024e2d3f56e28748e6c321475d02
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46E1A9E6C98245AFB7FA84BC6D9BA6844105024E2D3F56E28748E6C321475D02"
Last-Modified: Wed, 21 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4102
Expires: Fri, 23 Sep 2022 23:24:30 GMT
Date: Fri, 23 Sep 2022 22:16:08 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OBtSa4T3+q5e6F5ilwoaN5BUyl0R/1gzCM55NrgjdUCoPgdJgEN7T31KCH6BTGv4shRRQap/YrY=
x-amz-request-id: 495NS4JJXJV77J1X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 23 Sep 2022 21:44:39 GMT
age: 1889
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
etag: "6113f8408c59aebe188d6af273b90743"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 22:16:08 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/spec56_btn_gsm_all_gcd_20190320190559.min.css
91.227.204.35200 OK 319 B URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/spec56_btn_gsm_all_gcd_20190320190559.min.css
IP 91.227.204.35:0
File type ASCII text, with CRLF line terminators
Hash f40ddb3cf4b4ff6d2d4077b47d42867f
cc0bd85164b085b6dc17450107cbeb25dc562270
fa63c74bd568e45d82556fd70dbdfb05aa7241af3f61ebe9b8d5c66aae35bf08
GET /wp-content/uploads/2022/09/sg/sg/files/css/spec56_btn_gsm_all_gcd_20190320190559.min.css HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1d1b45865-39c-5e8fa430c8cdb"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 319
Content-Type: text/css
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/index_20190723161948.min.css
91.227.204.35200 OK 34 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/index_20190723161948.min.css
IP 91.227.204.35:0
File type ASCII text, with very long lines (310), with CRLF line terminators
Hash 500aba35d5b5f23f774baae0d77f7a03
c04b1aa11ed4874492e2265873521c67b84f0ece
10754746a72dd916200d0182c2ab5c0be23c132b89f00ebde534c35e555e00f3
GET /wp-content/uploads/2022/09/sg/sg/files/css/index_20190723161948.min.css HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1d1b3e40f-41496-5e8fa430c7d3b"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 34141
Content-Type: text/css
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/inbenta.css
91.227.204.35200 OK 17 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/inbenta.css
IP 91.227.204.35:0
File type ASCII text, with very long lines (65307)
Hash 4a5107d382a167b059c1a67de3dbddc1
858d149cf51360d26538ce7e5a2e68daccd54c79
358502dd5c0604d948507d74aadf3d1311bf1178ec63665c901ac50464b8a05b
GET /wp-content/uploads/2022/09/sg/sg/files/css/inbenta.css HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1d1b21823-2268a-5e8fa430c6d9b"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 17302
Content-Type: text/css
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
91.227.204.35200 OK 28 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
IP 91.227.204.35:0
File type ASCII text, with very long lines (1330), with CRLF line terminators
Hash 7e41d488b43222b70f473a606677ad3b
a25fe8f9a2198cfa0f4fc1f676882d8d710c66bd
e93291cb3be382f70f902b1a2c9139775db82f140c7ab0332c6eb90fd2b077f4
GET /wp-content/uploads/2022/09/sg/sg/files/css/style.css HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1d1b46032-2c10f-5e8fa430c9c7b"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 28301
Content-Type: text/css
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/loader.gif
91.227.204.35200 OK 1.4 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/loader.gif
IP 91.227.204.35:0
File type GIF image data, version 89a, 50 x 10\012- data
Hash 56e2ee0bb059a8935c7202981a138aec
cd034b57040a779d70f2a5a19ef2833776daa4a3
31bf10d91090efb0932a4560d50ce0ed40e9d961374175331b008be7865142d6
GET /wp-content/uploads/2022/09/sg/sg/files/img/loader.gif HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1a821-563-5e8fa430d291b"
Accept-Ranges: bytes
Content-Length: 1379
Content-Type: image/gif
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/logo-sg-seul.svg
91.227.204.35200 OK 3.0 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/logo-sg-seul.svg
IP 91.227.204.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1433), with CRLF line terminators
Hash a4905efc552b898322c256cb4d4f55c3
6ca6d615b2ebe329819a0338879c1d206ad0b90b
4d5f7f9cf24e66420cd0f39be3d181b4566ff8dcc8e699731c88787e511befd3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/img/logo-sg-seul.svg HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1a823-be2-5e8fa430d291b"
Accept-Ranges: bytes
Content-Length: 3042
Content-Type: image/svg+xml
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/logo-sg-muet.svg
91.227.204.35200 OK 402 B URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/logo-sg-muet.svg
IP 91.227.204.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Hash 392bde7f3217782d2f98bff1db922a9c
ce2e5b3a064e2dfa92039cc1caa37d8c6d3e144f
38f90a05ed700e9adb2b37d23337eee3be2c658bdb1f38f258c15920b36d1676
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/img/logo-sg-muet.svg HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1a822-192-5e8fa430d291b"
Accept-Ranges: bytes
Content-Length: 402
Content-Type: image/svg+xml
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/logo-sg.svg
91.227.204.35200 OK 2.7 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/logo-sg.svg
IP 91.227.204.35:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2331), with CRLF line terminators
Hash 10e841a89a9c667fa6b17ea44c60529e
c65e827b075418de2a04d59a29fd7875921f52ef
2e19511d9133c826bfd5555070b89ac5cb3d108828b9e49c72d2d3ddbcbfe9ab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/img/logo-sg.svg HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1a825-a6a-5e8fa430d291b"
Accept-Ranges: bytes
Content-Length: 2666
Content-Type: image/svg+xml
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/print_20190320190559.min.css
91.227.204.35200 OK 874 B URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/print_20190320190559.min.css
IP 91.227.204.35:0
File type ASCII text, with very long lines (3067), with no line terminators
Hash 21b1caf86568a47fdf5bc7f13f19c4fc
2b7682edd83930d59f1ccbe60b9a80b01b55bfaf
3e008da782bed1dc334296ad9339d68c0a0747859058f9a17b6c63d898dc3c41
GET /wp-content/uploads/2022/09/sg/sg/files/css/print_20190320190559.min.css HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1d1b44410-bfb-5e8fa430c8cdb"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 874
Content-Type: text/css
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/trame.png
91.227.204.35200 OK 208 B URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/trame.png
IP 91.227.204.35:0
File type PNG image data, 13 x 13, 8-bit/color RGBA, non-interlaced\012- data
Hash f9dc6373846a99bfe761d3427d50632d
685843d14882374bcf6b0798ab60bbecc84567a8
d41b3311daa52ffdfb112169926c6b68fee615ea6c72abac25fa1dbe799131d5
GET /wp-content/uploads/2022/09/sg/sg/files/img/trame.png HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/index_20190723161948.min.css
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1b412-d0-5e8fa430d679b"
Accept-Ranges: bytes
Content-Length: 208
Content-Type: image/png
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/new_sprite.png
91.227.204.35200 OK 10 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/new_sprite.png
IP 91.227.204.35:0
File type PNG image data, 312 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 675d3d69bb78ed155d9d443bef4cccd8
8266846da238de6218a75a11744f35f821baff74
0d477834d11f75ff989d2b6bfbcbaaed80a8e4f8efe65569f4cee2ad603a73af
GET /wp-content/uploads/2022/09/sg/sg/files/img/new_sprite.png HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1a827-26e9-5e8fa430d291b"
Accept-Ranges: bytes
Content-Length: 9961
Content-Type: image/png
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Expires, Alert, Content-Length, ETag, Cache-Control, Content-Type, Backoff, Pragma, Last-Modified
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 21:33:04 GMT
Expires: Fri, 23 Sep 2022 22:30:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6fa2f2520e1a521d933565337b2b81de.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: pdVapPFtG3zCQN-nyq05SSQ4mw7dODSXR9RHuNjg7tUcSDQ8fJDHVQ==
Age: 2584
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/favicon.ico
91.227.204.35200 OK 318 B URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/img/favicon.ico
IP 91.227.204.35:0
File type MS Windows icon resource - 1 icon, 16x16, 16 colors\012- data
Hash ca10c09aeaf43460d3760f50c608eb51
f2ed2a4fe0e1eadb7dd28444ea6b7a04abf0d38e
daf58b06a09d467436ee5fd10eefbeadac3cf6ecaef1eca1884ef8330f561642
GET /wp-content/uploads/2022/09/sg/sg/files/img/favicon.ico HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/sms.php
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1f0d1a81c-13e-5e8fa430d291b"
Accept-Ranges: bytes
Content-Length: 318
Content-Type: image/vnd.microsoft.icon
X-Pad: avoid browser bug
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5958
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 22:16:08 GMT
Last-Modified: Fri, 23 Sep 2022 20:36:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-semibold.eot
91.227.204.35404 Not Found 4.2 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-semibold.eot
IP 91.227.204.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746)
Hash 14e34cea6dce4b5f3b992d631442474c
6a23e7c08ac5263fc28d6cea2b28bb414086cd8f
b7f5ab3928a874ecbbea55dcdd43c7ed60c02f077f3a9a4b7414aab3d192419b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-semibold.eot HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
HTTP/1.1 404 Not Found
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://bellina-bau.at/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4192
Content-Type: text/html; charset=UTF-8
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-regular.eot
91.227.204.35404 Not Found 4.2 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-regular.eot
IP 91.227.204.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1746)
Hash 14e34cea6dce4b5f3b992d631442474c
6a23e7c08ac5263fc28d6cea2b28bb414086cd8f
b7f5ab3928a874ecbbea55dcdd43c7ed60c02f077f3a9a4b7414aab3d192419b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-regular.eot HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
HTTP/1.1 404 Not Found
Date: Fri, 23 Sep 2022 22:16:08 GMT
Server: Apache
X-Powered-By: PHP/5.6.40
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <http://bellina-bau.at/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4192
Content-Type: text/html; charset=UTF-8
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-semibold.woff
91.227.204.35200 OK 75 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-semibold.woff
IP 91.227.204.35:0
File type Web Open Font Format, CFF, length 74996, version 0.0\012- data
Hash f079be3e96761bf618ea2a5b314eb014
2aad9b3d874cdd21ee8496738af5f5b94c7382a0
b2106f33585940e944fac6de500dd767c4592692689c001c45c475476583404e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-semibold.woff HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:09 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1e0964c14-124f4-5e8fa430cea9b"
Accept-Ranges: bytes
Content-Length: 74996
Content-Type: application/font-woff
X-Pad: avoid browser bug
bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-regular.woff
91.227.204.35200 OK 75 kB URL HTTP/1.1 bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-regular.woff
IP 91.227.204.35:0
File type Web Open Font Format, CFF, length 75420, version 0.0\012- data
Hash 52f5045b30343cd0e0a5acbd215a50e9
dc37d3ef1b5939ad6a5dfae601ae183c503095f2
f679efce1ea9cbed26a573aa8c8db1d01fe51abe4fcc2a77d18ab7bcb03e0bb1
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/2022/09/sg/sg/files/fonts/sourcesanspro-regular.woff HTTP/1.1
Host: bellina-bau.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://bellina-bau.at/wp-content/uploads/2022/09/sg/sg/files/css/style.css
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 22:16:09 GMT
Server: Apache
Last-Modified: Sun, 18 Sep 2022 21:27:27 GMT
ETag: "1e095cc33-1269c-5e8fa430ccb5b"
Accept-Ranges: bytes
Content-Length: 75420
Content-Type: application/font-woff
X-Pad: avoid browser bug
push.services.mozilla.com/
54.149.101.24101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.149.101.24:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8kzC76zImlwlcvHWhOOYcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 0174PUqTnCsMIzPtXbSZx9XKbT8=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4056
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:16:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4056
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:16:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4056
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:16:10 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4056
Expires: Fri, 23 Sep 2022 23:23:46 GMT
Date: Fri, 23 Sep 2022 22:16:10 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b4a034f8a3f2e69e852a69075d20b0e3
a7a6043178f05f547a08808ea8b34a6703154b42
8f1a045214d7049cb9f9a1ab2c55b6753907741b7cbfcb2e02f916f95a56ddcc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F860e3a33-2946-4ad5-9687-6cc6953b920d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5179
x-amzn-requestid: 57451c31-0b96-4aa5-ae63-54f949ab3d68
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQlGrRIAMFklA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2736-0bd483e47d880a837c7316ce;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:58 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OEBChdfqreTTNtWpSQfl4Eqsjj--P1EoJsFESumBcVJHdFNGSpN7gQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:26 GMT
age: 1664
etag: "a7a6043178f05f547a08808ea8b34a6703154b42"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe84af5-cb77-4bce-b050-bb28c67f2536.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe84af5-cb77-4bce-b050-bb28c67f2536.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 05cc8199d072ccff34e3c0b2ecd65a09
7eda659464993f2945f2c5f4332f96fec9dc0e4c
4fb425a78b4664385741112795978280166b6331baf461aa4ba9440d0ef3826d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febe84af5-cb77-4bce-b050-bb28c67f2536.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3936
x-amzn-requestid: f0dba0d5-752b-4a36-bedd-56e9dd7b508e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7shFH_iIAMF28w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e27a0-260fa8c121160aa44b30bd5a;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:39:44 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sLH1U82dYcrJhJQNJ8eFcGT3AMa0MITTZwtCwgVMKCRidqmMOMMqTA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:46:45 GMT
age: 1765
etag: "7eda659464993f2945f2c5f4332f96fec9dc0e4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f727cc665bfa383779422949037a83a7
24d4dcad1590e79e89a1ffe343bd7fe616528c5a
72dc66286d9ea7b71b6c9a116ff69380a97253c73f1ba2a5b3da34790e321e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F993a9251-cb79-4060-b043-aacb127c6565.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8907
x-amzn-requestid: 974b20af-4775-45bd-9e3f-55e5aa363c2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sQRGPtIAMFZCw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e2734-18aebf577efb8aaa0182aeed;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ANAYROIRBWe_Y5TxqYp9IDnqnuOHQGjvyj1K8Z85m7C9DGCXXuQ-Cw==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:31 GMT
age: 1659
etag: "24d4dcad1590e79e89a1ffe343bd7fe616528c5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 007aba90cc24589b974c6039372121d3
c308f846b81275e50122f99a229ae3fec0b5fe4c
dac4561f24f52c33e79e86b0794eab704866a879d6967ec120fdf7bc5a4e2d8c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F175a85c3-10d3-4e8f-bb64-d8da75a938c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6294
x-amzn-requestid: 4007bdf7-f31a-414b-8711-f319aa09692b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7ruHG-loAMF-QA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e265a-18dc206b23fe3e383c1eb9cc;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:34:18 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Qvt0ZGsgQJ6WpKx36eDB6Q22qDIkhcFOxLYyZJgiZCM7vTsLb7L8lQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:25 GMT
age: 1665
etag: "c308f846b81275e50122f99a229ae3fec0b5fe4c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f10a12719b387d176497669ba75f0acc
16e42ba7b20555bf5a8615e5f4bb561204aeeb5a
0cb2231817387d43a490565b61e24ea7a3cfcff3281f4ab4379a882cc5c3173f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd1500786-3bbf-46d0-b16e-4aff6d48a585.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14579
x-amzn-requestid: bce2c126-0883-4255-9246-d8055860f898
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YcCj6FYCoAMF9Yw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63217e18-66ba2e5d64b6a5b32b7ab36b;Sampled=0
x-amzn-remapped-date: Wed, 14 Sep 2022 07:09:12 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: igIWZ2IhMA_GIovp4HgIHtGeDt5xoX0iThoQFKjnNJUYP_uMdO7FHw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 22:11:52 GMT
age: 258
etag: "16e42ba7b20555bf5a8615e5f4bb561204aeeb5a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e1087dcce202bbbc8c84196bd2050662
670d89082f8da643e1196b11fb64bf71707f0e8d
f6a7b6e07177431d7845e2f2b7b1b3b76088671db32aeef580a72e9bd3ddae00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85d1d130-04e1-43f4-81d7-b15e9286f813.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8354
x-amzn-requestid: 3ec3470c-2268-4102-af88-27dcfed76bfc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y7sPCGOcoAMF2xQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632e272c-481aa98b413690636fc3a2f0;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 21:37:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pVtBCTCGh0DCF_1Vf9qMWttoDUQO_xSCkpdis9Gu3o4_cVEqaHngVg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 21:48:30 GMT
age: 1660
etag: "670d89082f8da643e1196b11fb64bf71707f0e8d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2