r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bbea1550fedd5eb9c265712fab75b137
2c2f981747898a380265f766345f2bb9c8c983fd
c728286e38c31a4d3f7a39702e0a5f69c14bf69e01a88bc4479714953fbda278
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C728286E38C31A4D3F7A39702E0A5F69C14BF69E01A88BC4479714953FBDA278"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8156
Expires: Wed, 21 Dec 2022 06:07:01 GMT
Date: Wed, 21 Dec 2022 03:51:05 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b8fbcd7ca1a893d05677318a8a198e7a
0851654c21f6e3741887e7deab8098c1dc56f33c
edbade5913ace2fcbb932922e9af69acb2e8759474a2eeaec216307247fea361
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EDBADE5913ACE2FCBB932922E9AF69ACB2E8759474A2EEAEC216307247FEA361"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9256
Expires: Wed, 21 Dec 2022 06:25:21 GMT
Date: Wed, 21 Dec 2022 03:51:05 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 21 Dec 2022 03:45:54 GMT
content-type: application/json
age: 311
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f4b32de26d9af2cba6afcdcf716d3fb8
644ead4436a8f2fc1f0dd25e4484b64f6ed63347
525123034cb53d750d5ebd487015911452d2cd3c34301e6628f2f52f3f0bfc88
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "525123034CB53D750D5EBD487015911452D2CD3C34301E6628F2F52F3F0BFC88"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18819
Expires: Wed, 21 Dec 2022 09:04:44 GMT
Date: Wed, 21 Dec 2022 03:51:05 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: fn4KxqNcTDj2ifTisVLZAah3v8fZPC3vyzyJQnjL5D91BHHMXGprzDuzT2EUF5WB/X3NB447tYM=
x-amz-request-id: 096ZX2RNGRQ1Z558
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 21 Dec 2022 02:55:13 GMT
age: 3352
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
188.114.96.1200 OK 730 B URL HTTP/1.1 blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text
Hash 944917210ada82ec7856490d218b0f60
6035bf56b007cfb5d44e8299513f6d78ec2f678d
7142099a4a55da0ba4d413c15790b5ba4453d5290601f0706fc4c12eb2caf81f
GET /Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk HTTP/1.1
Host: blood.copemiss.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:05 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: PHPSESSID=cf1fe3tmaeh5nbehos5rd547cl; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ortUzS0uZGNr5W%2FFehqt6Fqu01jxEipzJ0gAMqMH%2BcLtBgpR8HJM30bzrRExvUZJagB7Yx8Hmgs9UK1p0xAmJ4kyJUCZ%2BsgiuEe8OBp7psYfjNN73v0jmW12CWncQbzE%2BEcTXRqQ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77cda84029ba0b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 21 Dec 2022 03:51:05 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
blood.copemiss.shop/js.js
188.114.96.1200 OK 3.5 kB URL HTTP/1.1 blood.copemiss.shop/js.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (10944), with no line terminators
Hash 9ffcd3c5cdeb0c071de46476c848bf22
1f21b3bc3702b088c488013a591f41c00ee5e2e7
7e90a975427294ba9dfec189c2ac22f342045bcd2ff8c3f7faa346a108004722
GET /js.js HTTP/1.1
Host: blood.copemiss.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
Cookie: PHPSESSID=cf1fe3tmaeh5nbehos5rd547cl
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:05 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 18:56:20 GMT
ETag: W/"6388f8d4-2ac0"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rn6%2FIx1HWWycPCwRqEWBnvedBJI44LeuHTDJFYIjzMHzs4iptV3hNpcggn6Yv8KG501pWBKPD%2Fs1c3FxW9P3Q39ln%2BhlF7VBZKoK7OgYLoPrd1eYdBJDIUyxfOcu4iaOdbmKcl7M"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cda842e92ab50b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Cache-Control, Backoff, Content-Length, Pragma, Alert, Expires, Last-Modified, Retry-After, ETag, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 21 Dec 2022 03:08:02 GMT
age: 2583
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
blood.copemiss.shop/style.css
188.114.96.1200 OK 707 B URL HTTP/1.1 blood.copemiss.shop/style.css
IP 188.114.96.1:0
Hash f93cc814124e810e6a09823185ef713f
62e849329e5bd146addf5d9245792bfc58d7796a
e2ddd4abe9ff0ceb202c0d70814fe6e0526c82bff831ab763a782d7abe09109c
GET /style.css HTTP/1.1
Host: blood.copemiss.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
Cookie: PHPSESSID=cf1fe3tmaeh5nbehos5rd547cl
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:05 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 18:59:02 GMT
ETag: W/"6388f976-7a9"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P3iKU48Qy%2Fh6xq9oQda%2FYCXY2K8dDwHOmbWnsZR9ZFX%2Fw2f15nO%2BdZ45KeqRopZGFSloDUPcJzVQnL%2FG19GunFkgRmgxiUOUkvVRTQv7crHcJ6PcJmivNCrbWp3nAwY6TnfVrPTN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cda842ea790b65-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d0c2b6760f2b58f445446dd2276d5af4
aeedf417b1ebde86ce837ca02ba934abb938b1a4
8fe72d0ce839150559da5ddf46bf87d26b6b9cbe34d09641b29a53be24997c81
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4090
Cache-Control: max-age=109436
Content-Type: application/ocsp-response
Date: Wed, 21 Dec 2022 03:51:05 GMT
Etag: "63a17b2b-1d7"
Expires: Thu, 22 Dec 2022 10:15:01 GMT
Last-Modified: Tue, 20 Dec 2022 09:06:51 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
blood.copemiss.shop/jquery-1.11.0.min.js
188.114.96.1200 OK 33 kB URL HTTP/1.1 blood.copemiss.shop/jquery-1.11.0.min.js
IP 188.114.96.1:0
File type ASCII text, with very long lines (32341)
Hash 95fe3f4dd117c33f6015e1c3d6df1d0d
d5b8856932d1ea63f51824de0bb50670d2e960bc
e6945ac3f1927f242a9fd7a5cf67720f7763888127a7427eb24ffc52019d4b16
GET /jquery-1.11.0.min.js HTTP/1.1
Host: blood.copemiss.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
Cookie: PHPSESSID=cf1fe3tmaeh5nbehos5rd547cl
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:06 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 18:56:20 GMT
ETag: W/"6388f8d4-1787d"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NAqFXVIEud7ZaxahWhh0foP1T8Q1XDWu5BxDmhmNBehIb9ZU85wCfYYHIlKSJus4qHnHMjAYIbDBWxEJ%2B6S6kVFMDQl6UPwaGm0bfVQf4A%2B7kdztRivr2KpYw0OPhvedFkQ%2FhDWs"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cda842e906b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
blood.copemiss.shop/captcha.php
188.114.96.1200 OK 2.3 kB URL HTTP/1.1 blood.copemiss.shop/captcha.php
IP 188.114.96.1:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 60x20, components 3\012- data
Hash 5de27d3c26b7dfcbb32db9e1c3964fcb
8051db7a10a73b1c720528441d2ec01c6d8d7268
d695604a187be81436a0baa7de52f13bd30377a2091f0107194822b464d60e6e
GET /captcha.php HTTP/1.1
Host: blood.copemiss.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
Cookie: PHPSESSID=cf1fe3tmaeh5nbehos5rd547cl
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:06 GMT
Content-Type: image/jpeg
Transfer-Encoding: chunked
Connection: keep-alive
Expires: Mon, 26 Jul 1997 05:00:00 GMT
Last-Modified: Wed, 21 Dec 2022 03:51:06 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jrVKCWXt0bdJKoJVt%2Ftop9yf7n%2FNgJwfTi5B0mJ5vvmOBIB%2FlcmLPT%2FjRNZ2HthPgP4fqDABeEjBhJ2Tl8C97NI6ZpQmzD1nMVY7EE739T5yTvoHNh%2BfiB4HLxKDMwrgeznxrqHN"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77cda846ba92b50b-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
52.42.74.230101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.42.74.230:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: vKfOSIfvj5+NH/gBXjRRPw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Ggtz21y+xmSYAEZNuLlVAK3KtKs=
blood.copemiss.shop/favicon.ico
188.114.96.1200 OK 69 B URL HTTP/1.1 blood.copemiss.shop/favicon.ico
IP 188.114.96.1:0
File type MS Windows icon resource - 1 icon, 16x16\012- data
Hash f12fb6edbda074603f749a028770f49a
419983c6073469bac7fb8535a847b8f78c2040ce
8aec3412c7c37feacec2dc9d7b2f3560a2e0af0af573085665a57e1d09ab397d
GET /favicon.ico HTTP/1.1
Host: blood.copemiss.shop
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blood.copemiss.shop/Bufqwfjih/gJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
Cookie: PHPSESSID=cf1fe3tmaeh5nbehos5rd547cl
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:06 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 01 Dec 2022 18:52:31 GMT
ETag: W/"6388f7ef-57e"
Cache-Control: max-age=14400
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LAv8UtYbGR5PcNvaEcBOD9ZvdOry9DWee7i1IIrIRwAZFtQdq4BYdU3HyzLFSnHvQOGrKXsIJnJCt2w%2BtA%2BJaIVq0HF9mT9qdvNDcW2MnG%2Fqcxu7srMjuwN2EV46Xwxbz72TfQEO"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 77cda8486bf5b527-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
api.obfuscatorjavascript.com/?getsrc=ok&ref=&url=http%3A%2F%2Fblood.copemiss.shop%2FBufqwfjih%2FgJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
72.52.178.23200 OK 2.3 kB URL HTTP/1.1 api.obfuscatorjavascript.com/?getsrc=ok&ref=&url=http%3A%2F%2Fblood.copemiss.shop%2FBufqwfjih%2FgJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk
IP 72.52.178.23:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (638)
Hash a71e1e5fa3cdaf860be60357c4463252
33f6021e60cfc5392448d4033344fb734030e700
4f9db82b51181597010190abf8a9382eaba4780293f9a431cd424d7dea960f0d
NIDS Severity Alert suricata high ETPRO MALWARE Malicious Obfuscator Clickfraud Activity
GET /?getsrc=ok&ref=&url=http%3A%2F%2Fblood.copemiss.shop%2FBufqwfjih%2FgJ0E16T7ugBDnGYJQFkvv5r808w0MkvIeMZKkorTeIBnx2eEcavpmW0Kq7UKH_Rdn1NJO3zxRv712fsbcvkXRJofpFxCeGPIuuZpMPeeM4SDeyUaCQS64x3z3EckzzFWoFakCCZBL63vhGJ7UFsyJ9.EzySCQVDS81q39w0wkDQrHmeeJ2cmrVRRb0oJPjg4yk HTTP/1.1
Host: api.obfuscatorjavascript.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://blood.copemiss.shop/
HTTP/1.1 200 OK
Date: Wed, 21 Dec 2022 03:51:06 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips mod_fcgid/2.3.9
X-Powered-By: PHP/5.4.16
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3495
Expires: Wed, 21 Dec 2022 04:49:22 GMT
Date: Wed, 21 Dec 2022 03:51:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3495
Expires: Wed, 21 Dec 2022 04:49:22 GMT
Date: Wed, 21 Dec 2022 03:51:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3495
Expires: Wed, 21 Dec 2022 04:49:22 GMT
Date: Wed, 21 Dec 2022 03:51:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3495
Expires: Wed, 21 Dec 2022 04:49:22 GMT
Date: Wed, 21 Dec 2022 03:51:07 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 746409a88b1342fe7b570306c302c71e
e08a7bf55e08a498f2eed6a35b90107fc0bdb303
9352308fd047bafceddfaf2a9a6eab650593f16ff5632330a4bf745750704650
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9352308FD047BAFCEDDFAF2A9A6EAB650593F16FF5632330A4BF745750704650"
Last-Modified: Tue, 20 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3495
Expires: Wed, 21 Dec 2022 04:49:22 GMT
Date: Wed, 21 Dec 2022 03:51:07 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edba09e5cf977de85bbc878f27d6b124
b18cca6c0dfec057305ac3ef231f74887183ebbc
286f14f7d39d91168860d610fc08efe93967781e759eedfac86f29fcf85e9d12
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff0e09193-cc07-43ac-889e-3940948814ce.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4729
x-amzn-requestid: 02b65dca-78b1-4e7a-b6cc-2d9b7f3b9759
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_BHgSoAMFZjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-024fa06264a6b85424f74ae4;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: r4j0S_ZGeww3h1mKQ5QcwGF2llgP5xBrn1kxw1RyPz3GySghhXzZWA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 3bb2b699cd244bf37141ea08a6a61732.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:23 GMT
age: 22424
etag: "b18cca6c0dfec057305ac3ef231f74887183ebbc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9917118c-5972-401b-b285-5393790dd2a9.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9917118c-5972-401b-b285-5393790dd2a9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b263902026f824265dafc8635785fc65
684efdc99b2b6243fd8a0e94a5ba9cc2147d7591
4c4198f2c893eddf2340ec6bc103f2b06dd4b5a588b81afb2fc0790a2ba148dc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9917118c-5972-401b-b285-5393790dd2a9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10082
x-amzn-requestid: af563ab2-2bec-4393-89ed-c39d35dbb8ee
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_CGMWoAMFw1A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-3f4fba7229f46d9f0356d9fd;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: VcyyaKnSAMh1uTLQWTg5mDlYLj-8zL-8rLx_tw84vDRvhBfEmTrcbA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:22 GMT
age: 22425
etag: "684efdc99b2b6243fd8a0e94a5ba9cc2147d7591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86b50e2b-e71b-457e-8ded-d2d892766665.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86b50e2b-e71b-457e-8ded-d2d892766665.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6a80ad0f73aac584e085877252ec4f92
d29878c5749ddfa8f7e58570e84c834fa8a0ff06
216ce017b7a2d6bfdee01002309294aa527a8a95139e8adec58a5968e4700090
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F86b50e2b-e71b-457e-8ded-d2d892766665.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7868
x-amzn-requestid: 1d4bd4ed-1016-44b3-bc04-db5f0b9072be
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_CE8GIAMFb8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-7955547e4229e3f007d75b34;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: P3aNid5NIUicBxqN7qO0Z3IPSW94-hrAmGrp1Z9tKgZNtd3e2bBDXg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 82893cc36087a50f9a150a621d10e740.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:39:36 GMT
age: 22291
etag: "d29878c5749ddfa8f7e58570e84c834fa8a0ff06"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde55ab04-2a71-4a6c-9a09-dd8c0fc6e99a.webp
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde55ab04-2a71-4a6c-9a09-dd8c0fc6e99a.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ddcf3f904e165f7acde4fb588ea1a733
6abbc321a48f41d151fc2a99535ae0557f0bc3fe
8a3cf8bd93eb93a475b85c39d2bb2a595875f457b693929625b4c85a1d4892aa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde55ab04-2a71-4a6c-9a09-dd8c0fc6e99a.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8519
x-amzn-requestid: 935e0884-2cf9-45d8-8d57-5f212bb82c54
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dX5QbF3cIAMF-2w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-639fd59c-09675fa360f1f1184868e62f;Sampled=0
x-amzn-remapped-date: Mon, 19 Dec 2022 03:08:12 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: naT7yJHafd2bn48I0TgVE1vib04u17HpNQaw6WIz-UcNRBEC-QC9tQ==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 04:40:42 GMT
age: 83425
etag: "6abbc321a48f41d151fc2a99535ae0557f0bc3fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8097629a-6831-40b8-a1d1-232a60cfd681.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8097629a-6831-40b8-a1d1-232a60cfd681.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 81118a1a1de7e0f2b8c1807f57817e8f
7820a75f0c9ea28fbe58574c5593912ac7a6b5ab
c2911cc940ee8701112ce9e12792f6895b9870d26e31f0828da6cca0aa4ead60
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8097629a-6831-40b8-a1d1-232a60cfd681.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9422
x-amzn-requestid: febb6e39-888f-47fe-8384-116d3f20fd38
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: degvCGlfoAMFlxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a27b2c-0411f0e650b2573570b0dcf3;Sampled=0
x-amzn-remapped-date: Wed, 21 Dec 2022 03:19:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Miss from cloudfront
x-amz-cf-id: zdtquCwYV2zT-h725s9vsP7PkezoUe4oBpYch97e9JCP-u__y6fSpg==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 82c2ab57bc9900898383f6b70681b9e6.cloudfront.net (CloudFront), 1.1 google
date: Wed, 21 Dec 2022 03:25:18 GMT
etag: "7820a75f0c9ea28fbe58574c5593912ac7a6b5ab"
content-type: image/jpeg
age: 1549
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ccd69f0-2174-4a60-b9c2-46141742ba9c.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ccd69f0-2174-4a60-b9c2-46141742ba9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 685a370dbd8daf59af56aa50cdcb06f0
45ff61e7536301bd2914808309827c6b75169f91
eaee830f130a76af7ed96519ede5a2fb08283ccbf619c61b11453c74c1b676a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ccd69f0-2174-4a60-b9c2-46141742ba9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5905
x-amzn-requestid: b5654aab-2736-4b70-9321-562a3bf004d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ddt_BHfroAMFZKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a229f9-0774a1eb6edcfa2d24433abe;Sampled=0
x-amzn-remapped-date: Tue, 20 Dec 2022 21:32:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 4eUIbaroq9s9LGbZqtjwHY0AW99CUWE5MuyzdTnNNYOIn6o3ixYmdA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 d15b6a95f7c8298444f59a99d8027cec.cloudfront.net (CloudFront), 1.1 google
date: Tue, 20 Dec 2022 21:37:22 GMT
age: 22425
etag: "45ff61e7536301bd2914808309827c6b75169f91"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2