Report - l.facebook.com/l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB

Report Overview

Submitted URL
l.facebook.com/l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB
IP
31.13.72.37
ASN
#32934 FACEBOOK
Submitted
2022-08-30 10:47:16
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-06T05:09:03Z	1.6 kB	4.4 kB	23.36.77.32
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-06T05:10:30Z	401 B	5.8 kB	143.204.55.35
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-06T06:00:56Z	1.3 kB	2.9 kB	93.184.220.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-06T05:09:43Z	321 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-06T05:09:12Z	594 B	127 B	52.42.211.151
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-06T05:09:35Z	3.2 kB	48 kB	34.120.237.76
l.facebook.com	5394	2014-04-04T23:23:56Z	2023-03-04T02:13:51Z	1.2 kB	3.2 kB	31.13.72.37
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-06T05:09:34Z	1.2 kB	8.6 kB	143.204.55.115
external-lcy1-1.xx.fbcdn.net	24148	2021-02-17T22:42:42Z	2023-01-08T01:29:44Z	773 B	1.5 MB	157.240.240.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (1)

	URL	Size	First Seen	Last Seen
	l.facebook.com/l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB	430 B	2023-03-07	2023-03-07
Pretty URL l.facebook.com/l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB IP 31.13.72.37 ASN #32934 FACEBOOK Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:20:14 Last Seen2023-03-07 01:20:14 Times Seen1 Hash a00939075c57aad7007e891d9671a9b4 4f6b38f8354ee5b4bb0eb64693f9d9a51559feb0 6907ca811f83ff18b44ddad2e706842dd29ba2395223b27fb77acaf99b4e1015 Loading...

HTTP Transactions (23)

	URL	IP	Response	Size
	firefox.settings.services.mozilla.com/v1/	143.204.55.115	200 OK	939 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/ IP 143.204.55.115:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 91dd975a7b17b2922dd23c0e49314e40 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Tue, 30 Aug 2022 10:25:53 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: 73oc1gYGqgrbCZMa0Y6Ny9EdyZ1Zms4xQs4QVms6g_EWmUKvg7tQQg== Age: 1267

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 517693963cc46e7a35a054296d0edfd5 11dfcd7e118e5f8d31e664e56ac29c57f973b8b3 ece269e8b9be8a5839d75c1343823d68b96930c593c2e3e8d522999176ee3149 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "ECE269E8B9BE8A5839D75C1343823D68B96930C593C2E3E8D522999176EE3149" Last-Modified: Mon, 29 Aug 2022 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6678 Expires: Tue, 30 Aug 2022 12:38:18 GMT Date: Tue, 30 Aug 2022 10:47:00 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain	143.204.55.35	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain IP 143.204.55.35:0 ASN #16509 AMAZON-02 File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 742edb4038f38bc533514982f3d2e861 cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 20 Aug 2022 23:18:05 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Mon, 29 Aug 2022 22:35:59 GMT etag: "742edb4038f38bc533514982f3d2e861" x-cache: Hit from cloudfront via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: _G_4YCHo3a9bauRSYfnFaKoIt2GeJEMWOcvVNGvkTInmnsNVjprq6g== age: 43862 X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7d3c33c6de8a0c5786cd471fb0a1f670 3fdd6157adba505ab16a422a714d3040e92d1c71 39ff1e9190de38575d85e26e78e3c7bb61342a26f3e0c4c3bd4a15e8146919ee HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5507 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 30 Aug 2022 10:47:00 GMT Last-Modified: Tue, 30 Aug 2022 09:15:13 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 30 Aug 2022 10:47:00 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7d3c33c6de8a0c5786cd471fb0a1f670 3fdd6157adba505ab16a422a714d3040e92d1c71 39ff1e9190de38575d85e26e78e3c7bb61342a26f3e0c4c3bd4a15e8146919ee HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5507 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 30 Aug 2022 10:47:00 GMT Last-Modified: Tue, 30 Aug 2022 09:15:13 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7d3c33c6de8a0c5786cd471fb0a1f670 3fdd6157adba505ab16a422a714d3040e92d1c71 39ff1e9190de38575d85e26e78e3c7bb61342a26f3e0c4c3bd4a15e8146919ee HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5508 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 30 Aug 2022 10:47:01 GMT Last-Modified: Tue, 30 Aug 2022 09:15:13 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	external-lcy1-1.xx.fbcdn.net/emg1/v/t13/17644222229632401868?url=https%3A%2F%2Fmedia1.tenor.co%2Fimages%2F513d5a93fd9367a62dbe6f1b3ac9535c%2Ftenor.gif%3Fc%3DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%26itemid%3D25678616&fb_obo=1&utld=tenor.co&stp=dst-gif_q75&ccb=13-1&oh=06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg&oe=630F96D9&_nc_sid=dc6e01	157.240.240.1	200 OK	1.5 MB
URL HTTP/2 external-lcy1-1.xx.fbcdn.net/emg1/v/t13/17644222229632401868?url=https%3A%2F%2Fmedia1.tenor.co%2Fimages%2F513d5a93fd9367a62dbe6f1b3ac9535c%2Ftenor.gif%3Fc%3DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%26itemid%3D25678616&fb_obo=1&utld=tenor.co&stp=dst-gif_q75&ccb=13-1&oh=06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg&oe=630F96D9&_nc_sid=dc6e01 IP 157.240.240.1:0 ASN #32934 FACEBOOK File type GIF image data, version 89a, 492 x 640\012- data Size 1.5 MB (1533923 bytes) Hash e0d79dcf3f5139c8fe0f58ff7085a092 f7c77d9878d2585308c31707dc6d0da7c013aed0 734d6c428ccd0aba114dd4e23e9d3ffae85c7a0f8911fb18aa5d82f163ccc75b HTTP Headers GET /emg1/v/t13/17644222229632401868?url=https%3A%2F%2Fmedia1.tenor.co%2Fimages%2F513d5a93fd9367a62dbe6f1b3ac9535c%2Ftenor.gif%3Fc%3DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%26itemid%3D25678616&fb_obo=1&utld=tenor.co&stp=dst-gif_q75&ccb=13-1&oh=06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg&oe=630F96D9&_nc_sid=dc6e01 HTTP/1.1 Host: external-lcy1-1.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: https://l.facebook.com/ Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site `HTTP/2 200 OK last-modified: Mon, 15 Aug 2022 07:08:02 GMT content-type: image/gif content-digest: adler32=3706277396 timing-allow-origin: * cross-origin-resource-policy: cross-origin access-control-allow-origin: * content-length: 1533923 x-fb-trip-id: 1679558926 date: Tue, 30 Aug 2022 10:47:01 GMT cache-control: max-age=1209600, no-transform alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	143.204.55.115	200 OK	329 B
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 143.204.55.115:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Cache-Control: max-age=3600 Date: Tue, 30 Aug 2022 10:17:12 GMT Expires: Tue, 30 Aug 2022 10:21:54 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: kR_OcVBPUl1N5eIrXvC5IqozA2X_Hw96eceAsj0QVvRdLXOqlIb3UA== Age: 1789

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash f67e41cdd7e5f2aa8f93d031979c9109 5f4c0093f9bf8f8e48e0d7f56ed31aba0c6f43f6 608e2b7d208977f18da12165c9eb1539656d7754dc49f3f687736151a4810e06 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4303 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 30 Aug 2022 10:47:01 GMT Last-Modified: Tue, 30 Aug 2022 09:35:18 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471`

	push.services.mozilla.com/	52.42.211.151	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 52.42.211.151:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: T9JqCfOpraqOxs4whrtaWQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: yNY/TnmHAA9z+r8H8CZZcpxisMk=`

	firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221661842631825%22	143.204.55.115	200 OK	5.1 kB
URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/monitor/collections/changes/changeset?_expected=%221661842631825%22 IP 143.204.55.115:0 ASN #16509 AMAZON-02 File type JSON data\012- , ASCII text, with very long lines (21675), with no line terminators Size 5.1 kB (5116 bytes) Hash d556f2a896d67cccea91a35894f6810f 5d8d034177073f2b4aa601e6d47cabeafddb8b98 578fb53d33c67783ce8c797e2340a1e55c8712955d5babe1d2763861bd3ae109 HTTP Headers `GET /v1/buckets/monitor/collections/changes/changeset?_expected=%221661842631825%22 HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/1.1 200 OK Content-Type: application/json Transfer-Encoding: chunked Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Tue, 30 Aug 2022 06:57:11 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Content-Encoding: gzip Date: Tue, 30 Aug 2022 10:02:04 GMT Cache-Control: max-age=3600 Expires: Tue, 30 Aug 2022 10:02:05 GMT Vary: Accept-Encoding X-Cache: Hit from cloudfront Via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: YeYq4fXSTTeXGpyINwaFLgjtkvd3IRRLAnKlxrbi7wpgSM5NzyR1ug== Age: 2697

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8483eb99dbd130593ed0072e2fbaccf9 fcb83f0b4a448f0b94b0bf9db431cc802413dacd 5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74" Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6483 Expires: Tue, 30 Aug 2022 12:35:05 GMT Date: Tue, 30 Aug 2022 10:47:02 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8483eb99dbd130593ed0072e2fbaccf9 fcb83f0b4a448f0b94b0bf9db431cc802413dacd 5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74" Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6483 Expires: Tue, 30 Aug 2022 12:35:05 GMT Date: Tue, 30 Aug 2022 10:47:02 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8483eb99dbd130593ed0072e2fbaccf9 fcb83f0b4a448f0b94b0bf9db431cc802413dacd 5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74" Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6483 Expires: Tue, 30 Aug 2022 12:35:05 GMT Date: Tue, 30 Aug 2022 10:47:02 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8483eb99dbd130593ed0072e2fbaccf9 fcb83f0b4a448f0b94b0bf9db431cc802413dacd 5e07e7bbf5dd7a48f9330dbc0248b7a1aa69dff7a9a913f493a384d2ec332f74 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5E07E7BBF5DD7A48F9330DBC0248B7A1AA69DFF7A9A913F493A384D2EC332F74" Last-Modified: Sun, 28 Aug 2022 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6483 Expires: Tue, 30 Aug 2022 12:35:05 GMT Date: Tue, 30 Aug 2022 10:47:02 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg	34.120.237.76	200 OK	5.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.9 kB (5925 bytes) Hash 91310bc1fb5ae0efa502a9bafe046399 ec2a4baf0a21c1738a541d89756cccd6f3bef5fd 5fe0511116c6bd2d6e668c69764905c3a5c93fa23a4dc207b0f4b1604783ceb6 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2ed547f-030a-462d-a7c7-12a7748cf9c8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5925 x-amzn-requestid: fa7479ef-c5db-45ce-a973-a8831df14931 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XpS-ZFH1IAMFsFg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-630d31f5-1a9b0a43065d731b4cc61ed3;Sampled=0 x-amzn-remapped-date: Mon, 29 Aug 2022 21:39:01 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: DBxGjmVUCTjHUrOzLWp37FwLUUo_5CykjgxAeCAaw1TlodWSmbnCrA== via: 1.1 174acb08636ac7d9e9a778bbf1bcbc52.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google date: Mon, 29 Aug 2022 21:45:06 GMT age: 46916 etag: "ec2a4baf0a21c1738a541d89756cccd6f3bef5fd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac715f17-8b9a-495f-bc62-6136925908ac.jpeg	34.120.237.76	200 OK	6.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac715f17-8b9a-495f-bc62-6136925908ac.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.4 kB (6405 bytes) Hash 7bfe221c6ea8b215ff7f30b28f7cd389 84b01ce7d173848c449e4332eb1fa1abe8ac307d 6c53f4d30d7f0f735c793f46ab25feb5767373718b6f92c7f13eeec8306b8ab5 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fac715f17-8b9a-495f-bc62-6136925908ac.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6405 x-amzn-requestid: 1c49054a-8058-48cc-8660-46e06070b23b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XYcDvEJ4oAMFkyw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-630673b1-19d3c0a020e8efca51a1bb05;Sampled=0 x-amzn-remapped-date: Wed, 24 Aug 2022 18:53:37 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: SqsgdB7nD_msORiQkay5KD55fD1lW5wRyDFO4qCM0zR0W4HIy8UI6w== via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Mon, 29 Aug 2022 22:48:13 GMT age: 43129 etag: "84b01ce7d173848c449e4332eb1fa1abe8ac307d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13af6d89-1e61-4bbe-bcfd-0ced9f0adccc.jpeg	34.120.237.76	200 OK	6.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13af6d89-1e61-4bbe-bcfd-0ced9f0adccc.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.0 kB (6016 bytes) Hash 3e3054d6e0a44ea80988e14f355914ea af26d7b3fa647c85c764d7193c5232c2f7c7e464 c95ece22aedd8669a8bae56552924baf2d9feb8f7873db24d4ac682970a0f985 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13af6d89-1e61-4bbe-bcfd-0ced9f0adccc.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6016 x-amzn-requestid: 6b08b00e-9a66-495a-9ff5-230d2e7fb669 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XpTz6FqxIAMFW4A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-630d334c-110955ca7d08b521056fcd25;Sampled=0 x-amzn-remapped-date: Mon, 29 Aug 2022 21:44:44 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: TV6ykU-zZI2GEoxYQp0T4TkxNaSfaWQFiNDZczXoazxlOIq-H9PCCw== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google date: Mon, 29 Aug 2022 22:08:13 GMT etag: "af26d7b3fa647c85c764d7193c5232c2f7c7e464" content-type: image/jpeg age: 45529 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F675cb20c-3520-450e-8675-bbd6c0e3e748.jpeg	34.120.237.76	200 OK	5.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F675cb20c-3520-450e-8675-bbd6c0e3e748.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.7 kB (5733 bytes) Hash eab2b5d1b63b755d005e174c7794dbb4 ab749337ba81b541ae6bd3915ec6a24405ca2cce 0fe904e954da500515ce00cbfe0419765be09f35c97da925e56fa8ac2796db8e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F675cb20c-3520-450e-8675-bbd6c0e3e748.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5733 x-amzn-requestid: 72dcc1aa-e42c-44dc-8b09-5e00906c8394 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XnTWtFa6IAMFRjg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-630c65c4-485f64c83f3dc73228055543;Sampled=0 x-amzn-remapped-date: Mon, 29 Aug 2022 07:07:48 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: Pg0qFA0GnxNlvBYGNp-o3ZsfqvxDysN7jHARr6SXTDqdvhIZVVItbw== via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Tue, 30 Aug 2022 07:28:52 GMT age: 11890 etag: "ab749337ba81b541ae6bd3915ec6a24405ca2cce" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8478 bytes) Hash 87425d52d274ccbc12298aa7a47395f2 b2866f84f93b73d97e9aecfa2293ff47131b6d67 2284c74b04493c7a67907b2477bac252832f3550c6a7e57c221abefc45a12549 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd073058d-a781-4fa3-abd4-05363877c306.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8478 x-amzn-requestid: 8ae5ce3f-0d58-412b-84f1-579c5cf21fd8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XpTWIH5JoAMFh9g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-630d328d-7bb707102a3acb0320585b52;Sampled=0 x-amzn-remapped-date: Mon, 29 Aug 2022 21:41:33 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: G0y5MCu_U2IUMTrWxPmyUefwSkF5tcEWpPh7sZ-Bn_1lXZv12tlpgQ== via: 1.1 b47618c03bd47cf085f27b1e215f76cc.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Mon, 29 Aug 2022 21:58:58 GMT age: 46084 etag: "b2866f84f93b73d97e9aecfa2293ff47131b6d67" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8909 bytes) Hash feb433a0823cccb81dc4c5fa13ba4ed2 143f7bb98f57f8e6189e73e75a9fc93d29548962 09a5ddc32918b441b6d3ce3eed211d674d3844db6770e06bb3fecb86cc85771a HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe4955929-0b9f-4215-9599-dffe8c74c90c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8909 x-amzn-requestid: 2c4357d3-5c22-465a-a65a-e281d87c5305 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: XnTxZGYEIAMFeZA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-630c666f-36b5010a793ab9c87182a895;Sampled=0 x-amzn-remapped-date: Mon, 29 Aug 2022 07:10:39 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 2Y3cwsCGFKFQYWkxG96XsjTJMrCMccbdhjRvbB04PCNF2YupDcEcng== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google date: Tue, 30 Aug 2022 07:33:49 GMT age: 11593 etag: "143f7bb98f57f8e6189e73e75a9fc93d29548962" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	l.facebook.com/l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB	31.13.72.37	200 OK	0 B
URL HTTP/2 l.facebook.com/l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB IP 31.13.72.37:0 ASN #32934 FACEBOOK File type Size 0 B (0 bytes) Hash HTTP Headers GET /l.php?u=https%3A%2F%2Fexternal-lcy1-1.xx.fbcdn.net%2Femg1%2Fv%2Ft13%2F17644222229632401868%3Furl%3Dhttps%253A%252F%252Fmedia1.tenor.co%252Fimages%252F513d5a93fd9367a62dbe6f1b3ac9535c%252Ftenor.gif%253Fc%253DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%2526itemid%253D25678616%26fb_obo%3D1%26utld%3Dtenor.co%26stp%3Ddst-gif_q75%26ccb%3D13-1%26oh%3D06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg%26oe%3D630F96D9%26_nc_sid%3Ddc6e01&h=AT17Z7a-ZRE-D6saJU1a52m7nRT2HlAfofTGzHBoysdIvRXhHzsYqWXJ0j8Ak4gkHsNSLw6-J4Q1SfLjmpmRW4JKCk5LcS-_LgX03SDil7bh-d1gmkRoEfWDH6a-wyWxDvG9hQ&__tn__=R]-R&c[0]=AT0OxtYM7ir9ln5ddtjqQ1g_38rDU_NYqaO3a9sN1lHm72wzS0384vkbeOMskJvQ8XcSJeC8MmhjnFcnDSbljDJOoa9IhPfLCYCTpTP4ZadiYjD_5PAkiWNHc6faIJAVvFgJ0BHzI33p_LYcsJBALQd26mJuJ3LzwtoHHjRliSUXG9pNsgGszBKB HTTP/1.1 Host: l.facebook.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK vary: Accept-Encoding content-encoding: br refresh: 1;URL=https://external-lcy1-1.xx.fbcdn.net/emg1/v/t13/17644222229632401868?url=https%3A%2F%2Fmedia1.tenor.co%2Fimages%2F513d5a93fd9367a62dbe6f1b3ac9535c%2Ftenor.gif%3Fc%3DVjFfZmFjZWJvb2tfd2ViY29tbWVudHM%26itemid%3D25678616&fb_obo=1&utld=tenor.co&stp=dst-gif_q75&ccb=13-1&oh=06_AaoQQAqJFesOLpkVuMjur8KEhm8hYShvmPKNaw6AlBtfFg&oe=630F96D9&_nc_sid=dc6e01 referrer-policy: origin x-robots-tag: noindex, nofollow x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-opener-policy: same-origin-allow-popups pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 content-security-policy-report-only: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com:* wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: .facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; content-security-policy: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com: wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-frame-options: DENY content-type: text/html; charset="utf-8" x-fb-debug: esHrWAPYKkcvGmeG8079Er4Q7cOnSasuY8tRaSl3TF6fXBmDd5EQEw1qDkTGXPcEbwdw2p9QGhsCn+j8+7ialQ== date: Tue, 30 Aug 2022 10:47:00 GMT priority: u=3,i alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (1)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (23)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/2

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size