urlquery - report: att-108363-107407.square.site/

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	Sent bytes	Received bytes	IP
push.services.mozilla.com (1)	2140	2014-10-24T10:27:06Z	2023-03-26T05:10:29Z	606	127	52.43.61.251
img-getpocket.cdn.mozilla.net (6)	1631	2018-06-22T01:36:00Z	2023-03-26T05:09:08Z	3245	56393	34.120.237.76
r3.o.lencr.org (7)	344	2020-12-02T09:52:13Z	2023-03-25T18:12:03Z	2366	6203	23.36.76.226
firefox.settings.services.mozilla.com (2)	867	2020-06-04T22:08:41Z	2023-03-25T18:14:26Z	782	2374	35.241.9.150
att-108363-107407.square.site (3)	0	2023-03-19T16:51:57Z	2023-03-20T07:00:00Z	2497	5195	199.34.228.39
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03T13:26:46Z	2023-03-26T05:11:12Z	413	5881	34.160.144.191
contile.services.mozilla.com (1)	1114	2021-05-27T20:32:35Z	2023-03-26T05:11:59Z	333	391	34.117.237.239
ocsp.digicert.com (1)	86	2012-05-21T09:02:23Z	2023-03-26T05:18:47Z	341	799	192.229.221.95

Scan Date	Severity	Indicator	Comment
2023-03-19	medium	att-108363-107407.square.site/	AT&T Inc.
2023-03-19	medium	att-108363-107407.square.site/	AT&T Inc.
2023-03-19	medium	att-108363-107407.square.site/	AT&T Inc.

Date	UQ / IDS / BL	URL	IP
2023-05-29 11:53:49 UTC	0 - 0 - 50	login-att-108576.square.site/	199.34.228.40
2023-05-24 14:01:27 UTC	0 - 0 - 30	bt-103933-105563.square.site/	199.34.228.40
2023-05-24 13:57:40 UTC	0 - 0 - 31	bt-100113.square.site/	199.34.228.40
2023-05-21 14:25:32 UTC	0 - 0 - 30	attaccountloginpage.square.site/	199.34.228.40
2023-05-21 00:39:23 UTC	0 - 0 - 15	my-site-101508-109238.square.site/	199.34.228.40

Date	UQ / IDS / BL	URL	IP
2023-05-29 11:58:27 UTC	0 - 0 - 30	at-sign-dex-lodge.square.site/	199.34.228.39
2023-05-29 11:53:49 UTC	0 - 0 - 50	login-att-108576.square.site/	199.34.228.40
2023-05-29 11:11:27 UTC	0 - 0 - 35	bt-home-105802.square.site/	199.34.228.39
2023-05-29 03:21:00 UTC	0 - 0 - 14	bt-service-provider-update.weeblysite.com/	199.34.228.97
2023-05-28 20:28:01 UTC	0 - 0 - 0	www.kangaroomatters.org	199.34.228.77

Date	UQ / IDS / BL	URL	IP
2023-05-29 11:58:27 UTC	0 - 0 - 30	at-sign-dex-lodge.square.site/	199.34.228.39
2023-05-29 11:53:49 UTC	0 - 0 - 50	login-att-108576.square.site/	199.34.228.40
2023-05-29 11:11:27 UTC	0 - 0 - 35	bt-home-105802.square.site/	199.34.228.39
2023-05-26 10:00:41 UTC	0 - 0 - 47	at-sifgn-at-t.square.site/	199.34.228.39
2023-05-24 14:01:27 UTC	0 - 0 - 30	bt-103933-105563.square.site/	199.34.228.40

Date	UQ / IDS / BL	URL	IP
2023-04-04 02:34:43 UTC	0 - 0 - 6	att-loggin-1545.weeblysite.com/	199.34.228.96
2023-04-04 02:35:21 UTC	0 - 0 - 7	att-loggin7994.weeblysite.com/	199.34.228.96
2023-04-04 02:34:02 UTC	0 - 0 - 6	offersattjrfhyh-106339.square.site/	199.34.228.40
2023-04-01 23:50:16 UTC	0 - 0 - 5	my-site-104449-109127.weeblysite.com/	199.34.228.96
2023-04-01 22:55:49 UTC	0 - 0 - 5	att-107313.weeblysite.com/	199.34.228.97

Request	Response
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD8ABB8F420D1E31462FCA1D6A7CAADF1E2BBA6FC7DB05684B5811E00E84107F" Last-Modified: Fri, 17 Mar 2023 14:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2429 Expires: Mon, 20 Mar 2023 06:40:29 GMT Date: Mon, 20 Mar 2023 06:00:00 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 2857be6f18459c7a4a7f00f6cd6076f1 Sha1: 570609086d72a9be57cde7bfefd25663c1035fba Sha256: bd8abb8f420d1e31462fca1d6a7caadf1e2bba6fc7db05684b5811e00e84107f
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7" Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12495 Expires: Mon, 20 Mar 2023 09:28:15 GMT Date: Mon, 20 Mar 2023 06:00:00 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 00e304a3fc0c2f01af0e94fcefe0ca40 Sha1: 833969e75e5e13e823c8d97ee59a9821eb157ee3 Sha256: c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Content-Length, Backoff, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 20 Mar 2023 05:27:11 GMT age: 1969 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 29fdbcd53b5646cfcdd46510063734c4 Sha1: 85e3ceda5ef130219f4fe8a31e52e2690c8f7d8e Sha256: 24c27586332c016685e6231fec5836e921048d8aaefbcd4cd6f88969f9d91e18
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813" Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4957 Expires: Mon, 20 Mar 2023 07:22:37 GMT Date: Mon, 20 Mar 2023 06:00:00 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: eddc2a353d39e5ce5c30d7e90b3ed6a5 Sha1: 305e86e4b966344c135c50af9a6509ffd3a83e9e Sha256: bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813
GET / HTTP/1.1 Host: att-108363-107407.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	199.34.228.39 HTTP/1.1 302 Found Content-Type: text/html; charset=UTF-8 Server: nginx Transfer-Encoding: chunked Connection: keep-alive Cache-Control: no-cache, private Date: Mon, 20 Mar 2023 06:00:00 GMT Location: https://att-108363-107407.square.site Set-Cookie: publishedsite-xsrf=eyJpdiI6InprSmdYTTRYd1crMXE0Q3BLaVRHYUE9PSIsInZhbHVlIjoiVXVJRzNBK3h2NTF2NWRrTjJYTTg5eWtObjBveVowK0t1YkRwbjFzQmpJRlpWMENzT01TdFA5NUttN0ZYYVZsdDY1REd3N1NFWHdNa1BHbFFybE85R2wxV2gvVXp5T2NIS3h3bXQzZlVnMEk5U3FmRVQrS0NtQlRxVmZTRnNQZE8iLCJtYWMiOiIzNjU2NmQ4Nzk1Njc4NWQxZGU5YWZjMTA3MGIxOGRjYWFhODcxNDU5ZjMzZjdkNzFjODcyODM4MDRhY2I2ZjE4IiwidGFnIjoiIn0%3D; expires=Mon, 03-Apr-2023 06:00:00 GMT; Max-Age=1209600; path=/; samesite=lax XSRF-TOKEN=eyJpdiI6Imc5QVZNdzY4NGhPRXA2UHU2WEpnb0E9PSIsInZhbHVlIjoiVWlodXRIQmFKSXdVaEhSRlptcWI0S2Q2UHFDTE0zcVlJdlZkU2lTV1RJdG9zc29vaENIQzQyZUo3ZXdmbFI1Z1pYWjh0T3l2clQvSmJzc2piTFJWUnZISXJ4aXlaN3YzN21yYXFLSDFaVWVseDJ4Tlo4aEhVTUxoMEhNVEdmQVoiLCJtYWMiOiIxMzU1ODg4Nzg1ZDMyYjcyMmExYjE2NjIxNGIyM2JjNjRhYjI1Y2UzMmVhOGIxZjQxMWM4MmZiNDZiMjg5OTAwIiwidGFnIjoiIn0%3D; expires=Mon, 03-Apr-2023 06:00:00 GMT; Max-Age=1209600; path=/; samesite=lax PublishedSiteSession=eyJpdiI6IjFUWlFyWHgxZThBUVgrdVRWQmMyYWc9PSIsInZhbHVlIjoibEt6K1RudGJzRXRHbDVrNXI1WExNZjdVSk4xM004YjFnVlAweTlndDdta3pDU2sxVUlkMzkyV2k4QXdjM0xOYkFGN052MnVRdDJmUFlOR3FFdXpJWE9tcHBQZVFLYUYyYS8zT09JMkxSbkx0dEQrOXVqUENuZzRKM2pwVzVoMGsiLCJtYWMiOiI0ZDZhOWM4NTI3YjhmZWUxZjc1MGZlYTA0ZTViNTE3MjBmN2I5NjViYjIyNzk2MzgyZWUzYTk2NjkyM2M4MzY1IiwidGFnIjoiIn0%3D; expires=Mon, 03-Apr-2023 06:00:00 GMT; Max-Age=1209600; path=/; httponly; samesite=lax X-Host: grn50.sf2p.intern.weebly.net X-Revision: 751919ac331b52e4b07f20852622d0782b5bd0bf X-Request-ID: b7b0871db559b08f2b5a9d65f0a78a91 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 394 Md5: c0ba9331232f301e5ad2a3eb6414aee1 Sha1: bc2b793aa4635c4bf5ad6d1de9bc5a46167a117c Sha256: e667f13c39719e322de132f8c26ca3a505b319d5d82f971346f2c0391d529da9 Blocklists: - openphish: AT&T Inc.
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	34.160.144.191 HTTP/2 200 OK content-type: binary/octet-stream x-amz-id-2: QxX+gNeMJB6uO2fOntyh76rtyKDuPVyyxbuk5vzqeGvgFhBJtA7wxvwc9uhhE/3fhAN2k/gLk2I= x-amz-request-id: Q2DP5NHV60MGKBX4 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 20 Mar 2023 05:52:39 GMT age: 441 last-modified: Sat, 11 Mar 2023 16:53:15 GMT etag: "e7bace7c1e04d44012e37ddffe36e5d5" cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: e7bace7c1e04d44012e37ddffe36e5d5 Sha1: 3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2 Sha256: 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Mon, 20 Mar 2023 06:00:00 GMT content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	35.241.9.150 HTTP/2 200 OK content-type: application/json access-control-allow-origin: * access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 20 Mar 2023 05:14:32 GMT age: 2729 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	192.229.221.95 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 1773 Cache-Control: max-age=140448 Date: Mon, 20 Mar 2023 06:00:01 GMT Etag: "64177114-1d7" Expires: Tue, 21 Mar 2023 21:00:50 GMT Last-Modified: Sun, 19 Mar 2023 20:31:16 GMT Server: ECAcc (ska/F756) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 37368e2a4459a724094c2aab403cfd62 Sha1: 1c7221e7cec69e3365c9ae5dd9ba0055eacc7685 Sha256: 52f6940982d5ce876787d3f2b4ed0e2adf29b9a725f029d8882f15246eaf470a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444" Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5039 Expires: Mon, 20 Mar 2023 07:24:00 GMT Date: Mon, 20 Mar 2023 06:00:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 4c195a3fc0c2abb831630cef1dcfa770 Sha1: eda338de3063640556177b9db364c33193d7f6dc Sha256: c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444
GET / HTTP/1.1 Host: att-108363-107407.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733 Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	199.34.228.39 HTTP/1.1 404 Not Found Content-Type: text/html; charset=UTF-8 Server: nginx Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Cache-Control: no-cache, private Date: Mon, 20 Mar 2023 06:00:01 GMT Set-Cookie: publishedsite-xsrf=eyJpdiI6Ikdic01EcG8ra05DT21uUzJKWlcvOVE9PSIsInZhbHVlIjoiUFFQZG5tazBmYVdlSXM1NEJVTmE2dXZOVzFKN25jc09vSjkzV2xGUUhpZ0tUR29oTUFnSDlxOFMyeEx6Ynp4RlBTeWVKcWVWYmJ3TjZkSVVKdkUwNEp4ZFlFZFdiWWJBRnVGcnZHSmtKTnlxM0pZUXRnZUtibk1pUEdSb1JSK3MiLCJtYWMiOiIyYTM4NzI5YzBlNjczM2MzZWM2Y2JkZTFjZTg3YzczODQ2OTBjNzVhOWM2MGE3MzdhOGY3MWY4MWJhMDZkMjBkIiwidGFnIjoiIn0%3D; expires=Mon, 03-Apr-2023 06:00:01 GMT; Max-Age=1209600; path=/; samesite=lax XSRF-TOKEN=eyJpdiI6IklyY2JkMnFYV2Q4ZnE3M0YyOHBUbVE9PSIsInZhbHVlIjoiZ1dkbHJSUkF2Nm81RVVhWDFzeUdUakpHS2xPUyt6dHpseG9yWVBlc2VuYlljaTF5cHpoYi9yVVdKU2VPZTV1NHQzZjNMN1VDTzg2aTVBeTdJdCtBRGx3alJkeFZ3cjZ3SHlLRGNZenN2Mzk1Yng3dGxFZHFtT2tpcDhBYW1EMFAiLCJtYWMiOiJlZmQ0MDBjYzE2NWUwMDgxYzU2ODEwYjYxYmU0NzQzMDkyOGM5MTI1NzgyZTI4MWU5ZmE3YWQzMzhkYTBlNGVhIiwidGFnIjoiIn0%3D; expires=Mon, 03-Apr-2023 06:00:01 GMT; Max-Age=1209600; path=/; samesite=lax PublishedSiteSession=eyJpdiI6IkUvZmxGTVgyR0RHajl4Nk5NSWl5c0E9PSIsInZhbHVlIjoiRHpCdENxNHJWbm1ub1QrZ0xqeDZ4bklpVzNFVkxWMGJkMGhURjlydnBxdEt5R3NWVUI5a0JjUkFXOGwycHhFbE9UbkNkSUZkNEpjbE4rdzMzVkpWRGdrUDFNRlhGMXVyUWtjYXJQWndwL1lvdUdTUWJEdEszTnpzTC93Sm00YWciLCJtYWMiOiI4OTgxM2FjOTkzODUxNjE3MzA1ODgxM2IyZjFmYjhkOTZiNjNkYjU3ZGZmNzJhYjM4M2ZiNmUzNWVjNTAyNjliIiwidGFnIjoiIn0%3D; expires=Mon, 03-Apr-2023 06:00:01 GMT; Max-Age=1209600; path=/; httponly; samesite=lax X-Host: blu133.sf2p.intern.weebly.net X-Revision: 751919ac331b52e4b07f20852622d0782b5bd0bf X-Request-ID: e5e5b31666cc01939cffebc584cb375d Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size: 620 Md5: 609283f0abd216f052c6b32877678dfb Sha1: 990ea8c9bac587ffc680dfdcaf54706c0ee3288b Sha256: 2c02a57d702cb0cf240374bb61b7724b408b998b9cd9825bc0e55f74f27cc10d Blocklists: - openphish: AT&T Inc.
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: ckG/6j6JqjRqFThRFqc0wA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.43.61.251 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: /liBU08ZQwqdKlNkl2IqZjNz5D8= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1 Host: att-108363-107407.square.site User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://att-108363-107407.square.site/ Cookie: _ga_DNQ3ZPYMQW=GS1.1.1654494733.1.0.1654494733.0; _ga=GA1.1.1202189608.1654494733; publishedsite-xsrf=eyJpdiI6Ikdic01EcG8ra05DT21uUzJKWlcvOVE9PSIsInZhbHVlIjoiUFFQZG5tazBmYVdlSXM1NEJVTmE2dXZOVzFKN25jc09vSjkzV2xGUUhpZ0tUR29oTUFnSDlxOFMyeEx6Ynp4RlBTeWVKcWVWYmJ3TjZkSVVKdkUwNEp4ZFlFZFdiWWJBRnVGcnZHSmtKTnlxM0pZUXRnZUtibk1pUEdSb1JSK3MiLCJtYWMiOiIyYTM4NzI5YzBlNjczM2MzZWM2Y2JkZTFjZTg3YzczODQ2OTBjNzVhOWM2MGE3MzdhOGY3MWY4MWJhMDZkMjBkIiwidGFnIjoiIn0%3D; XSRF-TOKEN=eyJpdiI6IklyY2JkMnFYV2Q4ZnE3M0YyOHBUbVE9PSIsInZhbHVlIjoiZ1dkbHJSUkF2Nm81RVVhWDFzeUdUakpHS2xPUyt6dHpseG9yWVBlc2VuYlljaTF5cHpoYi9yVVdKU2VPZTV1NHQzZjNMN1VDTzg2aTVBeTdJdCtBRGx3alJkeFZ3cjZ3SHlLRGNZenN2Mzk1Yng3dGxFZHFtT2tpcDhBYW1EMFAiLCJtYWMiOiJlZmQ0MDBjYzE2NWUwMDgxYzU2ODEwYjYxYmU0NzQzMDkyOGM5MTI1NzgyZTI4MWU5ZmE3YWQzMzhkYTBlNGVhIiwidGFnIjoiIn0%3D; PublishedSiteSession=eyJpdiI6IkUvZmxGTVgyR0RHajl4Nk5NSWl5c0E9PSIsInZhbHVlIjoiRHpCdENxNHJWbm1ub1QrZ0xqeDZ4bklpVzNFVkxWMGJkMGhURjlydnBxdEt5R3NWVUI5a0JjUkFXOGwycHhFbE9UbkNkSUZkNEpjbE4rdzMzVkpWRGdrUDFNRlhGMXVyUWtjYXJQWndwL1lvdUdTUWJEdEszTnpzTC93Sm00YWciLCJtYWMiOiI4OTgxM2FjOTkzODUxNjE3MzA1ODgxM2IyZjFmYjhkOTZiNjNkYjU3ZGZmNzJhYjM4M2ZiNmUzNWVjNTAyNjliIiwidGFnIjoiIn0%3D Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin	199.34.228.39 HTTP/1.1 200 OK Content-Type: application/octet-stream Server: nginx Date: Mon, 20 Mar 2023 06:00:01 GMT Content-Length: 1 Connection: keep-alive Last-Modified: Tue, 14 Apr 2020 20:17:36 GMT x-rgw-object-type: Normal ETag: "93b885adfe0da089cdf634904fd59f71" x-amz-meta-s3cmd-attrs: atime:1586895392/ctime:1586718963/gid:0/gname:root/md5:93b885adfe0da089cdf634904fd59f71/mode:33188/mtime:1586718963/uid:0/uname:root x-amz-request-id: tx000000000000001a5c121-00628473f6-b9fbc77-sfo1 Accept-Ranges: bytes Expires: Thu, 31 Dec 2037 23:55:55 GMT Cache-Control: max-age=315360000 X-Host: blu133.sf2p.intern.weebly.net X-Revision: 751919ac331b52e4b07f20852622d0782b5bd0bf X-Request-ID: d090851b273312be5c55203fc032448f --- Additional Info --- Magic: very short file (no magic) Size: 1 Md5: 93b885adfe0da089cdf634904fd59f71 Sha1: 5ba93c9db0cff93f52b521d7420e43f6eda2784f Sha256: 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d Blocklists: - openphish: AT&T Inc.
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4933 Expires: Mon, 20 Mar 2023 07:22:15 GMT Date: Mon, 20 Mar 2023 06:00:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de95776582936b8e129e876cf6d80fa8 Sha1: 0233251e1cf0123f1260d980d7c8ef92718723f9 Sha256: 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4933 Expires: Mon, 20 Mar 2023 07:22:15 GMT Date: Mon, 20 Mar 2023 06:00:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de95776582936b8e129e876cf6d80fa8 Sha1: 0233251e1cf0123f1260d980d7c8ef92718723f9 Sha256: 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4933 Expires: Mon, 20 Mar 2023 07:22:15 GMT Date: Mon, 20 Mar 2023 06:00:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: de95776582936b8e129e876cf6d80fa8 Sha1: 0233251e1cf0123f1260d980d7c8ef92718723f9 Sha256: 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1f3dbde-5603-4fc9-9c5b-c8735230fcb3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 5456 x-amzn-requestid: 545d20a4-ed22-4be4-98aa-23383209dae2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDDUKFC9IAMF4pw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64177f4d-3e927ea45de99d4b286fcfc8;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:31:57 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: qXn3EwgagFD2MH4PzDYxxVd1eXOQQxHDkNdxXGxwuS-tmPNxWXYukA== via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 21:50:21 GMT age: 29381 etag: "8719d7d6866855fdfba87e06128fb1969d857732" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5456 Md5: 59a97c7842690d7acd0ff07d949b1ef3 Sha1: 8719d7d6866855fdfba87e06128fb1969d857732 Sha256: 203b0e030b9bf84a8a2731c1b46d57e60ee50a53cc925845e7b20cbd60362136
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F293aad0e-d254-4102-8ca1-1d087ced63b8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11652 x-amzn-requestid: 50ac8f17-1571-4e7f-8f19-90d83ef4b096 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDDVCHdxIAMFvhA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64177f53-78a08fd11712c6416979a6c7;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:03 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: ygWegirCFrGYvi16JqG3KRhpHzWQqngZNQJWXIjP6LTnn3ZHSCC07w== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 22:15:20 GMT age: 27882 etag: "216bae08ee1ad9cfb689f3b57648b03f01dedc72" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11652 Md5: 7ea524ec1c4872538976b2c938664631 Sha1: 216bae08ee1ad9cfb689f3b57648b03f01dedc72 Sha256: 98c0a5e7ef665235295ff6957f02e76ed53fd988a41b036a6f7c3aa95ebe0010
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff51415b3-9b9b-4c87-86bb-6211280ffae8.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7132 x-amzn-requestid: 747493fa-4975-4519-bb98-2ae2042387c5 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDEeYHfKoAMF0lg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64178128-63e48b102a1c203831346345;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:39:52 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: Y1P9Ysy_FSoIl_4OZEmivcZDtFBgTkuHSMuQE7qJk9VEGwj9-XSu1A== via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 21:58:31 GMT age: 28891 etag: "6a8be512ea4566f35efeef7ee86cc04efdf8e0ca" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7132 Md5: d6c3dea68b3ee7187c38f853de3ccda5 Sha1: 6a8be512ea4566f35efeef7ee86cc04efdf8e0ca Sha256: 46f62e71ffd933e29368a1593cb201472a3ce7bd253f1a9d2f46a51582e31dfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10338 x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BvSgFGENoAMFuVw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0 x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: K19FG80YIBs-7NnPFJQEodETe4DpifB_BA2FpyYtB0W-sXXjNlLKxw== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 07:04:47 GMT age: 82515 etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10338 Md5: 78453ba98b72eff3879ef163b59c86ed Sha1: 80519bb3726ee1f9f211344cd433cefaed3a7f2e Sha256: 61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3db1704b-1ecd-4198-a98e-0353d4671a5c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8195 x-amzn-requestid: c6844a50-a6b2-4ef4-ad28-f1a0fbcec14f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDFESEDGoAMFQ8A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6417821b-22fa560d4b7811c233fe07fa;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:43:55 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: hZeMhs-Z5fNn0pvRUSkNcGau_K6EG9EQtDktbLUth0uEveafUgCxeQ== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 85ee490c179dc0af42b771f11421073e.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 22:14:44 GMT age: 27918 etag: "85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8195 Md5: 2a940b362660fdee25faaa51e08c439b Sha1: 85fa91b5c4e6ddc1f3cf45eb6a4a3facfc6ad68c Sha256: 18b99e3e890fdc959421c895ce343b8b3ed88819c83fa0009823e8ded23458f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7249 x-amzn-requestid: dfaf4924-b8c3-4b6b-a079-7c3903fdf4fb x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: CDDVjGJyIAMFS9w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-64177f56-6379351b215dc2d9638de9ea;Sampled=0 x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:06 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: XYA6F9VzUqxozJS4OsX-TKy81mOHUB7N6L7rkCaQJmXe5n-a_Zce-Q== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google date: Sun, 19 Mar 2023 22:15:51 GMT age: 27851 etag: "338ee74f53fac2b19a90981bc4b02a3c3722a1fa" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7249 Md5: 4e5aa79770d71507827e79149031b5cf Sha1: 338ee74f53fac2b19a90981bc4b02a3c3722a1fa Sha256: 81df6f2312df6e488ae91c172ecf872d694497ffe80500f71eb97e6c06ff5f5f

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C2B7F7AE4861F2DD16867DE54C7E47D95582DE77887F523841D9683A369D20A7" 

                                            
                                                
Last-Modified: Sun, 19 Mar 2023 18:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=12495 

                                            
                                                
Expires: Mon, 20 Mar 2023 09:28:15 GMT 

                                            
                                                
Date: Mon, 20 Mar 2023 06:00:00 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    00e304a3fc0c2f01af0e94fcefe0ca40

                                                Sha1:   833969e75e5e13e823c8d97ee59a9821eb157ee3

                                                Sha256: c2b7f7ae4861f2dd16867de54c7e47d95582de77887f523841d9683a369d20a7

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "BD775C38C2E11F1BAEDDE5D92AB17CEAF4C2067F8EA996595A66801758A71813" 

                                            
                                                
Last-Modified: Fri, 17 Mar 2023 19:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4957 

                                            
                                                
Expires: Mon, 20 Mar 2023 07:22:37 GMT 

                                            
                                                
Date: Mon, 20 Mar 2023 06:00:00 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    eddc2a353d39e5ce5c30d7e90b3ed6a5

                                                Sha1:   305e86e4b966344c135c50af9a6509ffd3a83e9e

                                                Sha256: bd775c38c2e11f1baedde5d92ab17ceaf4c2067f8ea996595a66801758a71813

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1 

                                        
                                            
Host: content-signature-2.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.160.144.191

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: binary/octet-stream

                                            

                                            
                                                
x-amz-id-2: QxX+gNeMJB6uO2fOntyh76rtyKDuPVyyxbuk5vzqeGvgFhBJtA7wxvwc9uhhE/3fhAN2k/gLk2I= 

                                            
                                                
x-amz-request-id: Q2DP5NHV60MGKBX4 

                                            
                                                
x-amz-server-side-encryption: AES256 

                                            
                                                
content-disposition: attachment 

                                            
                                                
accept-ranges: bytes 

                                            
                                                
server: AmazonS3 

                                            
                                                
content-length: 5348 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Mon, 20 Mar 2023 05:52:39 GMT 

                                            
                                                
age: 441 

                                            
                                                
last-modified: Sat, 11 Mar 2023 16:53:15 GMT 

                                            
                                                
etag: "e7bace7c1e04d44012e37ddffe36e5d5" 

                                            
                                                
cache-control: public,max-age=3600 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  PEM certificate\012- , ASCII text

                                                Size:   5348

                                                Md5:    e7bace7c1e04d44012e37ddffe36e5d5

                                                Sha1:   3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2

                                                Sha256: 6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             35.241.9.150

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: application/json

                                            

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
access-control-expose-headers: Retry-After, ETag, Pragma, Content-Type, Content-Length, Cache-Control, Expires, Backoff, Alert, Last-Modified 

                                            
                                                
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                            
                                                
strict-transport-security: max-age=31536000 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
content-length: 329 

                                            
                                                
via: 1.1 google 

                                            
                                                
date: Mon, 20 Mar 2023 05:14:32 GMT 

                                            
                                                
age: 2729 

                                            
                                                
last-modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                            
                                                
etag: "1648230346554" 

                                            
                                                
cache-control: max-age=3600,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "C22EB0537CD79666B82FE61DD77FE9B0B3C059A4C65D405412ACFC2C6800B444" 

                                            
                                                
Last-Modified: Sun, 19 Mar 2023 17:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=5039 

                                            
                                                
Expires: Mon, 20 Mar 2023 07:24:00 GMT 

                                            
                                                
Date: Mon, 20 Mar 2023 06:00:01 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    4c195a3fc0c2abb831630cef1dcfa770

                                                Sha1:   eda338de3063640556177b9db364c33193d7f6dc

                                                Sha256: c22eb0537cd79666b82fe61dd77fe9b0b3c059a4c65d405412acfc2c6800b444

                                        
                                            GET / HTTP/1.1 

                                        
                                            
Host: push.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Sec-WebSocket-Version: 13 

                                        
                                            
Origin: wss://push.services.mozilla.com/ 

                                        
                                            
Sec-WebSocket-Protocol: push-notification 

                                        
                                            
Sec-WebSocket-Extensions: permessage-deflate 

                                        
                                            
Sec-WebSocket-Key: ckG/6j6JqjRqFThRFqc0wA== 

                                        
                                            
Connection: keep-alive, Upgrade 

                                        
                                            
Sec-Fetch-Dest: websocket 

                                        
                                            
Sec-Fetch-Mode: websocket 

                                        
                                            
Sec-Fetch-Site: cross-site 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache 

                                        
                                            
Upgrade: websocket

                                        
                                             52.43.61.251

                                            
                                                HTTP/1.1 101 Switching Protocols

                                            

                                            
                                                
Connection: Upgrade 

                                            
                                                
Upgrade: websocket 

                                            
                                                
Sec-WebSocket-Accept: /liBU08ZQwqdKlNkl2IqZjNz5D8= 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  

                                                Size:   0

                                                Md5:    d41d8cd98f00b204e9800998ecf8427e

                                                Sha1:   da39a3ee5e6b4b0d3255bfef95601890afd80709

                                                Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" 

                                            
                                                
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4933 

                                            
                                                
Expires: Mon, 20 Mar 2023 07:22:15 GMT 

                                            
                                                
Date: Mon, 20 Mar 2023 06:00:02 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    de95776582936b8e129e876cf6d80fa8

                                                Sha1:   0233251e1cf0123f1260d980d7c8ef92718723f9

                                                Sha256: 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                        
                                             23.36.76.226

                                            
                                                HTTP/1.1 200 OK 

                                            
                                                
Content-Type: application/ocsp-response

                                            

                                            
                                                
Server: nginx 

                                            
                                                
Content-Length: 503 

                                            
                                                
ETag: "49C07DA2AB4EBD66BD166BF0E20DD084B38973CD40C79F85EB283D15A1CCAC36" 

                                            
                                                
Last-Modified: Sun, 19 Mar 2023 03:00:00 UTC 

                                            
                                                
Cache-Control: public, no-transform, must-revalidate, max-age=4933 

                                            
                                                
Expires: Mon, 20 Mar 2023 07:22:15 GMT 

                                            
                                                
Date: Mon, 20 Mar 2023 06:00:02 GMT 

                                            
                                                
Connection: keep-alive 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  data

                                                Size:   503

                                                Md5:    de95776582936b8e129e876cf6d80fa8

                                                Sha1:   0233251e1cf0123f1260d980d7c8ef92718723f9

                                                Sha256: 49c07da2ab4ebd66bd166bf0e20dd084b38973cd40c79f85eb283d15a1ccac36

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F293aad0e-d254-4102-8ca1-1d087ced63b8.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 11652 

                                            
                                                
x-amzn-requestid: 50ac8f17-1571-4e7f-8f19-90d83ef4b096 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CDDVCHdxIAMFvhA= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-64177f53-78a08fd11712c6416979a6c7;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:03 GMT 

                                            
                                                
x-amz-cf-pop: HIO50-C1, SEA19-C3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: ygWegirCFrGYvi16JqG3KRhpHzWQqngZNQJWXIjP6LTnn3ZHSCC07w== 

                                            
                                                
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 29a825d8a219984d47bec4350779b558.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Sun, 19 Mar 2023 22:15:20 GMT 

                                            
                                                
age: 27882 

                                            
                                                
etag: "216bae08ee1ad9cfb689f3b57648b03f01dedc72" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   11652

                                                Md5:    7ea524ec1c4872538976b2c938664631

                                                Sha1:   216bae08ee1ad9cfb689f3b57648b03f01dedc72

                                                Sha256: 98c0a5e7ef665235295ff6957f02e76ed53fd988a41b036a6f7c3aa95ebe0010

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8afa2cdb-a5f3-4c78-a2ab-132c8b752b4b.png HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 10338 

                                            
                                                
x-amzn-requestid: 9f880b5b-056c-44bb-a811-36ea27c232aa 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: BvSgFGENoAMFuVw= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-640f9799-2318d444248f7610300c658f;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Mon, 13 Mar 2023 21:37:29 GMT 

                                            
                                                
x-amz-cf-pop: SEA19-C3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: K19FG80YIBs-7NnPFJQEodETe4DpifB_BA2FpyYtB0W-sXXjNlLKxw== 

                                            
                                                
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Sun, 19 Mar 2023 07:04:47 GMT 

                                            
                                                
age: 82515 

                                            
                                                
etag: "80519bb3726ee1f9f211344cd433cefaed3a7f2e" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   10338

                                                Md5:    78453ba98b72eff3879ef163b59c86ed

                                                Sha1:   80519bb3726ee1f9f211344cd433cefaed3a7f2e

                                                Sha256: 61adfeff11af9583355ac7d1500e8a8d97357b2846f151f2421001994fb06655

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1c8c491-aa6d-4268-a72a-1f4233962425.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                        
                                             34.120.237.76

                                            
                                                HTTP/2 200 OK 

                                            
                                                
content-type: image/jpeg

                                            

                                            
                                                
server: nginx 

                                            
                                                
content-length: 7249 

                                            
                                                
x-amzn-requestid: dfaf4924-b8c3-4b6b-a079-7c3903fdf4fb 

                                            
                                                
x-xss-protection: 1; mode=block 

                                            
                                                
access-control-allow-origin: * 

                                            
                                                
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                            
                                                
x-frame-options: DENY 

                                            
                                                
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                            
                                                
x-amz-apigw-id: CDDVjGJyIAMFS9w= 

                                            
                                                
x-content-type-options: nosniff 

                                            
                                                
x-amzn-trace-id: Root=1-64177f56-6379351b215dc2d9638de9ea;Sampled=0 

                                            
                                                
x-amzn-remapped-date: Sun, 19 Mar 2023 21:32:06 GMT 

                                            
                                                
x-amz-cf-pop: HIO50-C1, SEA19-C3 

                                            
                                                
x-cache: Hit from cloudfront 

                                            
                                                
x-amz-cf-id: XYA6F9VzUqxozJS4OsX-TKy81mOHUB7N6L7rkCaQJmXe5n-a_Zce-Q== 

                                            
                                                
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 50faaaa196a6b0875217ef7827f97d7c.cloudfront.net (CloudFront), 1.1 google 

                                            
                                                
date: Sun, 19 Mar 2023 22:15:51 GMT 

                                            
                                                
age: 27851 

                                            
                                                
etag: "338ee74f53fac2b19a90981bc4b02a3c3722a1fa" 

                                            
                                                
cache-control: max-age=3600,public,public 

                                            
                                                
alt-svc: clear 

                                            
                                                
X-Firefox-Spdy: h2 

                                            
                                                
 

                                            
                                            
                                                

                                                --- Additional Info ---

                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   7249

                                                Md5:    4e5aa79770d71507827e79149031b5cf

                                                Sha1:   338ee74f53fac2b19a90981bc4b02a3c3722a1fa

                                                Sha256: 81df6f2312df6e488ae91c172ecf872d694497ffe80500f71eb97e6c06ff5f5f

URL	att-108363-107407.square.site/
IP	199.34.228.40 (United States)
ASN	#27647 WEEBLY
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Access	public
Report completed	2023-03-20 06:00:11 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	3
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (8)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.40

Last 5 reports on ASN: WEEBLY

Last 5 reports on domain: square.site

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (22)

Overview

Domain Summary (8)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 199.34.228.40

Last 5 reports on ASN: WEEBLY

Last 5 reports on domain: square.site

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (0)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (22)

Network Intrusion Detection Systems