Overview

URL mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf
IP52.207.173.28
ASNAMAZON-AES
Location United States
Report completed2022-09-01 15:16:01 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-01 2 mediatechnologycontentcuration.com/lpScripts/assetsBehavior.js Phishing
2022-09-01 2 mediatechnologycontentcuration.com/lib/bs3/bootstrap.min.js Phishing
2022-09-01 2 mediatechnologycontentcuration.com/lib/itbf/page.js Phishing
2022-09-01 2 mediatechnologycontentcuration.com/lib/jq/jq-3.5.1.min.js Phishing
2022-09-01 2 mediatechnologycontentcuration.com/lib/itbf/customScripts/otherOption.js Phishing
2022-09-01 2 mediatechnologycontentcuration.com/lib/uri/uri.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (14)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS ocsp.netsolssl.com (1) 8381 2012-05-20 21:51:49 UTC 2022-09-01 05:51:48 UTC 104.18.32.68
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-01 11:46:43 UTC 143.204.55.36
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-01 04:41:03 UTC 34.120.237.76
mnemonic passive DNS img.tradepub.com (2) 131572 2013-04-18 12:57:55 UTC 2022-09-01 11:58:48 UTC 205.234.175.175
mnemonic passive DNS r3.o.lencr.org (2) 344 2020-12-02 08:52:13 UTC 2022-09-01 04:47:54 UTC 23.36.77.32
mnemonic passive DNS polyfill.io (1) 102644 2016-02-12 00:04:58 UTC 2022-09-01 05:54:57 UTC 151.101.193.26
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-01 09:40:08 UTC 93.184.220.29
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-01 05:02:40 UTC 35.161.6.128
mnemonic passive DNS mediatechnologycontentcuration.com (11) 0 2022-05-17 02:27:46 UTC 2022-08-25 06:28:28 UTC 52.207.173.28 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-01 04:48:38 UTC 34.117.237.239
mnemonic passive DNS cdnjs.cloudflare.com (1) 235 2020-10-20 10:17:36 UTC 2022-09-01 05:14:34 UTC 104.17.25.14
mnemonic passive DNS ocsp.globalsign.com (2) 2075 2012-05-25 06:20:55 UTC 2022-09-01 05:09:52 UTC 104.18.21.226
mnemonic passive DNS www.tradepub.com (3) 750480 2012-10-15 02:41:47 UTC 2022-08-31 08:21:18 UTC 209.133.56.117
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-01 04:51:03 UTC 143.204.55.25


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 52.207.173.28

Date UQ / IDS / BL URL IP
2022-11-23 17:22:22 +0000
0 - 0 - 2 networkmoitcnetwork.com/follow-trail 52.207.173.28
2022-11-22 21:45:16 +0000
0 - 0 - 7 groupitcontentcuration.com/18950-132037/73426 (...) 52.207.173.28
2022-11-22 20:23:57 +0000
0 - 0 - 2 instantlytaginform.com/18734-130668/72708?uid (...) 52.207.173.28
2022-11-22 15:39:18 +0000
0 - 0 - 5 curatedportalinfo.com/18748-130785/72771?uid= (...) 52.207.173.28
2022-11-21 23:20:37 +0000
0 - 0 - 5 procurateditinfo.com/18915-131828/73324?uid=d (...) 52.207.173.28

Last 5 reports on ASN: AMAZON-AES

Date UQ / IDS / BL URL IP
2022-11-28 08:08:01 +0000
0 - 0 - 2 www.reviversoft.com/downloads/CID/FILEXT2/34/ (...) 34.225.159.161
2022-11-28 07:57:30 +0000
0 - 0 - 2 amclicks.com/x/7768/16944/0/4874966/517858124 (...) 54.161.23.57
2022-11-28 07:56:23 +0000
0 - 0 - 2 track.information-techservices.com/?xul=py2jw (...) 3.94.176.246
2022-11-28 07:56:19 +0000
0 - 0 - 1 track.information-techservices.com/?xtl=m0q3h (...) 34.195.209.248
2022-11-28 07:49:03 +0000
0 - 0 - 1 powerful-spire-47507.herokuapp.com/ophgol.pdf 23.22.52.7

Last 1 reports on domain: mediatechnologycontentcuration.com

Date UQ / IDS / BL URL IP
2022-09-01 15:16:01 +0000
0 - 0 - 6 mediatechnologycontentcuration.com/16444-1142 (...) 52.207.173.28

No other reports with similar screenshot



JavaScript

Executed Scripts (9)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (35)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 01 Sep 2022 14:37:40 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XBSniW8LrKYuFZVCQzAX0oDq79l7CZCuvQqRPblwOqi2Kn38QVYTkw==
Age: 2290


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            GET /16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: text/html; charset=UTF-8
                                        
Date: Thu, 01 Sep 2022 15:15:50 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
X-Powered-By: PHP/7.4.16
Cache-Control: max-age=0, must-revalidate, private
Expires: Thu, 01 Sep 2022 15:15:50 GMT
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2457
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (307)
Size:   2457
Md5:    46de2faec77a94f25e3c1a790a633310
Sha1:   92b71b7484f4274b9f0dc21f79a0bf0acb0690ae
Sha256: bf7cf3e913442644eb504827d4d5002050dcbe75a9b7cf33986fb48a7952d3ed
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17517
Expires: Thu, 01 Sep 2022 20:07:48 GMT
Date: Thu, 01 Sep 2022 15:15:51 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.25
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
date: Thu, 01 Sep 2022 01:15:17 GMT
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
etag: "742edb4038f38bc533514982f3d2e861"
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7KavsLea2ZDkGGuSfamKFw0a8hx1tA4k9gIHVbpnAyh8e2r8RiN6aw==
age: 50435
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Thu, 01 Sep 2022 15:15:51 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /ajax/libs/jquery-validate/1.19.2/jquery.validate.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mediatechnologycontentcuration.com
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Thu, 01 Sep 2022 15:15:51 GMT
content-length: 6970
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5ed13e63-5f7b"
last-modified: Fri, 29 May 2020 16:54:59 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 682645
expires: Tue, 22 Aug 2023 15:15:51 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Wj5i%2B77%2FeUMKy9UxWuZAKeq4oDC6%2BGnG%2F2GV3koxcvNKlHCF6bD8XDE%2BkFykoyEBnR7UK0G77Kp7sLI6dvqYgY24AgOmi9reScOPc97UEszJkNWK58p3%2BJqkBEPOwublhYSjkaIb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 743ef6b56f8b1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (24304)
Size:   6970
Md5:    4dff16256caf65b9530a221f15ed1661
Sha1:   e253fdfafb73d51e9d8c1632a521bf562c3d0975
Sha256: 1e51fbddb76b932b540fcd5e6ec3bfdf3196f0bb5e1f441a05d7d62208606e73
                                        
                                            GET /v3/polyfill.min.js?version=3.52.1&features=URL%2CURLSearchParams%2Ces5%2Ces6%2Ces7 HTTP/1.1 
Host: polyfill.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://mediatechnologycontentcuration.com
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.193.26
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
                                        
cache-control: public, s-maxage=31536000, max-age=604800, stale-while-revalidate=604800, stale-if-error=604800
last-modified: Wed, 31 Aug 2022 08:20:14 GMT
content-encoding: br
age: 0
accept-ranges: bytes
useragent_normaliser: firefox/96.0.0
date: Thu, 01 Sep 2022 15:15:51 GMT
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,OPTIONS
vary: User-Agent, Accept-Encoding
server-timing: cache-bma1639, PASS, fastly;desc="Edge time";dur=15
content-length: 74
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   74
Md5:    bdb6d8e9b581dfbdb87566776ede0cbd
Sha1:   d18cdeacd5c146b34919955e97e51b7db50d0d9b
Sha256: fe35c33df2fa5edeac1dbbe512a6e92c5b1e7fb5c204df818e23ea07b5121add
                                        
                                            GET /lib/itbf/style.css HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-855-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 675
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   675
Md5:    f4473c02d27e95fa4c2ea423cc649973
Sha1:   d158d0e62aa99a4a6782ea6fda9ad3c180689e69
Sha256: 0bbbb9705dd7039d2fb09aa47a9275438780dbf5a893de1dd14008f0d330919d
                                        
                                            GET /lib/bs3/bootstrap.min.css HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-1deac-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 19883
Keep-Alive: timeout=5, max=19
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   19883
Md5:    4ffac1b8fa084ffcc9e2ac6d742fd1fb
Sha1:   779044c35b1f774ac74ff11e897327dc0fd460a7
Sha256: 2c4156f5bdd35e59353a7f9217e72c46462f3f6a67c977cb5391c6bd1f75f834
                                        
                                            GET /lpScripts/assetsBehavior.js HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Wed, 18 May 2022 10:10:32 GMT
ETag: "6284c618-24f3-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2696
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   2696
Md5:    2dea896e8b1598d72d893987b2655973
Sha1:   6186f259a59f8d207d45ab61715258369f9e99ef
Sha256: 78ea054e3ec1cc280f6ebab2e89167fb91ccccb299a26eaebfca36acbea56660

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/bs3/bootstrap.min.js HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-8fd0-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9745
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (32034)
Size:   9745
Md5:    d65629b2dd7605b5a3da65584ad3c2f9
Sha1:   d9ac40b145336b36429e79d6759c8d7550286c58
Sha256: 1f34a7a5ac5a9ddbc3759a0e04f24ddd8c30ba27dae923e44dc9b191674740a0

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/itbf/page.js HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Content-Length: 64
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-40"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=19
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   64
Md5:    d92feda1e0803db8dd470c03f1c9e2c9
Sha1:   d74214a948b48629df0d556921ff2b22d131d65b
Sha256: 73b8ec23d141fa549c55bb04af1efbd6bb923e5b5650cc6303a78e9083bc614e

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/jq/jq-3.5.1.min.js HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-15d83-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   30908
Md5:    a486f645b3658c3a8d2c9e21ef8cc663
Sha1:   c01121b10af96291ed8dd2a4f92685d590a6d3ce
Sha256: 791997fdee12dc85257dfc360e80df86554e6b5eadaf7a1f7ab68a4387aa58b1

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/itbf/customScripts/otherOption.js HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-532-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 540
Keep-Alive: timeout=5, max=18
Connection: Keep-Alive


--- Additional Info ---
Magic:  ASCII text
Size:   540
Md5:    41f0f0f2caa965b74fb592d6fbc2fc32
Sha1:   23dea0695fe253f5fbfcf44089f265aed1801bcf
Sha256: f35e25216b369b5dc119f85555ff8fa894eecb8e72059fd37bbb145ab1ef5773

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /lib/uri/uri.js HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Date: Thu, 01 Sep 2022 15:15:51 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-12c3e-gzip"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 16053
Keep-Alive: timeout=5, max=20
Connection: Keep-Alive


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (1107)
Size:   16053
Md5:    5f5ff284a8adc3dcd9d05ef6f553ac49
Sha1:   6c2f391c81901f005e5e9796bc1051c7e37246b1
Sha256: b269eb8581a85185551fdc5bdfd502972a7167bdfa69ee8af98b9c3f77da9d44

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Thu, 01 Sep 2022 14:57:05 GMT
Expires: Thu, 01 Sep 2022 14:57:54 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: G6RnVMpqdq4rEQ-wRuDhh4JieU1HAcKhjux4mHRhWIGjbNDMbmnMRg==
Age: 1126


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4560
Cache-Control: 'max-age=158059'
Date: Thu, 01 Sep 2022 15:15:51 GMT
Last-Modified: Thu, 01 Sep 2022 13:59:51 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471

                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 15:15:52 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Sep 2022 11:15:34 GMT
ETag: "ced1a268c5ed11694275de101be18d58d6f3a933"
Last-Modified: Thu, 01 Sep 2022 11:15:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2245
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 743ef6ba1b35b523-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    fd784e1d90b4115a6849ea8fa8a7d9ae
Sha1:   ced1a268c5ed11694275de101be18d58d6f3a933
Sha256: 86bb322367fa6850243ba14fe009ee575090bdafc5037c362c91ec846b304a94
                                        
                                            POST /gsrsaovsslca2018 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 15:15:52 GMT
Content-Length: 1432
Connection: keep-alive
Expires: Mon, 05 Sep 2022 11:15:34 GMT
ETag: "ced1a268c5ed11694275de101be18d58d6f3a933"
Last-Modified: Thu, 01 Sep 2022 11:15:35 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2245
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 743ef6ba1de7b4fa-OSL


--- Additional Info ---
Magic:  data
Size:   1432
Md5:    fd784e1d90b4115a6849ea8fa8a7d9ae
Sha1:   ced1a268c5ed11694275de101be18d58d6f3a933
Sha256: 86bb322367fa6850243ba14fe009ee575090bdafc5037c362c91ec846b304a94
                                        
                                            GET /free/w_quaj01/images/w_quaj01c8.jpg HTTP/1.1 
Host: img.tradepub.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         205.234.175.175
HTTP/2 200 OK
content-type: image/jpeg
                                        
date: Thu, 01 Sep 2022 15:15:52 GMT
content-length: 54739
access-control-allow-origin: *
x-cfhash: "a93ecc957d68fd2a811c7ddcbb277c0a"
x-cff: B
last-modified: Tue, 30 Aug 2022 15:52:37 GMT
x-cf3: H
cf4age: 44888
x-cf-tsc: 1661920611
cf4ttl: 31536000.000
x-cf2: H
accept-ranges: bytes
server: CFS 0215
x-cf-reqid: b67225174c21b84f89154e69ace6bce4
x-cf1: 13644:fA.arn1:cf:cacheN.arn1-01:M
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], baseline, precision 8, 1200x895, components 3\012- data
Size:   54739
Md5:    a93ecc957d68fd2a811c7ddcbb277c0a
Sha1:   0dd9f541f45e7dfead77c1039fc54ebbbd5e700c
Sha256: fbd0947629be000a54996bdc85de57d8b31a6e1eec8b56b1a3b6ad32a3eec367
                                        
                                            GET /free/w_quaj01/images/w_quaj01.gif HTTP/1.1 
Host: img.tradepub.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         205.234.175.175
HTTP/2 200 OK
content-type: image/gif
                                        
date: Thu, 01 Sep 2022 15:15:52 GMT
content-length: 2240
access-control-allow-origin: *
x-cfhash: "209e99032d51603edb28862e46919e1a"
x-cff: B
last-modified: Wed, 31 Aug 2022 15:11:01 GMT
x-cf3: M
cf4age: 0
x-cf-tsc: 1662045352
cf4ttl: 31536000.000
x-cf2: M
accept-ranges: bytes
server: CFS 0215
x-cf-reqid: a6e1c5be96184ad5276753e67429de88
x-cf1: 13644:fA.arn1:cf:cacheN.arn1-01:M
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  GIF image data, version 89a, 223 x 85\012- data
Size:   2240
Md5:    209e99032d51603edb28862e46919e1a
Sha1:   a484ff89d9adb72e57175a3fbe2f4d58f3ac7f12
Sha256: 87cd9b7f2059f858aa5ec66057e4d45e6b5f4e5ba16e3c9a90b54332957e0046
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rMa9QkOWrObK0+7sa+Gpdg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         35.161.6.128
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XIoBEBjjaZuY0QMNLn/M9VXcndw=

                                        
                                            POST / HTTP/1.1 
Host: ocsp.netsolssl.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.32.68
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Thu, 01 Sep 2022 15:15:52 GMT
Content-Length: 472
Connection: keep-alive
Last-Modified: Mon, 29 Aug 2022 06:01:56 GMT
Expires: Mon, 05 Sep 2022 06:01:55 GMT
Etag: "889c1cd282bc538fc7a6586982a7a5c5a88bb3b8"
Cache-Control: max-age=311762,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb5
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 743ef6bbe8afb4fa-OSL

                                        
                                            GET /data/tphpjs/itbrief.tphp.js HTTP/1.1 
Host: www.tradepub.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://mediatechnologycontentcuration.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         209.133.56.117
HTTP/1.1 200 OK
Content-Type: application/x-javascript
                                        
Date: Thu, 01 Sep 2022 15:15:52 GMT
Server: Apache/2.2.3 (CentOS)
Set-Cookie: Apache=209.133.56.236.1662045352591326; path=/; domain=.tradepub.com
Last-Modified: Fri, 24 Mar 2017 00:28:41 GMT
ETag: "d11da24e-275-54b6f134fc040"
Accept-Ranges: bytes
Content-Length: 629
nnCoection: close


--- Additional Info ---
Magic:  ASCII text, with very long lines (628)
Size:   629
Md5:    82ed4a316d32aa15a8ac9630844540e4
Sha1:   5154494d15f381893fb9a3d73f4e090740f3a549
Sha256: 7d2a5b9178eba3bc0da4c96b9e1f9aed2014b18eabb674bf46eb1af336bc7155
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/16444-114228/62533?uid=ZbHexMnDnsf2ASKZfCTAMJ9rPPLP&prom_type=regular&prom_id=185881&pld=26L81sNgpwNGbf

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
                                        
Date: Thu, 01 Sep 2022 15:15:52 GMT
Server: Apache/2.4.29 (Ubuntu)
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Last-Modified: Fri, 29 Sep 2017 21:04:52 GMT
ETag: "86be-55a5a60414500"
Accept-Ranges: bytes
Content-Length: 34494
Keep-Alive: timeout=5, max=19
Connection: Keep-Alive


--- Additional Info ---
Magic:  MS Windows icon resource - 5 icons, 16x16, 32 bits/pixel, 24x24, 32 bits/pixel\012- data
Size:   34494
Md5:    d4a95c780824be97bc45a187ab7ad24b
Sha1:   53aeb2d44190d91ec2006379b3ddbd202b865d24
Sha256: 502322d8592de8395d6e7c2c37b18e04904e62d8f8b3caaa53858e4ebc64b692
                                        
                                            GET /lib/itbf/bg.jpg HTTP/1.1 
Host: mediatechnologycontentcuration.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/lib/itbf/style.css

                                         
                                         52.207.173.28
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Date: Thu, 01 Sep 2022 15:15:52 GMT
Server: nginx/1.17.10
Strict-Transport-Security: max-age=63072000; includeSubdomains
X-Frame-Options: SAMEORIGIN
Content-Length: 237484
Last-Modified: Mon, 12 Apr 2021 20:19:39 GMT
ETag: "6074ab5b-39fac"
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Accept-Ranges: bytes
Keep-Alive: timeout=5, max=19
Connection: Keep-Alive


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2014:07:01 14:51:59], baseline, precision 8, 1366x768, components 3\012- data
Size:   237484
Md5:    1dba0da5912b67751021b7569fc540c8
Sha1:   cbd84515581c703faee04780d28c074617dbe10f
Sha256: d6791c8426846097bfaf2a40143344656ba6875cce3feff1b46026320f3acd2a
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10923
Expires: Thu, 01 Sep 2022 18:17:56 GMT
Date: Thu, 01 Sep 2022 15:15:53 GMT
Connection: keep-alive

                                        
                                            GET /data/tphpjs/itbrief.tphp.js HTTP/1.1 
Host: www.tradepub.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/

                                         
                                         209.133.56.117
HTTP/1.1 301 Moved permanently
                                        
Location: https://www.tradepub.com/data/tphpjs/itbrief.tphp.js
Connection: close
Cache-Control: no-cache
Pragma: no-cache

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9564bd06-b264-460b-96bb-6b37cf25a72b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 16818
x-amzn-requestid: fa921878-2054-453b-b313-681cdd9c9068
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xj-Z_HUNIAMFltg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b110c-053ce81943fea70c2de7daa0;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 06:54:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 69fDjN-ZeYA8RVO_WGTY1KQHZ1t3PNdWIwq3ax1e1wKmuPODyGCMcQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 14:46:29 GMT
age: 1764
etag: "9fef9b071daea6793cbbdfe391254ac4326b1aa2"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   16818
Md5:    12756903aaa74164feb5f8525398ca36
Sha1:   9fef9b071daea6793cbbdfe391254ac4326b1aa2
Sha256: 6d474a6d96aebfed43a4f6812f18a1be8d100c590f75eb0fbf4ec7277dd0c442
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcfd1bafb-f92b-46dc-9f17-4df493cefb83.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10137
x-amzn-requestid: 7d5f19c4-7c9b-4aad-928c-bb44da795f1f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XaISzFY1IAMF-zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630720de-0ea5331041f0167a196f9820;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 07:12:30 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qYh5Pc0cx8--7rIjlMt8IhDKNDMnZEpC_7xfNBIJxWllyLcG9Eh6xg==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 04:34:41 GMT
age: 38472
etag: "b844f3dcb14a2995644312406a80842e3f02a114"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10137
Md5:    ac4d5b101c9dc6a6f7e4bf252bfa9ca7
Sha1:   b844f3dcb14a2995644312406a80842e3f02a114
Sha256: e81f08ce6d9c7670f6e291f3d6a674b624386bd550d5c364264c3ff8fb7c797a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79bea3b3-c558-48ed-979e-3282a56393da.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8550
x-amzn-requestid: 6a3fd299-a5ef-4069-b686-74356344d6d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XikiaFbaoAMFyaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630a8142-1b7fe4644a7045ff0284c401;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 20:40:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -XnfcwJdAT4GvO2JAT-tQLma4lZ9ubwi_MonWPUQZHDx-giA-rElRQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 22:06:01 GMT
age: 61792
etag: "456dbbf8f3dfcfd63aab4201a04efd20262b9385"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8550
Md5:    0773269fad1678055c52b480b9e87750
Sha1:   456dbbf8f3dfcfd63aab4201a04efd20262b9385
Sha256: 6a65d7520e705c6c20ef97254ed1d6116daca506258368292c58f5f728987191
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffe5b5a9a-050c-4a84-9e0d-dfa84795640f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8009
x-amzn-requestid: 6d716dae-efa3-449a-a505-fb5f3d99c2df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XsvlaFEaoAMFwDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630e92ef-708228ce7e1fb3cb770cb490;Sampled=0
x-amzn-remapped-date: Tue, 30 Aug 2022 22:45:03 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: OPvJ_5gjUyE05ZFPDdCvsGdr7JRtcILdFJVYkavZI90yzDdnyjBpUg==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 01:21:30 GMT
age: 50063
etag: "98e27f0dafd7b1b49e159ee038b41a811096a2d0"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8009
Md5:    6b2c036e67f8c39c136f6c69b0922eb1
Sha1:   98e27f0dafd7b1b49e159ee038b41a811096a2d0
Sha256: 9dc9e00e6f63a22dd85f54ba26326a9733f6c1d7a19c7b1636f14fca2722e6eb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0198fd1f-b00c-442e-9184-8ce8ebf9593c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10777
x-amzn-requestid: 2e9a081f-2ae4-49b9-b9d4-79cae2b7eae9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xv3kRFiJIAMFgNA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630fd2e7-2f9eec0b239ceb6d617431b6;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 21:30:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: w9ACDg_Mxbl2GSEDeDAqdMlKjkCiMyWExvCUa2jHquaQy6U-4EJtbQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 31 Aug 2022 21:37:20 GMT
age: 63513
etag: "d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10777
Md5:    ba98f63d9bef7deebb9a8d1b3126d396
Sha1:   d97a8b0e4b4dbc60dfc9eb15ba28f68e8e3731ef
Sha256: b8f6c1c6b34ec452a6aa3090c30ebf3a68cb3b4d45a7b134ed32e1959f4f0682
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7bffab86-e623-4ccd-9297-981c9dc6e4cd.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9674
x-amzn-requestid: 79dc68ea-ea2e-4eab-bab9-1c89b0a955a2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjMSvHJ-oAMF6Jw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ac0de-2370cf5363d5f308121f0ca4;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 01:11:58 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: qAEve6mBQ9a1hr2fBR8xq42pxeG9Kjn4yWaMr4z4On46QC9R1K91pw==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 14:44:23 GMT
age: 1890
etag: "b691ef5e7a302e2678302818130a9637c3efbe3a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9674
Md5:    b0f6c541f6335bb709d2270147bd5aed
Sha1:   b691ef5e7a302e2678302818130a9637c3efbe3a
Sha256: e63922331a4463519e6df77ae7a1ad3316a36e54dd03c00ff6b119ee3fa684c5
                                        
                                            GET /c/tpHpGetVersion.mpl HTTP/1.1 
Host: www.tradepub.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://mediatechnologycontentcuration.com
Connection: keep-alive
Referer: http://mediatechnologycontentcuration.com/

                                         
                                         209.133.56.117
HTTP/1.1 301 Moved permanently
                                        
Location: https://www.tradepub.com/c/tpHpGetVersion.mpl
Connection: close
Cache-Control: no-cache
Pragma: no-cache


--- Additional Info ---