webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
217.160.0.238200 OK 14 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
IP 217.160.0.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (437)
Hash 44d32f5001ee06b08cee9457bafdd634
b46cdfcaae7155711d3a7e3f5848a55e7da56ce7
2e2d35fe7a76f755f9b1ca04339c1c04967c9112b13e92f6a5c853534b0a46b9
Analyzer Verdict Alert openphish DGI (French Tax Authority)
phishtank Other
fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/ HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:48 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: W/"ee62-5699db34438e6"
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1d2d5a5cb5a0eb9006019ec8a8a7a60c
a97cb86a600ae223434604442f997504bc3a293b
fe016a09001e17224ac6ac11c76b7c4fa98bc99480575b6e0ae3ca22805148d3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FE016A09001E17224AC6AC11C76B7C4FA98BC99480575B6E0AE3CA22805148D3"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2646
Expires: Mon, 05 Sep 2022 19:34:54 GMT
Date: Mon, 05 Sep 2022 18:50:48 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8898
Expires: Mon, 05 Sep 2022 21:19:06 GMT
Date: Mon, 05 Sep 2022 18:50:48 GMT
Connection: keep-alive
getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
34.120.5.221200 OK 45 kB URL HTTP/2 getpocket.cdn.mozilla.net/v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30
IP 34.120.5.221:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 15c69de87cc5a8032465684c32590170
bdf0af431ac8fef2e6a6ebeeed8d2849dab669ba
4dd833d599c3e83f85f7b8838a0c4db6397e84ac68e7480abeb744b964e671be
GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US®ion=NO&count=30 HTTP/1.1
Host: getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: mW0-6MOfcPUcQF0DFlFHkgKqzs_ms1MLygh7L7_HfFFkN7uwk1aqsQ==
content-encoding: gzip
via: 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:43:06 GMT
content-type: application/json
content-length: 45251
age: 463
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 48ca0beea419a9039591cf1aee5179e0
9e92629f505fcc07aab51221e8fe62197a23e307
630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 02:39:41 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZrGi3z9cMtzUDwkAMFOEBgEFxKqtFEnstE-UL_mwHcd3unktVIvr9g==
age: 62932
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Sep 2022 18:50:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/autentification.css
217.160.0.238200 OK 12 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/autentification.css
IP 217.160.0.238:0
Hash 2135a1c94a8522de13405db49a4d39ab
441598d1ddbbff4059e7cde4b11ef0e9e72fdfef
2329a89e6cac24e87c7d2db681e442c7d72d6823a8ad650764c734dcb42a0435
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/autentification.css HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 11905
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2e81-5699db34438e6"
Accept-Ranges: bytes
detectportal.firefox.com/success.txt?ipv4
34.107.221.82200 OK 8 B URL HTTP/1.1 detectportal.firefox.com/success.txt?ipv4
IP 34.107.221.82:0
Hash ae780585f49b94ce1444eb7d28906123
7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
GET /success.txt?ipv4 HTTP/1.1
Host: detectportal.firefox.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 05 Sep 2022 16:44:56 GMT
Age: 7553
Content-Type: text/plain
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 18:44:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a3I3L0egOml4kI5s4pUA1LRCPbBMr4N4kd_7Yw195s5Pw0Yq4b9eng==
Age: 354
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap-3.3.6.min.css
217.160.0.238200 OK 121 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap-3.3.6.min.css
IP 217.160.0.238:0
File type ASCII text, with very long lines (65371)
Size 121 kB (121275 bytes)
Hash 9e47b200767470c3ffdcd6016aeab9b0
1b49a9ec74d70e494708659dc88491d45abe93e2
c4a590148ea4d288573c1d0b5169bdb4d22aa0120ccc02f169ff04bffbdf30da
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap-3.3.6.min.css HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 121275
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "1d9bb-5699db34438e6"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/fermer.svg
217.160.0.238200 OK 1.8 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/fermer.svg
IP 217.160.0.238:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (340)
Hash c2a9168d032fcd7c8a0f8f015b10d211
8376d9a7c74b0b3ba4cbfde3658cf893a4cce7ec
bd41f1926d21d2cdcc4522c7d6ad6348e4f79230f97dc81910486b633fc98c23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/fermer.svg HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 1757
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "6dd-5699db3447766"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr2.gif
217.160.0.238200 OK 7.9 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr2.gif
IP 217.160.0.238:0
File type GIF image data, version 87a, 500 x 45\012- data
Hash 9ac569f9172ee2f72b4b8ec60e878200
1aa6a5e76bf8e57df193b9c4c54a695885aeae07
c4544c13ad576f40a13c65e029f0b71dd886995a44fe60d8950e4a3ac3c72ef2
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr2.gif HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 7850
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "1eaa-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/ban.png
217.160.0.238200 OK 12 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/ban.png
IP 217.160.0.238:0
File type PNG image data, 1349 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 3899ff84c5eb073ffab384e3a825defa
50dc9339b94441ba48cc9df4fb127f49b0e5cd16
622c223c03d5a3d82c158ff7fc32251314a70debfca052ca48a9075f4fa70373
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/ban.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11752
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2de8-5699db34438e6"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_acces.png
217.160.0.238200 OK 11 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_acces.png
IP 217.160.0.238:0
File type PNG image data, 358 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash 4e6c27da9520a8c2ceef91ed89259369
2b08f22f82091ecc2870b479757fd649180e97a2
df2b07cd437457754a5c25161c293a2786b7cb8469f1ceb7cc9c9610f9138ed5
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_acces.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 10775
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2a17-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr.gif
217.160.0.238200 OK 21 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr.gif
IP 217.160.0.238:0
File type GIF image data, version 89a, 261 x 224\012- data
Hash 3ca9a8d2da0185952738f92c4e8b5af5
3a3fee8aa01051a0fd781928cc99c62849bb2370
30c41fffa269f92fe8cd7f7b8826158257370884de8bd331c88fe32838a2b0fe
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr.gif HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 21111
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "5277-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/crd.png
217.160.0.238200 OK 9.3 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/crd.png
IP 217.160.0.238:0
File type PNG image data, 163 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 48cb7b68f0bf0520161fba39559eb7c8
2e00a53a2e4de2e1c79f699614ef67f256c772e7
d841754163f6d3f7a257af53c78c476857b03f211f41f931204a840770a089bb
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/crd.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 9314
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2462-5699db3447766"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/but1.png
217.160.0.238200 OK 880 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/but1.png
IP 217.160.0.238:0
File type PNG image data, 152 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash a264fe979d29bf399d007787458a8afb
2b07ab7e625652c8cd7970af665433edbca04a8c
d140946305b44dbeb0ed3c27d4a93ff1a186e622fdda742e8c46761bba676157
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/but1.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 880
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "370-5699db3444886"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource
217.160.0.238200 OK 45 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource
IP 217.160.0.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash c25b519175bc201ae8e05ec6110c9655
f0b485d83097ab23700e97bf54713fa479b9f96e
37f497f9553602e379c6fa855902661b59cfcf348f8e7958785cf2b294c88c5a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Length: 45436
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "b17c-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr_th.gif
217.160.0.238200 OK 12 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr_th.gif
IP 217.160.0.238:0
File type GIF image data, version 87a, 500 x 77\012- data
Hash e80bd3543a2f020bb1d41127658a71dd
cf385d3e0852316b718f199d4e5da68f05ffeb29
081f617d20c0d2420e4f16b1ea74665263cf1dc94b165344e9db43c8f692fa67
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr_th.gif HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 11850
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2e4a-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/Miniballs.gif
217.160.0.238200 OK 18 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/Miniballs.gif
IP 217.160.0.238:0
File type GIF image data, version 89a, 64 x 64\012- data
Hash 19df9250795ee08e7c07c9f342422657
97a1f8cd94be6909fdde853ba6f04b1432e03ba5
4d644aae3091c93a949be93b969dcd0f1ac12faf5c233556a6aa9d64b79479d6
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/Miniballs.gif HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/gif
Content-Length: 17926
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "4606-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/aide.svg
217.160.0.238200 OK 5.3 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/aide.svg
IP 217.160.0.238:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (2097)
Hash f7b182639e776e90e75bd08d41c6b27e
a99286e8ef923b37679f523729db1a281e1b4b9d
e952750309dc8bd10a6bc568005552dbc541ec388fcd5b959a2e2f918e6a93df
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/aide.svg HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/svg+xml
Content-Length: 5335
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "14d7-5699db34438e6"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/info.png
217.160.0.238200 OK 2.0 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/info.png
IP 217.160.0.238:0
File type PNG image data, 107 x 105, 8-bit/color RGBA, non-interlaced\012- data
Hash 99ef60e7a90d88658f2f7b6086c4782f
970b75487fd783a066d1d20d5148e4c408a566ed
b8b97e5544aa98b04f13bbb97f44ca648fcea23af0a65a4000eb85889b706c1d
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/info.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 1995
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "7cb-5699db3447766"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cont.png
217.160.0.238200 OK 874 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cont.png
IP 217.160.0.238:0
File type PNG image data, 89 x 37, 8-bit/color RGBA, non-interlaced\012- data
Hash 0be425f11d1bef7fd7be7a54ddb76f03
ef1ccb867a3641407084e7655fbee71b725f6431
6beddd7cd1ab5ee9e31ac674a1430ff83b07f4e1acbd7fd208186485b3da68a4
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cont.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 874
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "36a-5699db3444886"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_fiscal.png
217.160.0.238200 OK 11 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_fiscal.png
IP 217.160.0.238:0
File type PNG image data, 358 x 90, 8-bit/color RGB, non-interlaced\012- data
Hash e1ec4daf3bb73fc2d1ae4a8ccaeaab56
95f7c081aba105bb2ee25d136866c974ef37905e
662ee4624be6f67f73e1365f9ed8eaba64b08044eea22f41102b64cfa1b97c6b
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_fiscal.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 11352
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2c58-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/logo-fc.png
217.160.0.238200 OK 7.5 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/logo-fc.png
IP 217.160.0.238:0
File type PNG image data, 45 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 34bfd90a0a2d8e31841fa6fa5d8f0773
d5d5274014cb0fdefe1412a48456278012b9ed33
8a1ffefb7605c98a92890e4ab41705314eb5c2aab201d4863cb06a24ee2d383d
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/logo-fc.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 7532
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "1d6c-5699db344a647"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cp.png
217.160.0.238200 OK 57 kB URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cp.png
IP 217.160.0.238:0
File type PNG image data, 110 x 164, 8-bit/color RGBA, non-interlaced\012- data
Hash c4fa10a90e55029c1bf61e330345b5ea
73589af709736e8dc67d726fcb2653a700045bf3
adc948c51bf75746584855ba175e7b36dc7d1e3edd835a179c3b1ab0ae3567e3
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cp.png HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 57034
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "deca-5699db3447766"
Accept-Ranges: bytes
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource.html
217.160.0.238200 OK 145 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource.html
IP 217.160.0.238:0
File type HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5e610eda263540ba05be0d6b5cf807a2
269663c27bdb68d880847d4f7bd4b62796926c93
682e5b3b42807f8a40d9f12d20c12a824dbf1dfcda7fefab7c81a08a35c9bfca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource.html HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: W/"95-5699db344a647"
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26c48d7fa703d039e1f9da634bf4fb40
35ce8f380861778dff436d4058bcbb857f3b9947
7874e0803edae34c792cd15d63375fed60b4b035815908698384760392c99e7b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3914
Cache-Control: max-age=169777
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 18:50:49 GMT
Etag: "631629f0-1d7"
Expires: Wed, 07 Sep 2022 18:00:26 GMT
Last-Modified: Mon, 05 Sep 2022 16:55:12 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 05 Sep 2022 18:38:16 GMT
Expires: Mon, 05 Sep 2022 19:28:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cY7xkZVZBRzwTi3hln5xPLyfmv0MgY-l7UUJphQoJ5HROBafqPz5Mg==
Age: 754
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b57a9dd04797bf34612c80361f1dffb3
56573166d8b9cd9b8dae19fd905e4f3293af306b
b03552109f1e7d1e482aa14614ffb1e38fb53ae4951152aab307b927674dad98
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2162
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Sep 2022 18:50:50 GMT
Last-Modified: Mon, 05 Sep 2022 18:14:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
44.227.235.173200 OK 8 B URL HTTP/1.1 shavar.services.mozilla.com/downloads?client=Firefox&appver=96.0a&pver=2.2
IP 44.227.235.173:0
Hash 29fc57841962e407cb50c1be60284bf7
ce968a77e2996da5eee8925182318f171ccdce47
ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1
Host: shavar.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Date: Mon, 05 Sep 2022 18:50:50 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement
217.160.0.238403 Forbidden 35 B URL HTTP/1.1 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement
IP 217.160.0.238:0
Hash 613f1d7b52a65da160c06109f255ec63
0a7560783ac26405b7a6526bd6c15001451b0dab
ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
Cookie: essai=cookie
HTTP/1.1 403 Forbidden
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
Content-Encoding: gzip
webuyworkshopequipment.com/favicon.ico
217.160.0.238404 Not Found 570 B URL HTTP/1.1 webuyworkshopequipment.com/favicon.ico
IP 217.160.0.238:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash e5f62d87fe7d7b40a6dd7577cae70429
e8bd763b69569e949b97154c3f089db62d0fcb31
0b58763db31f261fd8a1892652cbe72de31c6eba97e0ec6f3a4e15edd399e9e7
GET /favicon.ico HTTP/1.1
Host: webuyworkshopequipment.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
HTTP/1.1 404 Not Found
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
X-Frame-Options: deny
Content-Encoding: gzip
push.services.mozilla.com/
35.164.56.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.56.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JKCOjCLdF1ruTP7U3GvEcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J8jiki5hRHuOyB4MMj/ybQ7Jpm8=
firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221662386233158%22
143.204.55.36200 OK 5.2 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221662386233158%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (22383), with no line terminators
Hash 2c8a945d2143c6407f44c61c5ff2f7a7
e3bbf400e0a45444c72180eb961b59c9034a4fae
1773ab2998cdffadaaac5452fee247942ba0a1acb47488f8a539880c22e923aa
GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221662386233158%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 05 Sep 2022 13:57:13 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 05 Sep 2022 18:02:00 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 18:02:09 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ww9lqG1GbbtW2YI7Pbj2aejy8UzXSmrkw8RaHhfgfBcq1zPt3Z_Xmg==
Age: 2930
firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1662381443719&_since=%221653914271178%22
143.204.55.36200 OK 12 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1662381443719&_since=%221653914271178%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Hash 096980a473a883e6eeaf47dc9a14f237
491cde318ec986cc64ff2fb45f71e6560d368feb
1a6d7840dbf67d703a920313758fc70b272df5c2c40cffb770a9f0a728b72b14
GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1662381443719&_since=%221653914271178%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 05 Sep 2022 12:37:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:43:10 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cKIPlMgY1X-2K454yGGZEnMg4bv0tVy5Bq6cvEmUepNjGajlgUlGTg==
Age: 520
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t0Z1Hzmu--uTyglLaKy9lRYjdvRgB5TO-aH6hi5zse86WVrKX_oOxw==
age: 63333
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 18:44:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Rp_WLxO5BO0IRwR-NC2lbww9VhuawguOZGPzj1z_GIUagfIaj8TEzw==
Age: 355
firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin
54.230.111.82200 OK 796 kB URL HTTP/1.1 firefox-settings-attachments.cdn.mozilla.net/staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin
IP 54.230.111.82:0
Size 796 kB (795699 bytes)
Hash 9b95765b0e26af76116a95a966d61354
3f7c1b40fc999b83f3696f455402e49ab484b027
34f969c8e082310785ec4262e2d5b58c919d4de856ffc64b3467507f83ac9571
GET /staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin HTTP/1.1
Host: firefox-settings-attachments.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/octet-stream
Content-Length: 795699
Connection: keep-alive
Last-Modified: Mon, 27 Jun 2022 12:39:11 GMT
x-amz-version-id: 9np1boOrxtHVWzMczpbX1a.N_ewQWHDF
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 05 Sep 2022 02:59:01 GMT
ETag: "9b95765b0e26af76116a95a966d61354"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LPMpURwMZbdV0HzjLeXXD35bqyzyQDSlLRSLYuIT2r32de_EEAYMgQ==
Age: 57218
firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1662336065690&_since=%221654732864402%22
143.204.55.36200 OK 12 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1662336065690&_since=%221654732864402%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (59438), with no line terminators
Hash de44b753cd183e2845bf19db39b436c0
6c25b95795081ab7f42f6b16ef5bc96bc3dc93f5
f87377659e4eec2235c9167602e9c99f4c9e08cb6b9542c1b4c061c959b87b36
GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1662336065690&_since=%221654732864402%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 05 Sep 2022 00:01:05 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:19:25 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DINiSOG-pXIkKA8x2AGg_zh9LEMUEoR75oOhvn7HjypvxAiELfginQ==
Age: 2390
firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
143.204.55.36200 OK 681 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (681), with no line terminators
Hash 747f384efea12ce5dab98117b84a36d8
3bfa87d8ca19bf259e1b28f5d8484560bc4aa59f
674580bbd668da2fccee5bd78cd11bdb237a800ec945160353537b15c3e924f2
GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 681
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, ETag, Last-Modified, Backoff, Cache-Control, Retry-After, Expires, Pragma, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sat, 03 Sep 2022 16:36:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store
Date: Mon, 05 Sep 2022 18:50:40 GMT
ETag: "1662223014803"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cnc10Pp3kkVc0ITq3ah0QyVDYduN9xPRI4hLTx8nKYAyvsIwUfrYXQ==
Age: 11
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22
143.204.55.36200 OK 893 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (1710), with no line terminators
Hash cdb42a32eb079761007d29ee4bbc9a0b
9653c4215e912886e5b6f5a39a33189147f10573
26e1a455c2a879130bec3641d40ed1e2aabed7d0aafde9e11a07a2cc6eb63eb8
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:15:14 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hxhr8HGAoGwTFVyw1_WryLK_vKLI8fIGYBkMCwz_Dbe8Bul3ga0QsQ==
Age: 2148
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-08-30-15-09-07.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-08-30-15-09-07.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash c0f7028ab1157f24d515abdede77d5b3
00208a34ed76644814967ad5611bdbc1f3ba6780
6a1b8917468b937fda9acbfead382d4349063f5bd36a812dbd79e91645abb576
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-30-15-09-07.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Mon, 11 Jul 2022 15:09:08 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 03:06:56 GMT
etag: "c0f7028ab1157f24d515abdede77d5b3"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mNIwqR3vSz5yHDS0tOFITjTj5z476BkeGVoeXztaOEKTGA1RGEZ72w==
age: 56636
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-06-10-13-16-32.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-06-10-13-16-32.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash c2eff79baaa46df0eb1ad5ad7b702bca
a1161150e75b0f0dd30de06ac6f27c1be4810048
6871f00b47a3525296bf02f508923ab3e15cc705694aee45d8db44b9c63bd201
GET /chains/remote-settings.content-signature.mozilla.org-2022-06-10-13-16-32.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
date: Mon, 05 Sep 2022 01:53:05 GMT
last-modified: Thu, 21 Apr 2022 13:16:33 GMT
etag: "c2eff79baaa46df0eb1ad5ad7b702bca"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TC5__B1f_XHT2CdhvqiRTgdmvifpc6MZ-yFteOarldIgAZO9l0cdsw==
age: 61067
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704
143.204.55.36200 OK 990 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (1917), with no line terminators
Hash b6407a5941093b39ebd04d169df8bbf3
818bda143425c1055f103f8e1db3ed43cc98bd93
283dd5f141930ee1f53a16db0eba6f3aeb1d4f13247a3f006abe84427c066dcb
GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:34:29 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s7tyRD3ljrVidkqx6r6qT5ZRQowvZD3CcNqoTTGbWqaJ8Zh6c6_nqQ==
Age: 983
firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1657747510534&_since=%221654266643527%22
143.204.55.36200 OK 1.0 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1657747510534&_since=%221654266643527%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (2195), with no line terminators
Hash 284ce6f489d4e39635136f153138aeb3
e15907c1e8e1a973af52a876c4efac08eb4a8f4d
0728663f31f157e091c5f658b8fa24e2833830e95429146d470f2edd6e8705fd
GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1657747510534&_since=%221654266643527%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 13 Jul 2022 21:25:10 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:36:21 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8oruxiizvTjZQHCZI8PMFwLI7zJAwjksrZZIc6H86LUzJBeprnMwBg==
Age: 904
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-09-19-18-34-07.chain
143.204.55.35200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-09-19-18-34-07.chain
IP 143.204.55.35:0
File type PEM certificate\012- , ASCII text
Hash 578b9ff83ff3950ab2a3d1a8344d2938
39d48b67ba6aa45ec01767725e726cf9b0c87a70
35c99da9a5463a4788ceab7cf4b027bb25506cde28ace36c70d0bc924138f2f5
GET /chains/remote-settings.content-signature.mozilla.org-2022-09-19-18-34-07.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sun, 31 Jul 2022 18:34:08 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:37:08 GMT
etag: "578b9ff83ff3950ab2a3d1a8344d2938"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _oJDi-LRAJ8g3Tg-S6eaRraTIx2YWg-La3tTQnFecmp4YbjUSwX2Cg==
age: 62024
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1659547595259&_since=%221653578606314%22
143.204.55.36200 OK 1.4 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/cfr/changeset?_expected=1659547595259&_since=%221653578606314%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (3677), with no line terminators
Hash 5f4edd5433264154f517292748387ebf
d6e41d472f12649a84d2484433c89d64836ca059
f749fdbbb83278e27564e565558832d799197c405c39055ea1d3cfb1274f9086
GET /v1/buckets/main/collections/cfr/changeset?_expected=1659547595259&_since=%221653578606314%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 03 Aug 2022 17:26:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:05:12 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cj-Wc2Ybb19sR6YJEYHP45crFbnmClAO6nhq93lFVBui2-vd0VQOZw==
Age: 3032
firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1662120887268&_since=%221654636467710%22
143.204.55.36200 OK 5.0 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1662120887268&_since=%221654636467710%22
IP 143.204.55.36:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ef8c23eb9ddb7ebd8b9183a7089b6f3f
6eae5623ffdf5f30831bdd4f3cb61bb1829dbc08
9d6ed20bd90c3e952ee4c32a10706bc5eb20a6ae6dcf598448f029022769102c
GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1662120887268&_since=%221654636467710%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 02 Sep 2022 12:14:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 17:56:48 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Siw8WCYB9C8byRxgtcNGTMO5Ul4MG9qWx_ypxSKvWVU-PWt4rbSMPQ==
Age: 3277
firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1662044085942&_since=%221622732735407%22
143.204.55.36200 OK 5.5 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1662044085942&_since=%221622732735407%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (20424), with no line terminators
Hash 4aeeb7e3b8bbe13f0e937ff570f20777
3d30e1983d6ce6126fef50acaae4a41d579b1c09
3f016c7fbcd505500620db2169b0f39282087dc89ba805e479a8ef53d45f10b7
GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1662044085942&_since=%221622732735407%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 01 Sep 2022 14:54:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:00:58 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kJxJ95Vk6vmIdtRufOuINSm_pIZ4fxGMc7WQBxQRvkB0KLHu-XeUcg==
Age: 3036
firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1661199949574&_since=%221648132005528%22
143.204.55.36200 OK 3.4 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/search-config/changeset?_expected=1661199949574&_since=%221648132005528%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (14029), with no line terminators
Hash 64e7a6dda8110b0ba7c31a4e28bfc96f
addc0f9994b78a873012b9465e3aa515a780ddf9
10823e4a8aa955a94172bc12eb933498ee792bdd49d6f24e73db175b6d79bff1
GET /v1/buckets/main/collections/search-config/changeset?_expected=1661199949574&_since=%221648132005528%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 22 Aug 2022 20:25:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 05 Sep 2022 18:14:12 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lDHjwHjTeUG_V0iwH2XsLP4MBDolrASnOuWcfJz-aW9aJiM_rbI2Sg==
Age: 2199
firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-rules/changeset?_expected=1659924409785&_since=%221652712410939%22
143.204.55.36200 OK 783 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/password-rules/changeset?_expected=1659924409785&_since=%221652712410939%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (1393), with no line terminators
Hash d8e59c6bd160719da9f2b9571af22b8e
b4353f8308be656bdf00bc4676fdb23e7c285f32
a3e7359fc3dbb20b38aae533bedd4061dad7a3440ea323cb17dba0540a670c81
GET /v1/buckets/main/collections/password-rules/changeset?_expected=1659924409785&_since=%221652712410939%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:06:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:00:03 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l6kY_HxZe0MYsz9C8DoAXayclycMgc5oi386N1JlCodGP8IoDAPcnw==
Age: 3067
firefox.settings.services.mozilla.com/v1/buckets/main/collections/websites-with-shared-credential-backends/changeset?_expected=1659924446436&_since=%221650898092205%22
143.204.55.36200 OK 3.1 kB URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/websites-with-shared-credential-backends/changeset?_expected=1659924446436&_since=%221650898092205%22
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (8682), with no line terminators
Hash ca9b7ec20643050e8acc3b7ee435f6a3
204f7d4e4dcd10b449d91bd6f9edbffe17dd6dd1
531a79432808c6959aa6fe610b7112c27bad3f4c548e411b2861eed0bf06165d
GET /v1/buckets/main/collections/websites-with-shared-credential-backends/changeset?_expected=1659924446436&_since=%221650898092205%22 HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:07:26 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:09:01 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TkFsjY_B-Oqi_SVVIYoel1Dexe2C3MrshW10pDi3J-VzvlLAbtBoOg==
Age: 2525
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4b2d6a516e93799b54fe2bbd6630f86
b5a7380f294876dd308c7fde294f36a425c1be01
7463878d8967ff31d7ce20d5a4408c23ad59123032a990c21a47df0881edcb86
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5377
x-amzn-requestid: 2adc68e8-1889-4233-8ac4-e2a8d44ccbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_4XzF1FoAMF3AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63163a98-5918897d7de556f75bbfab34;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 18:06:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DpNb6dBygeDbRbFWIkeXYVddcgxlSVuq4y73JvG315Xp-wkwiDhZyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:09:25 GMT
age: 2486
etag: "b5a7380f294876dd308c7fde294f36a425c1be01"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 290f6551c5ac539ea60810b135750f17
3633391a8dd87ef10fcb0d04d7b309738affc4a7
d94d133faaf232cf15b5c3f38f5b45d87d70bce0668d607b5c66a8d3f836540f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7830
x-amzn-requestid: c56af3b5-2c48-4243-b220-d56a9be47990
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3H4JoAMFiMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-23ec24d867e3e5906fffa1a6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VgP7BDBmd5A5bAmRgO88geep419uZ0TQop4jEmRkx-q9rX4PUJZOCQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:16:55 GMT
age: 74036
etag: "3633391a8dd87ef10fcb0d04d7b309738affc4a7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7fe061740ad833cfe7ff0fe078d6810d
15d0fc3fdced758b5797361bae0fd53341e0581d
5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZh0s85w1Nt6qZdZybNBcQHEXMWQIJvtAyCbF4oWsYUOlIKuNS5Fpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:38:48 GMT
age: 72723
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 30bf854fd3e27e2313a3d26fc43b9990
032acf1bfb0c8e2cbce8f2ff4d2964424b044951
7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GuATNx2xnWnEl0cr_2ZWZo_jOWbHlSBYksIeHFDoHAK9o5Tf0PPliQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:03:29 GMT
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
content-type: image/jpeg
age: 74842
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca50f9c56ff869b0b63ca71b1a9f8170
13b16ca74113dfd52ccf23e6bb39307fc713f984
76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tR9oeUGtH0NFZdnZj93V6HysPnKOTJhhiEOTNwYdq-4xIzeBZblrhA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:58:46 GMT
age: 75125
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 10318189f33f071dda64249ab9c8c5bb
e5b5b649a243e5c004d9923d19d4421d1ea96d23
3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uz2NbcE4AmOvFQkhJALSpXCGizilya0TuFcczfEwtV09cGXtgVNlpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:08:58 GMT
age: 74513
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2