Overview

URL webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
IP217.160.0.238
ASNIONOS SE
Location Germany
Report completed2022-09-05 18:51:04 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish
Scan Date Severity Indicator Comment
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) DGI (French Tax Authority)
PhishTank
Scan Date Severity Indicator Comment
2021-05-09 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Other
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
2022-09-05 2 webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e (...) Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (12)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (5) 1152 2020-11-03 12:26:46 UTC 2022-09-05 05:14:21 UTC 143.204.55.35
mnemonic passive DNS detectportal.firefox.com (1) 1601 2017-01-30 00:03:31 UTC 2022-09-05 04:43:17 UTC 34.107.221.82
mnemonic passive DNS firefox.settings.services.mozilla.com (16) 867 2020-06-04 20:08:41 UTC 2022-09-05 14:49:07 UTC 143.204.55.36
mnemonic passive DNS ocsp.digicert.com (2) 86 2012-05-21 07:02:23 UTC 2022-09-05 17:53:49 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-05 08:52:38 UTC 34.120.237.76
mnemonic passive DNS webuyworkshopequipment.com (31) 0 2018-01-09 15:17:16 UTC 2022-09-05 03:28:10 UTC 217.160.0.238 Unknown ranking
mnemonic passive DNS r3.o.lencr.org (7) 344 2020-12-02 08:52:13 UTC 2022-09-05 04:38:00 UTC 23.36.76.226
mnemonic passive DNS getpocket.cdn.mozilla.net (1) 1369 2017-08-31 07:41:15 UTC 2022-09-05 05:50:46 UTC 34.120.5.221
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-05 04:38:54 UTC 34.117.237.239
mnemonic passive DNS shavar.services.mozilla.com (1) 3602 2017-01-30 05:00:58 UTC 2022-09-05 06:00:36 UTC 44.227.235.173
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-05 05:10:58 UTC 35.164.56.167
mnemonic passive DNS firefox-settings-attachments.cdn.mozilla.net (1) 11509 2019-11-30 09:32:57 UTC 2022-09-05 06:24:17 UTC 54.230.111.82


Recent reports on same IP/ASN/Domain/Screenshot

Last 3 reports on IP: 217.160.0.238

Date UQ / IDS / BL URL IP
2022-09-15 01:54:40 +0000
0 - 0 - 17 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238
2022-09-05 21:37:37 +0000
0 - 0 - 16 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238
2022-09-05 18:51:04 +0000
0 - 0 - 17 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238

Last 5 reports on ASN: IONOS SE

Date UQ / IDS / BL URL IP
2022-12-03 19:14:51 +0000
0 - 0 - 9 nftoperadarte.com/ 217.160.0.161
2022-12-03 18:13:08 +0000
0 - 0 - 5 robloxstore.co.uk/ 213.171.195.105
2022-12-03 18:10:29 +0000
0 - 0 - 1 citicom.info/ 74.208.236.200
2022-12-03 17:52:31 +0000
0 - 0 - 2 beta.medi-buy.de/mailster/1904/48b0837e0e2156 (...) 217.160.0.82
2022-12-03 17:33:51 +0000
0 - 0 - 2 beta.medi-buy.de/mailster/1876/9f059ea56a6f08 (...) 217.160.0.82

Last 3 reports on domain: webuyworkshopequipment.com

Date UQ / IDS / BL URL IP
2022-09-15 01:54:40 +0000
0 - 0 - 17 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238
2022-09-05 21:37:37 +0000
0 - 0 - 16 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238
2022-09-05 18:51:04 +0000
0 - 0 - 17 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238

Last 2 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-15 01:54:40 +0000
0 - 0 - 17 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238
2022-09-05 21:37:37 +0000
0 - 0 - 16 webuyworkshopequipment.com/wp-content/themes/ (...) 217.160.0.238


JavaScript

Executed Scripts (5)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (73)


Request Response
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/ HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:48 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: W/"ee62-5699db34438e6"
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (437)
Size:   14299
Md5:    44d32f5001ee06b08cee9457bafdd634
Sha1:   b46cdfcaae7155711d3a7e3f5848a55e7da56ce7
Sha256: 2e2d35fe7a76f755f9b1ca04339c1c04967c9112b13e92f6a5c853534b0a46b9

Alerts:
  Blocklists:
    - openphish: DGI (French Tax Authority)
    - phishtank: Other
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "FE016A09001E17224AC6AC11C76B7C4FA98BC99480575B6E0AE3CA22805148D3"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2646
Expires: Mon, 05 Sep 2022 19:34:54 GMT
Date: Mon, 05 Sep 2022 18:50:48 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8898
Expires: Mon, 05 Sep 2022 21:19:06 GMT
Date: Mon, 05 Sep 2022 18:50:48 GMT
Connection: keep-alive

                                        
                                            GET /v3/firefox/global-recs?version=3&consumer_key=40249-e88c401e1b1f2242d9e441c4&locale_lang=en-US&region=NO&count=30 HTTP/1.1 
Host: getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.5.221
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
vary: Accept-Encoding
content-location: global-recs.php
tcn: choice
x-frame-options: SAMEORIGIN
status: 200 OK
x-source: Pocket
pragma: cache
p3p: policyref="/w3c/p3p.xml", CP="ALL CURa ADMa DEVa OUR IND UNI COM NAV INT STA PRE"
x-cache: Miss from cloudfront
x-amz-cf-pop: SEA73-P2
x-amz-cf-id: mW0-6MOfcPUcQF0DFlFHkgKqzs_ms1MLygh7L7_HfFFkN7uwk1aqsQ==
content-encoding: gzip
via: 1.1 57bd3a2d9e0e4cbf89d9eb3d7dfb916e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:43:06 GMT
content-length: 45251
age: 463
cache-control: s-maxage=900,public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   45251
Md5:    15c69de87cc5a8032465684c32590170
Sha1:   bdf0af431ac8fef2e6a6ebeeed8d2849dab669ba
Sha256: 4dd833d599c3e83f85f7b8838a0c4db6397e84ac68e7480abeb744b964e671be
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-30-19-51-38.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Wed, 11 May 2022 19:51:39 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 02:39:41 GMT
etag: "48ca0beea419a9039591cf1aee5179e0"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZrGi3z9cMtzUDwkAMFOEBgEFxKqtFEnstE-UL_mwHcd3unktVIvr9g==
age: 62932
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    48ca0beea419a9039591cf1aee5179e0
Sha1:   9e92629f505fcc07aab51221e8fe62197a23e307
Sha256: 630a5f110337b4a4876aa85c21107d9e8f2550bcc60f023a4777d895b17399fd
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 05 Sep 2022 18:50:49 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/autentification.css HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 11905
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2e81-5699db34438e6"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text
Size:   11905
Md5:    2135a1c94a8522de13405db49a4d39ab
Sha1:   441598d1ddbbff4059e7cde4b11ef0e9e72fdfef
Sha256: 2329a89e6cac24e87c7d2db681e442c7d72d6823a8ad650764c734dcb42a0435
                                        
                                            GET /success.txt?ipv4 HTTP/1.1 
Host: detectportal.firefox.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         34.107.221.82
HTTP/1.1 200 OK
Content-Type: text/plain
                                        
Server: nginx
Content-Length: 8
Via: 1.1 google
Date: Mon, 05 Sep 2022 16:44:56 GMT
Age: 7553
Cache-Control: public,must-revalidate,max-age=0,s-maxage=3600


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    ae780585f49b94ce1444eb7d28906123
Sha1:   7d5ca8c0c03e883c56c4eb1ef6f6bb9bccad4d86
Sha256: 81b2bd4ea98c8db66554fbc8d7637a1a69a130f331feb732b75caab4c4868fd5
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 18:44:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: a3I3L0egOml4kI5s4pUA1LRCPbBMr4N4kd_7Yw195s5Pw0Yq4b9eng==
Age: 354


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap-3.3.6.min.css HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Length: 121275
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "1d9bb-5699db34438e6"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   121275
Md5:    9e47b200767470c3ffdcd6016aeab9b0
Sha1:   1b49a9ec74d70e494708659dc88491d45abe93e2
Sha256: c4a590148ea4d288573c1d0b5169bdb4d22aa0120ccc02f169ff04bffbdf30da
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/fermer.svg HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Content-Length: 1757
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "6dd-5699db3447766"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (340)
Size:   1757
Md5:    c2a9168d032fcd7c8a0f8f015b10d211
Sha1:   8376d9a7c74b0b3ba4cbfde3658cf893a4cce7ec
Sha256: bd41f1926d21d2cdcc4522c7d6ad6348e4f79230f97dc81910486b633fc98c23

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr2.gif HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 7850
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "1eaa-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 87a, 500 x 45\012- data
Size:   7850
Md5:    9ac569f9172ee2f72b4b8ec60e878200
Sha1:   1aa6a5e76bf8e57df193b9c4c54a695885aeae07
Sha256: c4544c13ad576f40a13c65e029f0b71dd886995a44fe60d8950e4a3ac3c72ef2
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/ban.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 11752
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2de8-5699db34438e6"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 1349 x 128, 8-bit/color RGBA, non-interlaced\012- data
Size:   11752
Md5:    3899ff84c5eb073ffab384e3a825defa
Sha1:   50dc9339b94441ba48cc9df4fb127f49b0e5cd16
Sha256: 622c223c03d5a3d82c158ff7fc32251314a70debfca052ca48a9075f4fa70373
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_acces.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 10775
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2a17-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 358 x 90, 8-bit/color RGB, non-interlaced\012- data
Size:   10775
Md5:    4e6c27da9520a8c2ceef91ed89259369
Sha1:   2b08f22f82091ecc2870b479757fd649180e97a2
Sha256: df2b07cd437457754a5c25161c293a2786b7cb8469f1ceb7cc9c9610f9138ed5
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr.gif HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 21111
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "5277-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 261 x 224\012- data
Size:   21111
Md5:    3ca9a8d2da0185952738f92c4e8b5af5
Sha1:   3a3fee8aa01051a0fd781928cc99c62849bb2370
Sha256: 30c41fffa269f92fe8cd7f7b8826158257370884de8bd331c88fe32838a2b0fe
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/crd.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 9314
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2462-5699db3447766"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 163 x 23, 8-bit/color RGBA, non-interlaced\012- data
Size:   9314
Md5:    48cb7b68f0bf0520161fba39559eb7c8
Sha1:   2e00a53a2e4de2e1c79f699614ef67f256c772e7
Sha256: d841754163f6d3f7a257af53c78c476857b03f211f41f931204a840770a089bb
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/but1.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 880
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "370-5699db3444886"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 152 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size:   880
Md5:    a264fe979d29bf399d007787458a8afb
Sha1:   2b07ab7e625652c8cd7970af665433edbca04a8c
Sha256: d140946305b44dbeb0ed3c27d4a93ff1a186e622fdda742e8c46761bba676157
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
                                        
Content-Length: 45436
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "b17c-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size:   45436
Md5:    c25b519175bc201ae8e05ec6110c9655
Sha1:   f0b485d83097ab23700e97bf54713fa479b9f96e
Sha256: 37f497f9553602e379c6fa855902661b59cfcf348f8e7958785cf2b294c88c5a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/rfr_th.gif HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 11850
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2e4a-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 87a, 500 x 77\012- data
Size:   11850
Md5:    e80bd3543a2f020bb1d41127658a71dd
Sha1:   cf385d3e0852316b718f199d4e5da68f05ffeb29
Sha256: 081f617d20c0d2420e4f16b1ea74665263cf1dc94b165344e9db43c8f692fa67
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/Miniballs.gif HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/gif
                                        
Content-Length: 17926
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "4606-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  GIF image data, version 89a, 64 x 64\012- data
Size:   17926
Md5:    19df9250795ee08e7c07c9f342422657
Sha1:   97a1f8cd94be6909fdde853ba6f04b1432e03ba5
Sha256: 4d644aae3091c93a949be93b969dcd0f1ac12faf5c233556a6aa9d64b79479d6
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/aide.svg HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/svg+xml
                                        
Content-Length: 5335
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "14d7-5699db34438e6"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- exported SGML document, ASCII text, with very long lines (2097)
Size:   5335
Md5:    f7b182639e776e90e75bd08d41c6b27e
Sha1:   a99286e8ef923b37679f523729db1a281e1b4b9d
Sha256: e952750309dc8bd10a6bc568005552dbc541ec388fcd5b959a2e2f918e6a93df

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/info.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 1995
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "7cb-5699db3447766"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 107 x 105, 8-bit/color RGBA, non-interlaced\012- data
Size:   1995
Md5:    99ef60e7a90d88658f2f7b6086c4782f
Sha1:   970b75487fd783a066d1d20d5148e4c408a566ed
Sha256: b8b97e5544aa98b04f13bbb97f44ca648fcea23af0a65a4000eb85889b706c1d
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cont.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 874
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "36a-5699db3444886"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 89 x 37, 8-bit/color RGBA, non-interlaced\012- data
Size:   874
Md5:    0be425f11d1bef7fd7be7a54ddb76f03
Sha1:   ef1ccb867a3641407084e7655fbee71b725f6431
Sha256: 6beddd7cd1ab5ee9e31ac674a1430ff83b07f4e1acbd7fd208186485b3da68a4
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/num_fiscal.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 11352
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "2c58-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 358 x 90, 8-bit/color RGB, non-interlaced\012- data
Size:   11352
Md5:    e1ec4daf3bb73fc2d1ae4a8ccaeaab56
Sha1:   95f7c081aba105bb2ee25d136866c974ef37905e
Sha256: 662ee4624be6f67f73e1365f9ed8eaba64b08044eea22f41102b64cfa1b97c6b
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/logo-fc.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 7532
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "1d6c-5699db344a647"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 45 x 50, 8-bit/color RGBA, non-interlaced\012- data
Size:   7532
Md5:    34bfd90a0a2d8e31841fa6fa5d8f0773
Sha1:   d5d5274014cb0fdefe1412a48456278012b9ed33
Sha256: 8a1ffefb7605c98a92890e4ab41705314eb5c2aab201d4863cb06a24ee2d383d
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/cp.png HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Content-Length: 57034
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: "deca-5699db3447766"
Accept-Ranges: bytes


--- Additional Info ---
Magic:  PNG image data, 110 x 164, 8-bit/color RGBA, non-interlaced\012- data
Size:   57034
Md5:    c4fa10a90e55029c1bf61e330345b5ea
Sha1:   73589af709736e8dc67d726fcb2653a700045bf3
Sha256: adc948c51bf75746584855ba175e7b36dc7d1e3edd835a179c3b1ab0ae3567e3
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/saved_resource.html HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
Upgrade-Insecure-Requests: 1

                                         
                                         217.160.0.238
HTTP/1.1 200 OK
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Last-Modified: Thu, 12 Apr 2018 02:42:01 GMT
ETag: W/"95-5699db344a647"
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size:   145
Md5:    5e610eda263540ba05be0d6b5cf807a2
Sha1:   269663c27bdb68d880847d4f7bd4b62796926c93
Sha256: 682e5b3b42807f8a40d9f12d20c12a824dbf1dfcda7fefab7c81a08a35c9bfca

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery-1.11.3.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3914
Cache-Control: max-age=169777
Date: Mon, 05 Sep 2022 18:50:49 GMT
Etag: "631629f0-1d7"
Expires: Wed, 07 Sep 2022 18:00:26 GMT
Last-Modified: Mon, 05 Sep 2022 16:55:12 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Mon, 05 Sep 2022 18:38:16 GMT
Expires: Mon, 05 Sep 2022 19:28:03 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cY7xkZVZBRzwTi3hln5xPLyfmv0MgY-l7UUJphQoJ5HROBafqPz5Mg==
Age: 754


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/bootstrap.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:49 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/auth.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 2162
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 18:50:50 GMT
Last-Modified: Mon, 05 Sep 2022 18:14:48 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /downloads?client=Firefox&appver=96.0a&pver=2.2 HTTP/1.1 
Host: shavar.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 773
Connection: close
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: none
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         44.227.235.173
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Date: Mon, 05 Sep 2022 18:50:50 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Length: 8
Connection: Close


--- Additional Info ---
Magic:  ASCII text
Size:   8
Md5:    29fc57841962e407cb50c1be60284bf7
Sha1:   ce968a77e2996da5eee8925182318f171ccdce47
Sha256: ae7e7075247dcfad763f1e131aeac3d2e756bb03d48b0d315a50c69636e5dc8b
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/urls.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/Particuliers%20_%20escpace%20client_files/jquery.min.js.t%C3%A9l%C3%A9chargement HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/
Cookie: essai=cookie

                                         
                                         217.160.0.238
HTTP/1.1 403 Forbidden
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
Content-Encoding: gzip


--- Additional Info ---
Magic:  ASCII text
Size:   35
Md5:    613f1d7b52a65da160c06109f255ec63
Sha1:   0a7560783ac26405b7a6526bd6c15001451b0dab
Sha256: ffc7f40078dfeea61405d1305a2832b49fcbeff253262e44a15eda1832208121

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: webuyworkshopequipment.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://webuyworkshopequipment.com/wp-content/themes/sketch/js/SF_TRASH/c45b222914e3c78d/

                                         
                                         217.160.0.238
HTTP/1.1 404 Not Found
Content-Type: text/html
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=15
Date: Mon, 05 Sep 2022 18:50:50 GMT
Server: Apache
X-Frame-Options: deny
Content-Encoding: gzip


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Size:   570
Md5:    e5f62d87fe7d7b40a6dd7577cae70429
Sha1:   e8bd763b69569e949b97154c3f089db62d0fcb31
Sha256: 0b58763db31f261fd8a1892652cbe72de31c6eba97e0ec6f3a4e15edd399e9e7
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JKCOjCLdF1ruTP7U3GvEcA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.164.56.167
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: J8jiki5hRHuOyB4MMj/ybQ7Jpm8=

                                        
                                            GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221662386233158%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 05 Sep 2022 13:57:13 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 05 Sep 2022 18:02:00 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 18:02:09 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ww9lqG1GbbtW2YI7Pbj2aejy8UzXSmrkw8RaHhfgfBcq1zPt3Z_Xmg==
Age: 2930


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (22383), with no line terminators
Size:   5247
Md5:    2c8a945d2143c6407f44c61c5ff2f7a7
Sha1:   e3bbf400e0a45444c72180eb961b59c9034a4fae
Sha256: 1773ab2998cdffadaaac5452fee247942ba0a1acb47488f8a539880c22e923aa
                                        
                                            GET /v1/buckets/blocklists/collections/addons-bloomfilters/changeset?_expected=1662381443719&_since=%221653914271178%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 05 Sep 2022 12:37:23 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:43:10 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: cKIPlMgY1X-2K454yGGZEnMg4bv0tVy5Bq6cvEmUepNjGajlgUlGTg==
Age: 520


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (65536), with no line terminators
Size:   11789
Md5:    096980a473a883e6eeaf47dc9a14f237
Sha1:   491cde318ec986cc64ff2fb45f71e6560d368feb
Sha256: 1a6d7840dbf67d703a920313758fc70b272df5c2c40cffb770a9f0a728b72b14
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t0Z1Hzmu--uTyglLaKy9lRYjdvRgB5TO-aH6hi5zse86WVrKX_oOxw==
age: 63333
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 18:44:55 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Rp_WLxO5BO0IRwR-NC2lbww9VhuawguOZGPzj1z_GIUagfIaj8TEzw==
Age: 355


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    91dd975a7b17b2922dd23c0e49314e40
Sha1:   57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
                                        
                                            GET /staging/addons-bloomfilters/67600448-6fc2-4f40-bd4a-8687d731734f.bin HTTP/1.1 
Host: firefox-settings-attachments.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         54.230.111.82
HTTP/1.1 200 OK
Content-Type: application/octet-stream
                                        
Content-Length: 795699
Connection: keep-alive
Last-Modified: Mon, 27 Jun 2022 12:39:11 GMT
x-amz-version-id: 9np1boOrxtHVWzMczpbX1a.N_ewQWHDF
Accept-Ranges: bytes
Server: AmazonS3
Date: Mon, 05 Sep 2022 02:59:01 GMT
ETag: "9b95765b0e26af76116a95a966d61354"
X-Cache: Hit from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: LPMpURwMZbdV0HzjLeXXD35bqyzyQDSlLRSLYuIT2r32de_EEAYMgQ==
Age: 57218


--- Additional Info ---
Magic:  data
Size:   795699
Md5:    9b95765b0e26af76116a95a966d61354
Sha1:   3f7c1b40fc999b83f3696f455402e49ab484b027
Sha256: 34f969c8e082310785ec4262e2d5b58c919d4de856ffc64b3467507f83ac9571
                                        
                                            GET /v1/buckets/main/collections/normandy-recipes-capabilities/changeset?_expected=1662336065690&_since=%221654732864402%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 05 Sep 2022 00:01:05 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:19:25 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DINiSOG-pXIkKA8x2AGg_zh9LEMUEoR75oOhvn7HjypvxAiELfginQ==
Age: 2390


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (59438), with no line terminators
Size:   12114
Md5:    de44b753cd183e2845bf19db39b436c0
Sha1:   6c25b95795081ab7f42f6b16ef5bc96bc3dc93f5
Sha256: f87377659e4eec2235c9167602e9c99f4c9e08cb6b9542c1b4c061c959b87b36
                                        
                                            GET /v1/buckets/main/collections/hijack-blocklists?_expected=1605801189258 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 681
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, ETag, Last-Modified, Backoff, Cache-Control, Retry-After, Expires, Pragma, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Sat, 03 Sep 2022 16:36:54 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: no-cache, no-store
Date: Mon, 05 Sep 2022 18:50:40 GMT
ETag: "1662223014803"
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cnc10Pp3kkVc0ITq3ah0QyVDYduN9xPRI4hLTx8nKYAyvsIwUfrYXQ==
Age: 11


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (681), with no line terminators
Size:   681
Md5:    747f384efea12ce5dab98117b84a36d8
Sha1:   3bfa87d8ca19bf259e1b28f5d8484560bc4aa59f
Sha256: 674580bbd668da2fccee5bd78cd11bdb237a800ec945160353537b15c3e924f2
                                        
                                            GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704&_since=%221649762862679%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:15:14 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hxhr8HGAoGwTFVyw1_WryLK_vKLI8fIGYBkMCwz_Dbe8Bul3ga0QsQ==
Age: 2148


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1710), with no line terminators
Size:   893
Md5:    cdb42a32eb079761007d29ee4bbc9a0b
Sha1:   9653c4215e912886e5b6f5a39a33189147f10573
Sha256: 26e1a455c2a879130bec3641d40ed1e2aabed7d0aafde9e11a07a2cc6eb63eb8
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-08-30-15-09-07.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Mon, 11 Jul 2022 15:09:08 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 03:06:56 GMT
etag: "c0f7028ab1157f24d515abdede77d5b3"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mNIwqR3vSz5yHDS0tOFITjTj5z476BkeGVoeXztaOEKTGA1RGEZ72w==
age: 56636
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    c0f7028ab1157f24d515abdede77d5b3
Sha1:   00208a34ed76644814967ad5611bdbc1f3ba6780
Sha256: 6a1b8917468b937fda9acbfead382d4349063f5bd36a812dbd79e91645abb576
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-06-10-13-16-32.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Mon, 05 Sep 2022 01:53:05 GMT
last-modified: Thu, 21 Apr 2022 13:16:33 GMT
etag: "c2eff79baaa46df0eb1ad5ad7b702bca"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: TC5__B1f_XHT2CdhvqiRTgdmvifpc6MZ-yFteOarldIgAZO9l0cdsw==
age: 61067
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    c2eff79baaa46df0eb1ad5ad7b702bca
Sha1:   a1161150e75b0f0dd30de06ac6f27c1be4810048
Sha256: 6871f00b47a3525296bf02f508923ab3e15cc705694aee45d8db44b9c63bd201
                                        
                                            GET /v1/buckets/main/collections/query-stripping/changeset?_expected=1656585893704 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 30 Jun 2022 10:44:53 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:34:29 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: s7tyRD3ljrVidkqx6r6qT5ZRQowvZD3CcNqoTTGbWqaJ8Zh6c6_nqQ==
Age: 983


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1917), with no line terminators
Size:   990
Md5:    b6407a5941093b39ebd04d169df8bbf3
Sha1:   818bda143425c1055f103f8e1db3ed43cc98bd93
Sha256: 283dd5f141930ee1f53a16db0eba6f3aeb1d4f13247a3f006abe84427c066dcb
                                        
                                            GET /v1/buckets/main/collections/partitioning-exempt-urls/changeset?_expected=1657747510534&_since=%221654266643527%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 13 Jul 2022 21:25:10 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:36:21 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8oruxiizvTjZQHCZI8PMFwLI7zJAwjksrZZIc6H86LUzJBeprnMwBg==
Age: 904


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (2195), with no line terminators
Size:   1008
Md5:    284ce6f489d4e39635136f153138aeb3
Sha1:   e15907c1e8e1a973af52a876c4efac08eb4a8f4d
Sha256: 0728663f31f157e091c5f658b8fa24e2833830e95429146d470f2edd6e8705fd
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-09-19-18-34-07.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sun, 31 Jul 2022 18:34:08 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:37:08 GMT
etag: "578b9ff83ff3950ab2a3d1a8344d2938"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _oJDi-LRAJ8g3Tg-S6eaRraTIx2YWg-La3tTQnFecmp4YbjUSwX2Cg==
age: 62024
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    578b9ff83ff3950ab2a3d1a8344d2938
Sha1:   39d48b67ba6aa45ec01767725e726cf9b0c87a70
Sha256: 35c99da9a5463a4788ceab7cf4b027bb25506cde28ace36c70d0bc924138f2f5
                                        
                                            GET /v1/buckets/main/collections/cfr/changeset?_expected=1659547595259&_since=%221653578606314%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Wed, 03 Aug 2022 17:26:35 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:05:12 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cj-Wc2Ybb19sR6YJEYHP45crFbnmClAO6nhq93lFVBui2-vd0VQOZw==
Age: 3032


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (3677), with no line terminators
Size:   1404
Md5:    5f4edd5433264154f517292748387ebf
Sha1:   d6e41d472f12649a84d2484433c89d64836ca059
Sha256: f749fdbbb83278e27564e565558832d799197c405c39055ea1d3cfb1274f9086
                                        
                                            GET /v1/buckets/main/collections/nimbus-desktop-experiments/changeset?_expected=1662120887268&_since=%221654636467710%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 02 Sep 2022 12:14:47 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 17:56:48 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Siw8WCYB9C8byRxgtcNGTMO5Ul4MG9qWx_ypxSKvWVU-PWt4rbSMPQ==
Age: 3277


--- Additional Info ---
Magic:  ASCII text, with very long lines (65536), with no line terminators
Size:   5020
Md5:    ef8c23eb9ddb7ebd8b9183a7089b6f3f
Sha1:   6eae5623ffdf5f30831bdd4f3cb61bb1829dbc08
Sha256: 9d6ed20bd90c3e952ee4c32a10706bc5eb20a6ae6dcf598448f029022769102c
                                        
                                            GET /v1/buckets/main/collections/fxmonitor-breaches/changeset?_expected=1662044085942&_since=%221622732735407%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Thu, 01 Sep 2022 14:54:45 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:00:58 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: kJxJ95Vk6vmIdtRufOuINSm_pIZ4fxGMc7WQBxQRvkB0KLHu-XeUcg==
Age: 3036


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (20424), with no line terminators
Size:   5460
Md5:    4aeeb7e3b8bbe13f0e937ff570f20777
Sha1:   3d30e1983d6ce6126fef50acaae4a41d579b1c09
Sha256: 3f016c7fbcd505500620db2169b0f39282087dc89ba805e479a8ef53d45f10b7
                                        
                                            GET /v1/buckets/main/collections/search-config/changeset?_expected=1661199949574&_since=%221648132005528%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 22 Aug 2022 20:25:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: gzip
Date: Mon, 05 Sep 2022 18:14:12 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lDHjwHjTeUG_V0iwH2XsLP4MBDolrASnOuWcfJz-aW9aJiM_rbI2Sg==
Age: 2199


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (14029), with no line terminators
Size:   3391
Md5:    64e7a6dda8110b0ba7c31a4e28bfc96f
Sha1:   addc0f9994b78a873012b9465e3aa515a780ddf9
Sha256: 10823e4a8aa955a94172bc12eb933498ee792bdd49d6f24e73db175b6d79bff1
                                        
                                            GET /v1/buckets/main/collections/password-rules/changeset?_expected=1659924409785&_since=%221652712410939%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:06:49 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:00:03 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: l6kY_HxZe0MYsz9C8DoAXayclycMgc5oi386N1JlCodGP8IoDAPcnw==
Age: 3067


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (1393), with no line terminators
Size:   783
Md5:    d8e59c6bd160719da9f2b9571af22b8e
Sha1:   b4353f8308be656bdf00bc4676fdb23e7c285f32
Sha256: a3e7359fc3dbb20b38aae533bedd4061dad7a3440ea323cb17dba0540a670c81
                                        
                                            GET /v1/buckets/main/collections/websites-with-shared-credential-backends/changeset?_expected=1659924446436&_since=%221650898092205%22 HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Mon, 08 Aug 2022 02:07:26 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Content-Encoding: br
Date: Mon, 05 Sep 2022 18:09:01 GMT
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: TkFsjY_B-Oqi_SVVIYoel1Dexe2C3MrshW10pDi3J-VzvlLAbtBoOg==
Age: 2525


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (8682), with no line terminators
Size:   3107
Md5:    ca9b7ec20643050e8acc3b7ee435f6a3
Sha1:   204f7d4e4dcd10b449d91bd6f9edbffe17dd6dd1
Sha256: 531a79432808c6959aa6fe610b7112c27bad3f4c548e411b2861eed0bf06165d
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17305
Expires: Mon, 05 Sep 2022 23:39:16 GMT
Date: Mon, 05 Sep 2022 18:50:51 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F326e03cd-e1aa-45a4-8a6b-bdd21f21012c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5377
x-amzn-requestid: 2adc68e8-1889-4233-8ac4-e2a8d44ccbdd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X_4XzF1FoAMF3AA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63163a98-5918897d7de556f75bbfab34;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 18:06:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: DpNb6dBygeDbRbFWIkeXYVddcgxlSVuq4y73JvG315Xp-wkwiDhZyQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 18:09:25 GMT
age: 2486
etag: "b5a7380f294876dd308c7fde294f36a425c1be01"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5377
Md5:    c4b2d6a516e93799b54fe2bbd6630f86
Sha1:   b5a7380f294876dd308c7fde294f36a425c1be01
Sha256: 7463878d8967ff31d7ce20d5a4408c23ad59123032a990c21a47df0881edcb86
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F69b1e092-41e6-4f1e-b330-193f7dd11afc.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7830
x-amzn-requestid: c56af3b5-2c48-4243-b220-d56a9be47990
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey3H4JoAMFiMg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-23ec24d867e3e5906fffa1a6;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VgP7BDBmd5A5bAmRgO88geep419uZ0TQop4jEmRkx-q9rX4PUJZOCQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:16:55 GMT
age: 74036
etag: "3633391a8dd87ef10fcb0d04d7b309738affc4a7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7830
Md5:    290f6551c5ac539ea60810b135750f17
Sha1:   3633391a8dd87ef10fcb0d04d7b309738affc4a7
Sha256: d94d133faaf232cf15b5c3f38f5b45d87d70bce0668d607b5c66a8d3f836540f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F022243d2-ac74-4a81-b31f-104b203bf550.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5459
x-amzn-requestid: a75bf8a5-dc96-4a88-9de5-b79d1d62ff21
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxB_bFMFoAMFkEg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631049fc-2685c90962d8af5f4a7b5908;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 05:58:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rZh0s85w1Nt6qZdZybNBcQHEXMWQIJvtAyCbF4oWsYUOlIKuNS5Fpg==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:38:48 GMT
age: 72723
etag: "15d0fc3fdced758b5797361bae0fd53341e0581d"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5459
Md5:    7fe061740ad833cfe7ff0fe078d6810d
Sha1:   15d0fc3fdced758b5797361bae0fd53341e0581d
Sha256: 5409b6775bca5afd03901975c61c27f267efe2c8a8e739f05ebc52a938c5a368
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13d7f0db-89d6-4166-b182-85e35e518df9.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8469
x-amzn-requestid: de0e8998-4a52-4651-bcd6-3068c50193b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X9Ey2Eq4oAMFZlQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63151b45-15da44d87bf486cb1738fe18;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 21:40:21 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GuATNx2xnWnEl0cr_2ZWZo_jOWbHlSBYksIeHFDoHAK9o5Tf0PPliQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:03:29 GMT
etag: "032acf1bfb0c8e2cbce8f2ff4d2964424b044951"
age: 74842
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8469
Md5:    30bf854fd3e27e2313a3d26fc43b9990
Sha1:   032acf1bfb0c8e2cbce8f2ff4d2964424b044951
Sha256: 7641be64dd25487edf4f845d1fbb0b07daa80fa8fb58863dd09081d9d169bd13
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: tR9oeUGtH0NFZdnZj93V6HysPnKOTJhhiEOTNwYdq-4xIzeBZblrhA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 21:58:46 GMT
age: 75125
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14855
Md5:    ca50f9c56ff869b0b63ca71b1a9f8170
Sha1:   13b16ca74113dfd52ccf23e6bb39307fc713f984
Sha256: 76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7142280-0dbd-4c8e-a960-d357c9143af6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5652
x-amzn-requestid: 05fffcb2-43c0-4acf-81b2-1b914459e1e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwHErUIAMFmNw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-47fe166763992ab271a87aa4;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: uz2NbcE4AmOvFQkhJALSpXCGizilya0TuFcczfEwtV09cGXtgVNlpQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Sep 2022 22:08:58 GMT
age: 74513
etag: "e5b5b649a243e5c004d9923d19d4421d1ea96d23"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5652
Md5:    10318189f33f071dda64249ab9c8c5bb
Sha1:   e5b5b649a243e5c004d9923d19d4421d1ea96d23
Sha256: 3e775a1990e4d185024faf2fdff7a5eb9063f7ee19784f32fb4f7f10643c8102