campus.cejgranada.es/login/forgot_password.php
164.132.166.58302 Found 308 B URL HTTP/1.1 campus.cejgranada.es/login/forgot_password.php
IP 164.132.166.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 34214b76e12113a8a91942a7b93b846c
f588df4a78dcb23da26e0ed54720da45640e11c4
4ff6cbb76252272edebc0a3b53b4b1050de05b6ecbc7d464e114b0f3c598570c
Analyzer Verdict Alert fortinet Malware
GET /login/forgot_password.php HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
Location: https://campus.cejgranada.es/login/forgot_password.php
Content-Length: 308
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 16803ffa29e10ee999c43eb4e4acfe92
a5ede865a388fa440f20994b43c417d403e9a493
08de8f6abb622e84d2cb6e88dee8fc7c408147ac43da9c24d4cde510ed36b53a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08DE8F6ABB622E84D2CB6E88DEE8FC7C408147AC43DA9C24D4CDE510ED36B53A"
Last-Modified: Mon, 02 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6927
Expires: Wed, 04 Jan 2023 14:23:23 GMT
Date: Wed, 04 Jan 2023 12:27:56 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 8afcbdfc50b3ac9488d629a1a4923b81
933fe7b84c2fbd931da70e92c86fa89110e7cfe7
9857b3b813177c23f90a7e53c7ec1f878362b1da27bc19493bebffc358a4b852
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9857B3B813177C23F90A7E53C7EC1F878362B1DA27BC19493BEBFFC358A4B852"
Last-Modified: Sun, 01 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3834
Expires: Wed, 04 Jan 2023 13:31:50 GMT
Date: Wed, 04 Jan 2023 12:27:56 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 04 Jan 2023 11:36:22 GMT
content-type: application/json
age: 3094
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 225d42543c0190cdb3686bf236533f4f
13a0940800fce078487372b6b3ca614dd1ab6c31
766bbe15eb1642ac39e9b71669fbb44252471c8de5adb555cd1a76db44fbe7bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "766BBE15EB1642AC39E9B71669FBB44252471C8DE5ADB555CD1A76DB44FBE7BC"
Last-Modified: Mon, 02 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7563
Expires: Wed, 04 Jan 2023 14:33:59 GMT
Date: Wed, 04 Jan 2023 12:27:56 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: iSPhXp2Aaez4J7c0NrfExZgWutzynG76SKBFBE++CFnK1foZpFz+A6L+DVw25qPX1Clo7jbPKSY=
x-amz-request-id: TTCX6FQWN8PR659P
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 04 Jan 2023 11:59:07 GMT
age: 1729
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 04 Jan 2023 12:27:56 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 1a20a2a7e2541c7708683c143f456f1b
373f78cc36360a2aef1204abe5348b20c73ec789
14673bc77e1c1e13676e12a1fa7b423c8500813b94420e18e3d123401abfc6ef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14673BC77E1C1E13676E12A1FA7B423C8500813B94420E18E3D123401ABFC6EF"
Last-Modified: Tue, 03 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21579
Expires: Wed, 04 Jan 2023 18:27:35 GMT
Date: Wed, 04 Jan 2023 12:27:56 GMT
Connection: keep-alive
campus.cejgranada.es/login/forgot_password.php
164.132.166.58200 OK 36 kB URL HTTP/1.1 campus.cejgranada.es/login/forgot_password.php
IP 164.132.166.58:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (12799)
Hash 85c112740622763eeae5a30f3aa3e5ae
4a74d8c057bb45a9f1e9f6aab3ead39f0cff6ad0
7a38fb067ccdcffc9d6f4ff738c7203edfc9566474c99dd2a752ccbca89e693c
Analyzer Verdict Alert fortinet Malware
GET /login/forgot_password.php HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Set-Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5; path=/
Expires:
Cache-Control: private, pre-check=0, post-check=0, max-age=0, no-transform
Pragma: no-cache
Content-Language: en
Content-Script-Type: text/javascript
Content-Style-Type: text/css
X-UA-Compatible: IE=edge
Accept-Ranges: none
X-Frame-Options: sameorigin
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=utf-8
campus.cejgranada.es/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css
164.132.166.58200 OK 1.0 kB URL HTTP/1.1 campus.cejgranada.es/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css
IP 164.132.166.58:0
File type ASCII text, with very long lines (1965)
Hash 954717f56656e687295097c986703269
eacac549df0a6f873918b09c167f67683363484f
3736a081935aebfecde262efb24be923f7019e02c8719e12e8867bb581a84ebe
GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.css HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Content-Disposition: inline; filename="combo"
Last-Modified: Fri, 29 May 2020 10:52:35 GMT
Expires: Sat, 30 Dec 2023 12:27:56 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Accept-Ranges: none
Etag: "b9bc567c469e2872cf3bbb14603342a72de2509b"
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 1031
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/css;charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 04 Jan 2023 12:08:11 GMT
age: 1185
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
campus.cejgranada.es/lib/javascript.php/1592257510/lib/javascript-static.js
164.132.166.58200 OK 6.8 kB URL HTTP/1.1 campus.cejgranada.es/lib/javascript.php/1592257510/lib/javascript-static.js
IP 164.132.166.58:0
File type HTML document, ASCII text, with very long lines (1875)
Hash 51f78cfba8db157ae539913ea50537cb
5927351adc3d95ae1172f9d6ceb61d57149f3687
23a79490c8542759115388e1662627d9da02c7c12fa697bb9ce427be82204200
Analyzer Verdict Alert fortinet Malware
GET /lib/javascript.php/1592257510/lib/javascript-static.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "c62f8a01e15566dcd2100905e0faaaaf000ebe98"
Content-Disposition: inline; filename="javascript.php"
Last-Modified: Mon, 15 Jun 2020 21:46:07 GMT
Expires: Tue, 04 Apr 2023 12:27:56 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 6779
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
campus.cejgranada.es/lib/javascript.php/1592257510/lib/requirejs/require.min.js
164.132.166.58200 OK 6.5 kB URL HTTP/1.1 campus.cejgranada.es/lib/javascript.php/1592257510/lib/requirejs/require.min.js
IP 164.132.166.58:0
File type ASCII text, with very long lines (17535), with no line terminators
Hash a0c09781b9b17b886789109e8f466460
b00442d4f27e2de818e9faef16aa4a15a6061eec
806d2db20ee8dea63e2c0a96ea9cf1b52a08d0f9a407d77d13845940014f9745
Analyzer Verdict Alert fortinet Malware
GET /lib/javascript.php/1592257510/lib/requirejs/require.min.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "acc6e0dd564388bd4340089619b76bd4b2be8cd9"
Content-Disposition: inline; filename="javascript.php"
Last-Modified: Mon, 15 Jun 2020 21:46:07 GMT
Expires: Tue, 04 Apr 2023 12:27:56 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 6531
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: application/javascript; charset=utf-8
campus.cejgranada.es/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js
164.132.166.58200 OK 84 kB URL HTTP/1.1 campus.cejgranada.es/theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js
IP 164.132.166.58:0
File type ASCII text, with very long lines (6010)
Hash 8bcb376a1000018ace15774394400419
2f8e8e67c1c31bac12aca22f482c3ef33a28a7a7
ba65826c64be1db28f1d0549c4dcce3598464e4da1154b26b28e6d6c58db25af
Analyzer Verdict Alert fortinet Malware
GET /theme/yui_combo.php?rollup/3.17.2/yui-moodlesimple-min.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Content-Disposition: inline; filename="combo"
Last-Modified: Fri, 29 May 2020 10:52:35 GMT
Expires: Sat, 30 Dec 2023 12:27:56 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Accept-Ranges: none
Etag: "78581a0bac8a932effb32db3e91e0f2f2b47c08e"
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
campus.cejgranada.es/theme/styles.php/boost/1592257510_1592257570/all
164.132.166.58200 OK 112 kB URL HTTP/1.1 campus.cejgranada.es/theme/styles.php/boost/1592257510_1592257570/all
IP 164.132.166.58:0
File type Unicode text, UTF-8 text, with very long lines (65528), with no line terminators
Size 112 kB (111461 bytes)
Hash e5a13bd5b83dc71924308a0553dce48f
47da181a535cdc2e2bcb1cae88f753780a04c92e
0225afba0d018bcdf1ec0708eecf1027f44431b2b7a2f7e36a29530b481c29c2
Analyzer Verdict Alert fortinet Malware
GET /theme/styles.php/boost/1592257510_1592257570/all HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:56 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "9d621c27caff92b9d4e5303c5a9335dabbf0abd3"
Content-Disposition: inline; filename="styles.php"
Last-Modified: Mon, 15 Jun 2020 21:46:26 GMT
Expires: Tue, 04 Apr 2023 12:27:56 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css; charset=utf-8
campus.cejgranada.es/pluginfile.php/1/core_admin/logocompact/0x70/1592257510/LogoColegio2016%20%281%29.png
164.132.166.58200 OK 6.4 kB URL HTTP/1.1 campus.cejgranada.es/pluginfile.php/1/core_admin/logocompact/0x70/1592257510/LogoColegio2016%20%281%29.png
IP 164.132.166.58:0
File type PNG image data, 58 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b3c12378ea6feb58e94c96be7317a06
10479119579cebc12586d6c56feaddbfc6a8dcf6
50a090aa7f974c5724be54c277a1a84c4d3b41872ea91e327dffee15a1b1966d
GET /pluginfile.php/1/core_admin/logocompact/0x70/1592257510/LogoColegio2016%20%281%29.png HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Expires: Sun, 05 Mar 2023 12:27:57 GMT
Cache-Control: public, max-age=5184000, no-transform
Pragma:
Content-Disposition: inline; filename="LogoColegio2016 (1).png"
Last-Modified: Mon, 15 Jun 2020 21:46:07 GMT
Accept-Ranges: bytes
Content-Length: 6376
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: image/png
campus.cejgranada.es/theme/yui_combo.php?m/1592257510/core/event/event-min.js&m/1592257510/filter_mathjaxloader/loader/loader-min.js
164.132.166.58200 OK 825 B URL HTTP/1.1 campus.cejgranada.es/theme/yui_combo.php?m/1592257510/core/event/event-min.js&m/1592257510/filter_mathjaxloader/loader/loader-min.js
IP 164.132.166.58:0
File type ASCII text, with very long lines (1374)
Hash 48a54ee9846667dc1a84e372a0d72f28
3e3ea0e5bbb756f0b13262e003bea10261fff0d4
810b3e20489109e3060455ca8310d9a2b783a0444e726f75ebc42b75ebcd1de3
GET /theme/yui_combo.php?m/1592257510/core/event/event-min.js&m/1592257510/filter_mathjaxloader/loader/loader-min.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Content-Disposition: inline; filename="combo"
Last-Modified: Fri, 29 May 2020 10:52:35 GMT
Expires: Sat, 30 Dec 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Accept-Ranges: none
Etag: "98089417816f2538d94b5fef869965dac01278dc"
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 825
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: application/javascript
campus.cejgranada.es/theme/font.php/boost/core/1592257510/fontawesome-webfont.woff2?v=4.7.0
164.132.166.58200 OK 77 kB URL HTTP/1.1 campus.cejgranada.es/theme/font.php/boost/core/1592257510/fontawesome-webfont.woff2?v=4.7.0
IP 164.132.166.58:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /theme/font.php/boost/core/1592257510/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://campus.cejgranada.es/theme/styles.php/boost/1592257510_1592257570/all
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "f4e42c1ea89a0a8ed707a834778ce7bcf5e8b0bc"
Content-Disposition: inline; filename="fontawesome-webfont.woff2"
Last-Modified: Mon, 15 Jun 2020 21:46:07 GMT
Expires: Tue, 04 Apr 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Content-Length: 77160
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/font-woff2
campus.cejgranada.es/theme/yui_combo.php?m/1592257510/core/formchangechecker/formchangechecker-min.js
164.132.166.58200 OK 885 B URL HTTP/1.1 campus.cejgranada.es/theme/yui_combo.php?m/1592257510/core/formchangechecker/formchangechecker-min.js
IP 164.132.166.58:0
File type ASCII text, with very long lines (2979)
Hash 33fd6064fce776e0d8b92d6e56559b1f
c8e4eb1b85bfbef3e39b0a961a833eb13c2253af
b2e60e08fd890767566f3eebeed519892370529b3c20a8faa37f91f6065f3f2a
Analyzer Verdict Alert fortinet Malware
GET /theme/yui_combo.php?m/1592257510/core/formchangechecker/formchangechecker-min.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Content-Disposition: inline; filename="combo"
Last-Modified: Fri, 29 May 2020 10:52:35 GMT
Expires: Sat, 30 Dec 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Accept-Ranges: none
Etag: "64af47da634714e9f3d4875af3b50e4d0dd709b4"
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 885
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: application/javascript
push.services.mozilla.com/
54.187.102.159101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.187.102.159:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: pnLldIAGKP+OXBjoIGw1vg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DWAnKOCHyeuGMOiYclnlRtSpeyo=
campus.cejgranada.es/theme/image.php/boost/theme/1592257510/favicon
164.132.166.58200 OK 1.2 kB URL HTTP/1.1 campus.cejgranada.es/theme/image.php/boost/theme/1592257510/favicon
IP 164.132.166.58:0
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 135aed33c0a7b8f44f0227a71b9ce345
120e10c8a17aebb31c74b6988f8bce9b05dd6606
7afbabec7cddb87ab3b2c3f56509ca9c8f76925db0570372f1a6a366606be1b4
Analyzer Verdict Alert fortinet Malware
GET /theme/image.php/boost/theme/1592257510/favicon HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "b343b9e0540466e474da987d13f401d7efdf0106"
Content-Disposition: inline; filename="favicon.ico"
Last-Modified: Mon, 15 Jun 2020 21:46:07 GMT
Expires: Tue, 04 Apr 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=7776000, no-transform, immutable
Accept-Ranges: none
Content-Length: 1150
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Content-Type: image/vnd.microsoft.icon
campus.cejgranada.es/lib/requirejs.php/1592257510/core/first.js
164.132.166.58200 OK 163 kB URL HTTP/1.1 campus.cejgranada.es/lib/requirejs.php/1592257510/core/first.js
IP 164.132.166.58:0
File type Unicode text, UTF-8 text, with very long lines (10836)
Size 163 kB (163426 bytes)
Hash 8fc4313168c1550fe4d76d8c9c33dccf
bb6e67534fe8dab8f2dd4186a73a84ebca3724f2
2df0b196afec15ccf6d1558721e8dfe61d29cab360d0ed94003cda4cc9080831
Analyzer Verdict Alert fortinet Malware
GET /lib/requirejs.php/1592257510/core/first.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "91278fbfdb5a19b6de7e80d7ddee1e444971640e"
Content-Disposition: inline; filename="requirejs.php"
Last-Modified: Mon, 15 Jun 2020 21:46:07 GMT
Expires: Tue, 04 Apr 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=15, max=97
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
campus.cejgranada.es/lib/javascript.php/1592257510/lib/jquery/jquery-3.2.1.min.js
164.132.166.58200 OK 30 kB URL HTTP/1.1 campus.cejgranada.es/lib/javascript.php/1592257510/lib/jquery/jquery-3.2.1.min.js
IP 164.132.166.58:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash efac825850e7d32f01e722746f84a0b9
110e5026a33b260399bc35d5a456a835f4243810
9b570d437611f6b724b40880ae4544465816119d46acb6c1ed07d16e25e6b5af
Analyzer Verdict Alert fortinet Malware
GET /lib/javascript.php/1592257510/lib/jquery/jquery-3.2.1.min.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Etag: "43236737ed810cea529f558d132af907020dbb8e"
Content-Disposition: inline; filename="javascript.php"
Last-Modified: Mon, 15 Jun 2020 21:46:08 GMT
Expires: Tue, 04 Apr 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=7776000, immutable
Accept-Ranges: none
Content-Encoding: gzip
Vary: Accept-Encoding
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript; charset=utf-8
campus.cejgranada.es/theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js
164.132.166.58200 OK 4.8 kB URL HTTP/1.1 campus.cejgranada.es/theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js
IP 164.132.166.58:0
File type ASCII text, with very long lines (3857)
Hash 713bb7fd594c64c3598edc178658783a
5cf119be436a34e733ca1fee6c41b3c8350cedaf
f5cfc9a7087a218ad9951e7e5d22bade76acb58ccac10f3ca1ec891299b6735e
GET /theme/yui_combo.php?3.17.2/event-mousewheel/event-mousewheel-min.js&3.17.2/event-resize/event-resize-min.js&3.17.2/event-hover/event-hover-min.js&3.17.2/event-touch/event-touch-min.js&3.17.2/event-move/event-move-min.js&3.17.2/event-flick/event-flick-min.js&3.17.2/event-valuechange/event-valuechange-min.js&3.17.2/event-tap/event-tap-min.js HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Content-Disposition: inline; filename="combo"
Last-Modified: Fri, 29 May 2020 10:52:35 GMT
Expires: Sat, 30 Dec 2023 12:27:57 GMT
Pragma:
Cache-Control: public, max-age=31104000, immutable
Accept-Ranges: none
Etag: "b24ca831785ba367093f089618e840be511be85d"
Content-Encoding: gzip
Vary: Accept-Encoding
Content-Length: 4808
Keep-Alive: timeout=15, max=95
Connection: Keep-Alive
Content-Type: application/javascript
campus.cejgranada.es/lib/ajax/service.php?sesskey=LdCnhUuBhN&info=core_fetch_notifications
164.132.166.58200 OK 234 B URL HTTP/1.1 campus.cejgranada.es/lib/ajax/service.php?sesskey=LdCnhUuBhN&info=core_fetch_notifications
IP 164.132.166.58:0
File type JSON data\012- , ASCII text, with no line terminators
Hash f7733c5042e3799a52e51498c9d92d46
470aa72b73690bd353c801c5c57dcc4de951c220
0d1a3f51522c9d8fb16727d4e08634951359d17a856724d9002bdb96b1634ec4
POST /lib/ajax/service.php?sesskey=LdCnhUuBhN&info=core_fetch_notifications HTTP/1.1
Host: campus.cejgranada.es
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 76
Origin: https://campus.cejgranada.es
Connection: keep-alive
Referer: https://campus.cejgranada.es/login/forgot_password.php
Cookie: MoodleSession=7rovhq1e6jdk4qi70fa6h766l5
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Wed, 04 Jan 2023 12:27:57 GMT
Server: Apache
X-Powered-By: PHP/7.2.31
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Length: 234
Keep-Alive: timeout=15, max=96
Connection: Keep-Alive
Content-Type: application/json; charset=utf-8
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 872ad13c3966689cbd481bebca0b21f8
2a052c414b68b9e71b00fa3903995e8bdd22a81c
bd2222d291deec7ba01875b7ddfd0d27de71e68fc600057fb3d1fa9394aa46fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD2222D291DEEC7BA01875B7DDFD0D27DE71E68FC600057FB3D1FA9394AA46FA"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6447
Expires: Wed, 04 Jan 2023 14:15:25 GMT
Date: Wed, 04 Jan 2023 12:27:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 872ad13c3966689cbd481bebca0b21f8
2a052c414b68b9e71b00fa3903995e8bdd22a81c
bd2222d291deec7ba01875b7ddfd0d27de71e68fc600057fb3d1fa9394aa46fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD2222D291DEEC7BA01875B7DDFD0D27DE71E68FC600057FB3D1FA9394AA46FA"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6447
Expires: Wed, 04 Jan 2023 14:15:25 GMT
Date: Wed, 04 Jan 2023 12:27:58 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 872ad13c3966689cbd481bebca0b21f8
2a052c414b68b9e71b00fa3903995e8bdd22a81c
bd2222d291deec7ba01875b7ddfd0d27de71e68fc600057fb3d1fa9394aa46fa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD2222D291DEEC7BA01875B7DDFD0D27DE71E68FC600057FB3D1FA9394AA46FA"
Last-Modified: Wed, 04 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6447
Expires: Wed, 04 Jan 2023 14:15:25 GMT
Date: Wed, 04 Jan 2023 12:27:58 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f7ef195ef59caf6b47f13ceae04987f
dbff30aac035b502e27a3a538dbdfd475d3fc1d4
b31c198d6b76827201a870da6f9fe9b28c2cffe0d3f7f3d8e0530223ea8fc9d9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8476606b-7383-49cb-8c93-76705bedbbb8.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8148
x-amzn-requestid: 7712cf7e-ea08-47da-876a-ba70c723b68b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL33cHXsIAMFhhw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a02f-3c965abb517a33ce31cbdf4c;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:37:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rFfuD3wwqKgnQbgzyH5dJP3ESEGRF_FYvH85dCgVG0PgvHF7kYkVhQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:57:14 GMT
age: 52244
etag: "dbff30aac035b502e27a3a538dbdfd475d3fc1d4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash af78916e285d0f6c5c5a5ff33894e108
96df0d8c10c666811cfeb98187ca93e65480c2ff
7bcb20dc641e46d033dee76b3d92b701b31aecfbf88241a5a95dfdc1c5e95885
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc03ececd-3935-4a1b-ae41-45a5aea9ebe3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5018
x-amzn-requestid: 7a68cfb1-dedd-4f08-8d99-4678c1087422
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3HtFHkoAMFwYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49efd-7880e5f93c99cc794f9a03bb;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:32:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MvV5dXthUr0Qo499_5eG6Z_yW0gmflen3kRBrse7ngQjUgOVA0OMvg==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 21:48:41 GMT
age: 52757
etag: "96df0d8c10c666811cfeb98187ca93e65480c2ff"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 359f30e64bec00d0a01acd69a08b684d
ac965c8642c4d1e47713965060fa2fc8f19088b1
fff1b001462468cc953092a2312650c03f307e95c40e2c6bb7356e2a8b9b0283
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ff2360c-5204-4d20-b397-821a4c4421e7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11877
x-amzn-requestid: 884b9243-6a8a-4434-9b2a-e5eff84d4e99
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL33bFnDoAMFpoQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b4a02f-3f7043ae29d21e010ddc1ff9;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:37:51 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: AmpRiMJDlhYtRCxTT0l7VEPHwk7eK_rnGceIYRUobRqi8hIM2LMrCQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:00:54 GMT
age: 52024
etag: "ac965c8642c4d1e47713965060fa2fc8f19088b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
34.120.237.76200 OK 5.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e832123ea0c92a446b5894e75efc86ae
bb438ca635b43819701067ef07a3d910ad29a0c7
e1b0c6cd873f304de15664f96af6b6914e13fbbfb3e2179ba43369e116446773
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f37a3ca-5b31-4876-bbcd-442c1f718b3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5578
x-amzn-requestid: 93353c3e-1b26-424c-b4c6-0d113703edd6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eFvpBFGvIAMFobw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b22c9f-1d07cff31ae39320693642f0;Sampled=0
x-amzn-remapped-date: Mon, 02 Jan 2023 01:00:15 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: V8_4JXT2EDqqzVxBjZK7SUVVS9Pez_EbpGP8BCMX0FrS2x2srUr2Ug==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:11:09 GMT
age: 51409
etag: "bb438ca635b43819701067ef07a3d910ad29a0c7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50966eaa-29cb-4706-8bda-5f13662a8ef8.jpeg
34.120.237.76200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50966eaa-29cb-4706-8bda-5f13662a8ef8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a73b5d924c7b0bcd92d0854d7904769e
468e0acd0a0cd5539ee8a274a0fb4a2af8bcb83f
27c638c7e32368549faff0bf39662c606c17f36a4c5552207a52cc2a9fff02f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F50966eaa-29cb-4706-8bda-5f13662a8ef8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6447
x-amzn-requestid: d809af38-e1e7-445b-a605-1182ee70e183
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: d42LGEbcIAMF4Fw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ad03e0-7b724db22250c9c3111121a9;Sampled=0
x-amzn-remapped-date: Thu, 29 Dec 2022 03:05:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bbBLjDYgF6TJDgJx9OoatQTkA7suOoxAL4tJBeTeH-4NH9h-TsWRww==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 04 Jan 2023 10:42:10 GMT
age: 6348
etag: "468e0acd0a0cd5539ee8a274a0fb4a2af8bcb83f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cb033e4a3035a49677a810f764021597
a76b2ab1c4b33be2244cc4e81ee56b95d9ddc860
fa816b99c77b4c1ac27153355574d7a4fbdc1a43ac8417bdfd45004fb54b878a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36836a00-5089-401d-9a69-e25230099d0a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6861
x-amzn-requestid: eb43b3e5-316e-4fa0-b6a7-696e747a4e6d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eL3IuGQFoAMFwbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b49f04-3d752ea257c839dc59e5b803;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 21:32:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 00E0yhrr9z2tJ-8fyJ-ANOEdeY9sK72o7HogOfr7AoeN9ubT7jY2OA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Tue, 03 Jan 2023 22:00:55 GMT
age: 52023
etag: "a76b2ab1c4b33be2244cc4e81ee56b95d9ddc860"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2