gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
92.43.203.171200 OK 36 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 (with BOM) text, with very long lines (4062), with CRLF, LF line terminators
Hash f785ce80b6bcc906b10c81baf0a5fe95
80f03305ba31c4cd7e820b82bff5deeea36cfd67
cc25844ce909e15f6a8dc81bc7be759e933c02af01c60b69c3a4e0b9815bb2db
Analyzer Verdict Alert fortinet Phishing
GET /site.php?sd=gepkonyvek HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
X-Powered-By: PHP/5.3.29
Upgrade: h2
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=2, max=100
Transfer-Encoding: chunked
Content-Type: text/html
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 96defe1601ba891731eee83f0830649d
ba500679fd337488c3f60543561740ff0dfc1898
d2a320a9feb1a874af3da921db2a8619513968724ef8eb0715c010291c4cf8d9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D2A320A9FEB1A874AF3DA921DB2A8619513968724EF8EB0715C010291C4CF8D9"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2393
Expires: Mon, 26 Dec 2022 10:04:14 GMT
Date: Mon, 26 Dec 2022 09:24:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 67f508aae634a023b587a7129a5b8039
2ff7e1d29b497147941d0abf581411cbd2722d7b
eee5fda5214bd4f75b0934bb1f14429fe01251628026fd0f18f117b38848601c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EEE5FDA5214BD4F75B0934BB1F14429FE01251628026FD0F18F117B38848601C"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10858
Expires: Mon, 26 Dec 2022 12:25:19 GMT
Date: Mon, 26 Dec 2022 09:24:21 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Alert, Content-Type, Content-Length, Retry-After, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 26 Dec 2022 08:35:01 GMT
content-type: application/json
age: 2960
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 6b1d63d9d906daa309dc263b4991bbe9
04680ddd86781d46dfe6a9671571b3ad1f3758f3
46fff7230b88de4cd81dfb0feb783d2dec27e49041f9257d2fb891030781bf6c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "46FFF7230B88DE4CD81DFB0FEB783D2DEC27E49041F9257D2FB891030781BF6C"
Last-Modified: Fri, 23 Dec 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4782
Expires: Mon, 26 Dec 2022 10:44:03 GMT
Date: Mon, 26 Dec 2022 09:24:21 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tNSQFeAB7vF/xxcHu8EGsDwh5hVK/SayR+q84FK8oZApuSME/4zCQS2Sv5yj1GLqBdOn+Je2TNI=
x-amz-request-id: VYHSA75THEGK4TT1
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 26 Dec 2022 08:55:16 GMT
age: 1745
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js
104.17.25.14200 OK 6.5 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (19802), with no line terminators
Hash 1a99b2516a6b84ca44ea4c1dff2c2f5e
77545add76845eb74bc6c47a8da4ff7e166be5a9
b7da44d47f56d39a2b2c41fd6fe32729d40dbe0f8aa9ba827d57f6c64c095f0d
GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Content-Type: application/javascript; charset=utf-8
Content-Length: 6523
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03e2d-4d5a"
Last-Modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 30034356
Expires: Sat, 16 Dec 2023 09:24:21 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=j%2Btn7y%2F7mCBBFvGUHc0zvzEvsUI1rVCt9Xaj2mRnbVDPSZdWxsnwjoSuTXC7GyFZ%2F4StapVOILsZQVv3vLT5b03yucHXPIc9gbcNEZLpudySmBjayoWISokQXt8%2BpZwttZC8ZVph"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77f8c3527b0b1c0e-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css
104.17.25.14200 OK 1.2 kB URL HTTP/1.1 cdnjs.cloudflare.com/ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (1323)
Hash 21ba5bce264f9f600628a6a50ab41872
4ea062de5994940e1cefd22f72f36b5acdfdf3a1
28e9dd0963abe06790b2570f8d0f08697e0cd1559af601c8e55077be01a3d9d2
GET /ajax/libs/cookieconsent2/3.0.3/cookieconsent.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Content-Type: text/css; charset=utf-8
Content-Length: 1180
Connection: keep-alive
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=30672000
Content-Encoding: gzip
ETag: "5eb03e2d-f62"
Last-Modified: Mon, 04 May 2020 16:09:17 GMT
cf-cdnjs-via: cfworker/kv
Cross-Origin-Resource-Policy: cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
CF-Cache-Status: HIT
Age: 7667187
Expires: Sat, 16 Dec 2023 09:24:21 GMT
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sSb2%2BBWpOhirBvRz0jQcZyP9qEaGTcug17eRuTmlMQ%2BSj1%2BP2uIYbu3LSfBmRDz84DPAAFLDJswt0RHdtH2Oy4Tu2r1n1xaxvVrT1T0XLo1AupQS%2FmcU5uOVNuSOLAHWFYl3zbJ9"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 77f8c3526c0cb51d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Dec 2022 09:24:21 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gepkonyvek.oldalunk.hu/js/prototype.js
92.43.203.171200 OK 48 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/js/prototype.js
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
Hash ec266084ece29ede795db38c9c8cbf3d
8544be1041cb59f5baca815d83d729fe1810b2cb
2b2ce9d7522e5f9dbd46e5cf2da01c04abb232c10290fd2fa2b44dd77a7d9543
Analyzer Verdict Alert fortinet Phishing
GET /js/prototype.js HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Mon, 24 Oct 2011 12:43:14 GMT
ETag: "b9f3-4b00ac4289c80"
Accept-Ranges: bytes
Content-Length: 47603
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
gepkonyvek.oldalunk.hu/Sablon1/css/dgrey.css
92.43.203.171200 OK 4.3 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/Sablon1/css/dgrey.css
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
Hash 6303afd41fb4586a08e90f4a975d7262
cad74f514cbce27ae2ef1332dea40264645e24c9
70d55d88b0f5d5e1789f3e3492927b836dfa8febe59b1251c4c8e740d9d2fe2c
GET /Sablon1/css/dgrey.css HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 11 Mar 2013 21:18:29 GMT
ETag: "10be-4d7acb6db1340"
Accept-Ranges: bytes
Content-Length: 4286
Keep-Alive: timeout=2, max=100
Content-Type: text/css
gepkonyvek.oldalunk.hu/js/scriptaculous.js?load=effects
92.43.203.171200 OK 2.2 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/js/scriptaculous.js?load=effects
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type HTML document, ASCII text
Hash 696bd054b0069b60748474abb87b28b7
914db330c7fe585dfeddce713558f04328fb51db
1fb311cb22a5d814d9c767f248200de4377fccd5ff0645c54746f1f3f5b92658
Analyzer Verdict Alert fortinet Phishing
GET /js/scriptaculous.js?load=effects HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 24 Oct 2011 12:43:14 GMT
ETag: "868-4b00ac4289c80"
Accept-Ranges: bytes
Content-Length: 2152
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
gepkonyvek.oldalunk.hu/css/lightbox.css
92.43.203.171200 OK 2.2 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/css/lightbox.css
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
Hash 99e632c544027e55396fe2fe9b64c2e6
bdad1a7528c2d523af24f1db057fddce87092e37
89ef5491019b6d93b19461e87a15a73727671225132997ccb32a3830c4b8d48b
GET /css/lightbox.css HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2011 19:19:14 GMT
ETag: "8af-4b0d976c73080"
Accept-Ranges: bytes
Content-Length: 2223
Keep-Alive: timeout=2, max=100
Content-Type: text/css
gepkonyvek.oldalunk.hu/js/lightbox.js
92.43.203.171200 OK 23 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/js/lightbox.js
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type ASCII text, with CRLF, LF line terminators
Hash de3ea4b5911e8d60f953a99d05c97079
fb79d35b4da03cb03b6ac1c293dd459003b4a221
4896cea67e2c5cd7bf37c3c9a555950f3592a6eaa058da76a02ac561ab85be0d
Analyzer Verdict Alert fortinet Phishing
GET /js/lightbox.js HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 03 Nov 2011 19:08:28 GMT
ETag: "58c7-4b0d950460300"
Accept-Ranges: bytes
Content-Length: 22727
Keep-Alive: timeout=2, max=100
Content-Type: application/javascript
oldalunk.hu/images/oldalunk.gif
92.43.203.171200 OK 4.8 kB URL HTTP/1.1 oldalunk.hu/images/oldalunk.gif
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type GIF image data, version 89a, 125 x 173\012- data
Hash 5c0baf639913519487e5b2289155d661
8fcbc1fb26bdc6f3f1ce4848f5b306508c6b3d7a
090e3664911d606998e5052e4042480f1c989bcd2ce2930ccea2c2d6568dc49f
GET /images/oldalunk.gif HTTP/1.1
Host: oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Fri, 10 May 2013 12:38:03 GMT
ETag: "128e-4dc5c701ea0c0"
Accept-Ranges: bytes
Content-Length: 4750
Keep-Alive: timeout=2, max=100
Content-Type: image/gif
gepkonyvek.oldalunk.hu/js/effects.js
92.43.203.171200 OK 32 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/js/effects.js
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
Hash 82e25a810f86d3b8ca0ca42ef56a8956
21ce51daa693e3716678ac4190369b499b35e8de
7bef7d80de9be54adcd132d9b10cd3efc98ab8740fdc23f0e0215160bcf4aa72
Analyzer Verdict Alert fortinet Phishing
GET /js/effects.js HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Mon, 24 Oct 2011 12:43:13 GMT
ETag: "7ce1-4b00ac4195a40"
Accept-Ranges: bytes
Content-Length: 31969
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: application/javascript
www.oldalunk.hu/1000ebook_banner.jpg
92.43.203.171200 OK 33 kB URL HTTP/1.1 www.oldalunk.hu/1000ebook_banner.jpg
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 120x600, components 3\012- data
Hash 5bed0dd4ef13afda872a85b9f46d880f
e3dc0a1ff1ef4d1c9733e860ba5e03906f469a8a
44b7ee59ec09c077a9e691ca461ce36b8ca770be2764a5de105f3e3c2494fe84
GET /1000ebook_banner.jpg HTTP/1.1
Host: www.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Upgrade: h2
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 13 Feb 2018 20:19:48 GMT
ETag: "813d-5651db75db4d2"
Accept-Ranges: bytes
Content-Length: 33085
Keep-Alive: timeout=2, max=100
Content-Type: image/jpeg
gepkonyvek.oldalunk.hu/Sablon1/images/bg_green.png
92.43.203.171200 OK 7.7 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/Sablon1/images/bg_green.png
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type PNG image data, 100 x 100, 8-bit colormap, non-interlaced\012- data
Hash 17d82f4efc6f1e741d6a654771f04094
74872d33d79a20417683ac4fc3622c1d8695fcc9
c7b0c9829f569ce24dc05934bd7431e14df09d888fc17b2c411972aa1ec24a3d
GET /Sablon1/images/bg_green.png HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/Sablon1/css/dgrey.css
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Mon, 11 Mar 2013 20:53:51 GMT
ETag: "1e15-4d7ac5ec295c0"
Accept-Ranges: bytes
Content-Length: 7701
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/png
gepkonyvek.oldalunk.hu/custom_headers/v1/gepkonyvek.jpg
92.43.203.171200 OK 10 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/custom_headers/v1/gepkonyvek.jpg
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=11, height=0, manufacturer=SAMSUNG, model=SM-G800F, orientation=upper-left, software=G800FXXU1ANL1, datetime=2016:03:12 12:58:52, width=0], baseline, precision 8, 980x160, components 3\012- data
Hash ba5533617f1510f4abcf25815b9da050
c65c31a59bd0cfd189b492617fa579a54d894416
c6482e898bd74a86d77671cfb6742e63d31ce9e486507ca00da2996bf8789b16
GET /custom_headers/v1/gepkonyvek.jpg HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Mon, 03 Feb 2020 15:10:18 GMT
ETag: "28fa-59dad52407924"
Accept-Ranges: bytes
Content-Length: 10490
Keep-Alive: timeout=2, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/1.1 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1325)
Hash 47e6f374ca946fddd5b59871b325736c
baa9282efc8785e84d247c3bff518eaa45f101c4
16580b5c87c58e5702e411f1888fdef511094e4cd6d62bb47d16291ffb25985e
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/
HTTP/1.1 200 OK
Strict-Transport-Security: max-age=10886400; includeSubDomains; preload
X-Content-Type-Options: nosniff
Vary: Accept-Encoding
Content-Encoding: gzip
Cross-Origin-Resource-Policy: cross-origin
Server: Golfe2
Content-Length: 20039
Date: Mon, 26 Dec 2022 08:14:23 GMT
Expires: Mon, 26 Dec 2022 10:14:23 GMT
Cache-Control: public, max-age=7200
Age: 4198
Last-Modified: Tue, 27 Sep 2022 22:01:05 GMT
Content-Type: text/javascript
gepkonyvek.oldalunk.hu/favicon.ico
92.43.203.171404 Not Found 327 B URL HTTP/1.1 gepkonyvek.oldalunk.hu/favicon.ico
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 54b5a6f4fc72fce1814d6f941625ef6e
ca1ba577c1aad5c65a1df7f3f66e6f754a46d332
033537c5a2971baf70c34cd34bbb9db55756945cf66084e7b46a782c50ded008
GET /favicon.ico HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
HTTP/1.1 404 Not Found
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Tue, 12 Feb 2013 16:17:32 GMT
ETag: "147-4d5895cdbff00"
Accept-Ranges: bytes
Content-Length: 327
Keep-Alive: timeout=2, max=97
Connection: Keep-Alive
Content-Type: text/html
gepkonyvek.oldalunk.hu/images/loading.gif
92.43.203.171200 OK 2.8 kB URL HTTP/1.1 gepkonyvek.oldalunk.hu/images/loading.gif
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type GIF image data, version 89a, 32 x 32\012- data
Hash 7e99e1159a3686f6aa4f90043c554483
bd54db91b81fa8a9ec37c93b10948dd8b690e4c4
81ea81be1d862d36c34b6dc4f12aefb87b656e319003263d8274974b48ccf869
GET /images/loading.gif HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
Cookie: _ga=GA1.2.174275344.1672046659; _gid=GA1.2.1743169954.1672046659; _gat=1
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Mon, 24 Oct 2011 14:30:52 GMT
ETag: "acf-4b00c4515df00"
Accept-Ranges: bytes
Content-Length: 2767
Keep-Alive: timeout=2, max=96
Connection: Keep-Alive
Content-Type: image/gif
gepkonyvek.oldalunk.hu/images/closelabel.gif
92.43.203.171200 OK 657 B URL HTTP/1.1 gepkonyvek.oldalunk.hu/images/closelabel.gif
IP 92.43.203.171:0
ASN #44460 MEDIACENTER HUNGARY INFORMATIKAI SZOLGALTATO ES UZEMELTETO kft
File type GIF image data, version 89a, 66 x 22\012- data
Hash 7f075fa3741cc4017e45032f1d16d09e
e7fee50d8632d2b72f8271d6afeef747edd027d3
92c19f6a1e7d5d39dab3b136ec5cdd8159d0f2e05e7ff2ac2c79d961832d4c2c
GET /images/closelabel.gif HTTP/1.1
Host: gepkonyvek.oldalunk.hu
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/site.php?sd=gepkonyvek
Cookie: _ga=GA1.2.174275344.1672046659; _gid=GA1.2.1743169954.1672046659; _gat=1
HTTP/1.1 200 OK
Date: Mon, 26 Dec 2022 09:24:21 GMT
Server: Apache
Last-Modified: Mon, 24 Oct 2011 14:30:52 GMT
ETag: "291-4b00c4515df00"
Accept-Ranges: bytes
Content-Length: 657
Keep-Alive: timeout=2, max=98
Connection: Keep-Alive
Content-Type: image/gif
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 09e8af46742d0b5be1adedadb11e66af
4813ca0140478abb24c6fa012b4184cb2f3253c9
31d3905131f21b4a8fd8a4764b8dd57b2e994153f511b65a15ce7ecc386040c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 09:24:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Last-Modified, Retry-After, Content-Type, Alert, Pragma, ETag, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 26 Dec 2022 09:08:06 GMT
age: 976
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j98&a=85276402&t=pageview&_s=1&dl=http%3A%2F%2Fgepkonyvek.oldalunk.hu%2Fsite.php%3Fsd%3Dgepkonyvek&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=917064614&gjid=1774023460&cid=174275344.1672046659&tid=UA-40873147-1&_gid=1743169954.1672046659&_r=1&_slc=1&z=1264609358
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j98&a=85276402&t=pageview&_s=1&dl=http%3A%2F%2Fgepkonyvek.oldalunk.hu%2Fsite.php%3Fsd%3Dgepkonyvek&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=917064614&gjid=1774023460&cid=174275344.1672046659&tid=UA-40873147-1&_gid=1743169954.1672046659&_r=1&_slc=1&z=1264609358
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j98&a=85276402&t=pageview&_s=1&dl=http%3A%2F%2Fgepkonyvek.oldalunk.hu%2Fsite.php%3Fsd%3Dgepkonyvek&ul=en-us&de=UTF-8&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=IEBAAAABAAAAACAAI~&jid=917064614&gjid=1774023460&cid=174275344.1672046659&tid=UA-40873147-1&_gid=1743169954.1672046659&_r=1&_slc=1&z=1264609358 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: http://gepkonyvek.oldalunk.hu
Connection: keep-alive
Referer: http://gepkonyvek.oldalunk.hu/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: http://gepkonyvek.oldalunk.hu
date: Mon, 26 Dec 2022 09:24:22 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 09e8af46742d0b5be1adedadb11e66af
4813ca0140478abb24c6fa012b4184cb2f3253c9
31d3905131f21b4a8fd8a4764b8dd57b2e994153f511b65a15ce7ecc386040c8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 09:24:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 68ee4e2891b5a52719997e4ef8cb7aab
ae2e49eff010551d7f3dcf005a51530ee2910480
2bae50a834a34f248f6a79cf6f191dcf709c24b884f2d3da7fa43985c6b2d48b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 666
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Dec 2022 09:24:22 GMT
Last-Modified: Mon, 26 Dec 2022 09:13:16 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 30QXRRn/VinKwAi0Tsng2w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: t+3EsWmAf68gHoQl0dpjKeHomkE=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13393
Expires: Mon, 26 Dec 2022 13:07:36 GMT
Date: Mon, 26 Dec 2022 09:24:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13393
Expires: Mon, 26 Dec 2022 13:07:36 GMT
Date: Mon, 26 Dec 2022 09:24:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13393
Expires: Mon, 26 Dec 2022 13:07:36 GMT
Date: Mon, 26 Dec 2022 09:24:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13393
Expires: Mon, 26 Dec 2022 13:07:36 GMT
Date: Mon, 26 Dec 2022 09:24:23 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 796e102a616f07b0de39f5476179ccd5
bf1d8b0944ffa91afc7d31d2ffb3291652f903c3
6881d46edd3d3730884da6719176d7d4bc79aa6d05cda0f4ef97ac10c4591279
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6881D46EDD3D3730884DA6719176D7D4BC79AA6D05CDA0F4EF97AC10C4591279"
Last-Modified: Sun, 25 Dec 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13393
Expires: Mon, 26 Dec 2022 13:07:36 GMT
Date: Mon, 26 Dec 2022 09:24:23 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5272da38-01a8-4043-804a-cb62488152e1.jpeg
34.120.237.76200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5272da38-01a8-4043-804a-cb62488152e1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0eedc9584ce3db2443c98e94536e9dbb
779c88e1e3ef3f8ad5fc2b4dc545cda6298eeb74
ca4bde46fc0a3b1e17704ac46c011405e82ceb7a2780886ce70f0a798bc47f6b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5272da38-01a8-4043-804a-cb62488152e1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8423
x-amzn-requestid: 29317808-72e9-404e-b4d7-2a2ca85c1ab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzHywoAMFcKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-5a2a88970fbc7d1d2f9da797;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: n2tDc6R0yKValING-YZqmchO90g5ATryaSbcxFMeioWSFEVnGDM0CA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:50:07 GMT
age: 41656
etag: "779c88e1e3ef3f8ad5fc2b4dc545cda6298eeb74"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e38d94b0be1b10ecac941b497f57c861
12911cd039f5c7b05013ebbc369aec5613134906
38a41df0d4f4405e8ecf6b379431bdb87eaed40e20481262b43d1fd127c010fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff70fb5bc-19d9-433d-adc5-222fa8c0b134.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9452
x-amzn-requestid: 41b87e86-25f2-4d3b-a4ac-ae9a933a75b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duMupEMdIAMF7Gw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c190-22b2693c043757fb5d58dda7;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:33:04 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: StP3cRZB5uQq5vj2oEZZmxAsLlu-nsnDNjQBdeb_o6Rd3YsP7p2Qlg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:01:52 GMT
etag: "12911cd039f5c7b05013ebbc369aec5613134906"
content-type: image/jpeg
age: 40951
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a47de6-0a5d-4a76-9408-939cdc66c9f6.webp
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a47de6-0a5d-4a76-9408-939cdc66c9f6.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8395ae2f503e2755304d677bfb8a40be
410ecfe45222eea0d3f8bbea320629e8fa7f2838
136e1eb6efc8cc15dc244f5bb736e447a1c4256d049f1124561c0cb7bd7533ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98a47de6-0a5d-4a76-9408-939cdc66c9f6.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6658
x-amzn-requestid: 8c685cbe-95b6-46c5-a897-9fce37d4c5b4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: doXwgFCVIAMF5-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a66ccf-7de15efe3821dfc66cc97c15;Sampled=0
x-amzn-remapped-date: Sat, 24 Dec 2022 03:06:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RFKAWxP3IWejvmQMutHy4x84iBmK_uQZopIqWfEp9LkubUhQ_vQnmQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 04:12:48 GMT
age: 18695
etag: "410ecfe45222eea0d3f8bbea320629e8fa7f2838"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8403a671b2c4b3b2ce2f8a9eba9de2c0
5437391241a500b6b0d2118120e835d2673e7d39
1e52a144b08ff6efe2da52dfdfeccbc4cea9270536cf5e7a2a769bbff9cd7d2f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F15ba8929-c657-48a6-a579-360324426927.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11249
x-amzn-requestid: 6fdd6489-ffea-400f-9199-a20789160ba8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: dlFk6FvuoAMFYcQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a51c85-6805b25c54c3390e5c39c6e1;Sampled=0
x-amzn-remapped-date: Fri, 23 Dec 2022 03:12:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: gfO9Ei1XEd8cvE7CBnK5AUz1wIr890fLc9vwcZje7I23ZEjJkFLUDg==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Dec 2022 03:52:37 GMT
age: 19906
etag: "5437391241a500b6b0d2118120e835d2673e7d39"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7dbee83-176a-4fa9-a42c-2a2c9db4001b.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7dbee83-176a-4fa9-a42c-2a2c9db4001b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b46e077944b0d53e361327e6d690f2ec
c9f17cad706817aa66832633d1307a91c8c7d61e
b00a16c34c95675a08bafb198f7cc4b374e88a9041a6bb8593a61cb08ef3c306
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7dbee83-176a-4fa9-a42c-2a2c9db4001b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10961
x-amzn-requestid: 4013aad4-805c-4abd-a748-9619aad6c134
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNb5Ha0oAMFzfA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2b2-5701d49371016fb7580ba6c8;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Axg_RTSiVQPB7tFIaN91OfTysuh7NTs0FH5w_vI0SsV3Fv_m3X1YyQ==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 22:08:59 GMT
age: 40524
etag: "c9f17cad706817aa66832633d1307a91c8c7d61e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2665a6ae98ace2eab671f9e8a9f0978
d1b0b2b7bf8c8bf2e9765e9103908aba36989727
ae9125caee2dc267c67bf4f31f2669e03f65c47a43f2d0ab83081eb043d23d85
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb995026c-9c36-40df-864d-b3c2b7e5482b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9932
x-amzn-requestid: 280fdeaa-a0e1-4306-9adb-52c0f28b4002
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: duNZzGcjoAMF5wg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63a8c2a4-73e3e4b34b67da2d2dbb8020;Sampled=0
x-amzn-remapped-date: Sun, 25 Dec 2022 21:37:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nR7WiQ1kUfI129AOECPfR181bNjexz6B7BEIYxDRiGNqfKCQPiBKOQ==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Dec 2022 21:58:57 GMT
age: 41126
etag: "d1b0b2b7bf8c8bf2e9765e9103908aba36989727"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2