Report - social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false

Report Overview

Submitted URL
social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false
IP
172.67.128.246
ASN
#13335 CLOUDFLARENET
Submitted
2023-03-12 00:33:44
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
1
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
social-discovery.io	338873	2019-12-20T01:04:25Z	2023-03-25T00:34:55Z	1.2 kB	1.5 kB	104.21.1.92
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-24T18:14:23Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-24T18:20:20Z	413 B	5.9 kB	34.160.144.191
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-24T19:07:55Z	809 B	72 kB	104.17.24.14
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-25T05:09:34Z	1.4 kB	4.2 kB	142.250.74.131
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-25T00:27:50Z	402 B	46 kB	142.250.74.74
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-24T16:33:49Z	3.2 kB	48 kB	34.120.237.76
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-25T05:09:02Z	2.4 kB	6.2 kB	23.36.77.32
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-25T05:09:25Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-24T18:17:07Z	606 B	127 B	54.148.153.116
t.formatinfo.top	862564	2018-10-27T13:43:35Z	2023-03-22T17:17:04Z	839 B	1.4 kB	104.21.73.224

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-03-12 00:33:38	medium	Client IP	Internal IP	ET DNS Query to a *.top domain - Likely Hostile

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	social-discovery.io/js/subscription.js	5.1 kB	2023-03-07	2024-02-26
Pretty URL social-discovery.io/js/subscription.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:14:40 Last Seen2024-02-26 16:21:02 Times Seen118 Hash e6c4a0eebc5af6841231f5ff2aba5141 c09aa3c08c314c3eb1cccfc5a324b497bbd1b6c0 f733a90d8b63bb60b858c52f9b8d167ad739db75e27998693c8530d299f10d9b Loading...

	unknown	0 B	2023-03-07	2024-05-10
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-10 20:46:01 Times Seen37522737 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false	115 B	2023-03-08	2024-02-01
Pretty URL social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false IP 104.21.1.92 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:55:04 Last Seen2024-02-01 18:47:22 Times Seen7 Hash 5ce9149a7075955070e8d7f65db6c86f 0bfab5b63ad83a0491e7d6050f61a6e6e30aef8e 9b4d164731cb975de37326f57e20cafe9138d985b6f9442334e350490c210c5c Loading...

	social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false	786 B	2023-03-11	2024-02-01
Pretty URL social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false IP 104.21.1.92 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:29:21 Last Seen2024-02-01 18:47:23 Times Seen4 Hash 9b08d95098963666683ad0bd06df4ded 55b948769c6f40311e9564870a9909ae90e03af5 66b98684c6d3dde0a4bd9d3c9a9483d81525c62f25e222a35958631e90736cb5 Loading...

	social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false	4.0 kB	2023-03-11	2024-02-14
Pretty URL social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false IP 104.21.1.92 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:29:21 Last Seen2024-02-14 13:40:16 Times Seen12 Hash 12625c06083cae8ebc5ff08e777ff05a b34da6b1b7f27a67ff14b63af1844188d7ba7fdb c3a21e4b1bb6abf95cec04f12493ba8756b6bda263f135b736330ce66894010d Loading...

HTTP Transactions (29)

	URL	IP	Response	Size
	social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false	104.21.1.92	301 Moved Permanently	0 B
URL HTTP/1.1 social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false IP 104.21.1.92:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false HTTP/1.1 Host: social-discovery.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1 HTTP/1.1 301 Moved Permanently Date: Sun, 12 Mar 2023 00:33:32 GMT Transfer-Encoding: chunked Connection: keep-alive Cache-Control: max-age=3600 Expires: Sun, 12 Mar 2023 01:33:32 GMT Location: https://social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7bVmxM%2BJl69Jvh72PqcSLjz1u3kW6CISz0qv2VApqowhwZCwhEhRE608tfOc592s2iwgal%2FwyXKNwEWIqk8mD1nFOAJ2DtyefqaS7wq9%2Bm3k28ynmk8dzI6kiAAr%2BQbejTXsy7O7"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 7a67f2430d6a0b41-OSL alt-svc: h2=":443"; ma=60

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 88c2e33504e05b0bc2b7a3502d6a79bb 23881a1edb8d8ff3dc2192d25792a59fa2c96088 dfbfefeab7d314e54f5e5f2e48ba645817da6dee3ee2bc5abdbaac81b8dc66e7 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "DFBFEFEAB7D314E54F5E5F2E48BA645817DA6DEE3EE2BC5ABDBAAC81B8DC66E7" Last-Modified: Thu, 09 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=20323 Expires: Sun, 12 Mar 2023 06:12:15 GMT Date: Sun, 12 Mar 2023 00:33:32 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9ce33c47154f4826255fe9bbe54d72be e10a363c007a6d15ed43eb35b4e5c246d85c5eed cf423db1a8ad1dce1b5c25f6025d14411b4a46e95a6001288949f046e244bc24 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CF423DB1A8AD1DCE1B5C25F6025D14411B4A46E95A6001288949F046E244BC24" Last-Modified: Fri, 10 Mar 2023 02:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=8413 Expires: Sun, 12 Mar 2023 02:53:45 GMT Date: Sun, 12 Mar 2023 00:33:32 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 7f03faaba3392caae6dae54467bfdf6d 57ea1f14e8bfbcca8190c706d708c9fda12442c1 02ac551ba61fcbc6b04f244df065948b181a8a258db5c2e197aae66fdfcea8ee HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Alert, Backoff, Retry-After, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Sun, 12 Mar 2023 00:09:10 GMT content-type: application/json age: 1462 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 1a564ae484daef6a82bb08116ad794eb f75350abf28a42c16324901035889a1f3af700a1 225214187df3f50835a8aafcc4555fe47cf0b78938b71d34fb422942292b153b HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "225214187DF3F50835A8AAFCC4555FE47CF0B78938B71D34FB422942292B153B" Last-Modified: Fri, 10 Mar 2023 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5561 Expires: Sun, 12 Mar 2023 02:06:13 GMT Date: Sun, 12 Mar 2023 00:33:32 GMT Connection: keep-alive`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash b5ba6334e73496995e3e3a9ecd0eb323 ad80d3b7718c28364e8c2004fb38a13a1747e462 aa5abb52515c6383c014aadb63a86c9f798ad64de53c0218616c1fc6d424d2e2 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-04-09-20-28-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK x-amz-id-2: bVRPgOkgoKyVLWvX7tNdAm0/3Go2CFzUP2OSHGhLlmFgLxetyi8/jxr4Ts91Xei2gyp2cZZG+I6t8nVb6FVSSQ== x-amz-request-id: Y033EN65NQEMQQE4 x-amz-server-side-encryption: AES256 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Sat, 11 Mar 2023 23:45:44 GMT age: 2868 last-modified: Sat, 18 Feb 2023 20:28:27 GMT etag: "b5ba6334e73496995e3e3a9ecd0eb323" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Sun, 12 Mar 2023 00:33:33 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers access-control-expose-headers: content-type strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	cdnjs.cloudflare.com/ajax/libs/animate.css/3.7.2/animate.min.css	104.17.24.14	200 OK	3.5 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/animate.css/3.7.2/animate.min.css IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (57919) Size 3.5 kB (3511 bytes) Hash 4a8baa45fecbff51b8b9863b95788c9f 1dbc7f159b53fbd717d8cff486a39373d09aecfc 3a9ca2c9d6a36ce0283f1bc2502912ffb17c2acf9421d3b0ffd81a6be92b63af HTTP Headers `GET /ajax/libs/animate.css/3.7.2/animate.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://social-discovery.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 12 Mar 2023 00:33:33 GMT content-type: text/css; charset=utf-8 content-length: 3511 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03d2a-e311" last-modified: Mon, 04 May 2020 16:04:58 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 6929208 expires: Fri, 01 Mar 2024 00:33:33 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CSieAOqxbN%2B4c4kB3c%2F%2BS6S6zMPfIeA5sn7PuH2TQrEUan%2Bu4w4fPONCcyjMfD4iLCCQnajKsVsj3fAJDfuid8YWOJlPxu%2Fm1KxQQuFubz14SHwGHMvZmiw%2B4qB5tKt9zbGSJC9a"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7a67f2466d3e0b69-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.js	104.17.24.14	200 OK	66 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.2.1/jquery.js IP 104.17.24.14:0 ASN #13335 CLOUDFLARENET File type ASCII text Size 66 kB (66006 bytes) Hash 11142fc035b546c9576b0df5520455ea 6828e8fe47c5bb4f557f2d7a2be289ec8cebfa3e bf7eaf32f750d4fe40891a82d1c041d0052ad8317ce263b6ab1b6a79c609d98d HTTP Headers `GET /ajax/libs/jquery/3.2.1/jquery.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://social-discovery.io/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 12 Mar 2023 00:33:33 GMT content-type: application/javascript; charset=utf-8 content-length: 66006 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-41707" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 189429 expires: Fri, 01 Mar 2024 00:33:33 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2BY9C2w0GGDe4dnMvdw2rNKmMYXdKU3snZYvOlf%2BaWEkUQ1EItzkI37u4hjPuOE2uXdMj8znfe2bAWwaNuk%2F49uLoGl7ijhwtWkGzuQpmmE4CsUV21jInbfHO7hQpZvfpoLG2QN4"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 7a67f2467d440b69-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	1.9 kB
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 1.9 kB (1904 bytes) Hash 899c1c1dc79a4722c4ba79472f58dad6 1e75d3e591d1385656d6b2ad90c6eb3ae6f3ffb6 2de11b5f376c89934613e80bb9deedecae2c5c21e2919f156f12ff13065f0918 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 00:33:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 3c5612c5131d59819b60bcd3123fbe1e 86f82bfa3a20987ac256d2efd06dc95c0df285e8 00fc14cc05fb85329d10ee97f1c959244f274c67d56a37f4eb8006acd0e867bf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 00:33:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c11248ad196c57fdf878000b4591a416 f86236c890bcceaf313e5021bf8ef6669688ea77 550e8187d0a76ef1d3127e200c20ab609ee72a44bc05c040bf178f4c8ec5eebc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 00:33:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.googleapis.com/css?family=Open+Sans:400,700	142.250.74.74	200 OK	46 kB
URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,700 IP 142.250.74.74:0 ASN #15169 GOOGLE File type data Size 46 kB (45495 bytes) Hash 20447aa3fadc7b304b012367f697dce7 0c90812229b178eb08a0c26866b943ec05b63d82 b22f02336cdffa464ca873c9558211d9d6f2d875a4c75adfa6aa9287c91181d2 HTTP Headers `GET /css?family=Open+Sans:400,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://social-discovery.io/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Sun, 12 Mar 2023 00:33:33 GMT date: Sun, 12 Mar 2023 00:33:33 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.131	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.131:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c11248ad196c57fdf878000b4591a416 f86236c890bcceaf313e5021bf8ef6669688ea77 550e8187d0a76ef1d3127e200c20ab609ee72a44bc05c040bf178f4c8ec5eebc HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Sun, 12 Mar 2023 00:33:33 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Retry-After, ETag, Backoff, Expires, Alert, Pragma, Cache-Control, Content-Length, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Sun, 12 Mar 2023 00:06:46 GMT age: 1607 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d960a8d21b339ab0d7987e3b1eb16fdc 08d4430c549151295ee4e1dc8f24dbd3d9456b0b 522b75aa714f87a716a9a693a7c3ed1cab6e5b1725f20a67df46dec2967b5960 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "522B75AA714F87A716A9A693A7C3ED1CAB6E5B1725F20A67DF46DEC2967B5960" Last-Modified: Thu, 09 Mar 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10368 Expires: Sun, 12 Mar 2023 03:26:21 GMT Date: Sun, 12 Mar 2023 00:33:33 GMT Connection: keep-alive`

	push.services.mozilla.com/	54.148.153.116	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 54.148.153.116:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: KFT4vz0uc5WTOvcaSiaeIQ== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: n1pXsgEOxq5a/FNsrJmjZFLIQkk=`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17646 Expires: Sun, 12 Mar 2023 05:27:41 GMT Date: Sun, 12 Mar 2023 00:33:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17646 Expires: Sun, 12 Mar 2023 05:27:41 GMT Date: Sun, 12 Mar 2023 00:33:35 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 2573307db8caef0a070ba3ebd4f61e2e 28e8cb63280e9b5e4184017cb22aa5f197007450 87e4699d8ded9c722f137c21826dfe419beb8675f226b91081342c90838cb818 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "87E4699D8DED9C722F137C21826DFE419BEB8675F226B91081342C90838CB818" Last-Modified: Sat, 11 Mar 2023 15:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17646 Expires: Sun, 12 Mar 2023 05:27:41 GMT Date: Sun, 12 Mar 2023 00:33:35 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7769d88f-5b32-4bd3-9075-31a91dd2c80f.jpeg	34.120.237.76	200 OK	4.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7769d88f-5b32-4bd3-9075-31a91dd2c80f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.4 kB (4401 bytes) Hash 2aa4702768ef600fa142d8c3c743b98f 76b13f7b79c4aa480f200fccfb560ab53ecd5bb9 4b1b434fe5cf4433f64c8db09c23e5e277376340b02d5d5525240e945c7fc566 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7769d88f-5b32-4bd3-9075-31a91dd2c80f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4401 x-amzn-requestid: 6f371237-3ff4-4203-a494-3681af1f7e6e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BjaoCFtRoAMFp0w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640ad7cc-7d39790a70491a7552a5967d;Sampled=0 x-amzn-remapped-date: Fri, 10 Mar 2023 07:10:04 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: rzjyZqiKedn1yKDeWajDqYiIamYnGPucKMTYvQWHoreGXO4VjGbjpQ== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 b2d3922a177f6cecf9222a78a0a1ad32.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 07:18:49 GMT age: 62086 etag: "76b13f7b79c4aa480f200fccfb560ab53ecd5bb9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg	34.120.237.76	200 OK	5.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.4 kB (5381 bytes) Hash ebf97627ec9fd083bf5c22de39a524b5 35866e5d26ee25485d090011a1d50ec603d6761b 0b518329364fb793881cb0ff5ef464ecc4cd90c3694dcb7cfef40d0958446a14 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdfe3b026-408f-4d8a-8fbd-5c6ae59ab237.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5381 x-amzn-requestid: 6507e3ee-6ce1-46d3-89d7-409b6d7000f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BosvnHK_IAMFdkQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf4ca-3d2fb61641f8b1212fc60c8c;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:38:18 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: NkNRsBnupSmAJQk4lWdlmuZBFtNai49WoU6vDJCj1pkH2MJ-Qx0hjQ== via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6bdc2963c9ed59b475ec36c35e5932a4.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:40:56 GMT age: 10359 etag: "35866e5d26ee25485d090011a1d50ec603d6761b" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg	34.120.237.76	200 OK	8.5 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.5 kB (8487 bytes) Hash be71491cee9b47dc3ffb23b4fdff25b3 79c7d22c8df6d305f46c5779ccb9f25169d4d111 e785896e5840fb901ddd0118bef3ccad6b59a96d8eef0e8ccd9c95a3c261ba45 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F87df4bcd-c6cd-4a0c-a9f5-dffb7f36d2e4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8487 x-amzn-requestid: 92381f1a-0140-47e9-a971-594a7de36c3c x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BkEcBGizoAMFgOA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640b1ab3-1a54b65a5d7083e62dcb85ab;Sampled=0 x-amzn-remapped-date: Fri, 10 Mar 2023 11:55:31 GMT x-amz-cf-pop: SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: Nn4eV-UeuWZ02ANOxzTUSgE4UODtaZxeIjp8UJfU8PgUny2shFaDjQ== via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 74ab105148338444981d1b2277ffd9c4.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:42:25 GMT age: 10270 etag: "79c7d22c8df6d305f46c5779ccb9f25169d4d111" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F232cdb17-98f3-4be0-b78a-14393eef7fa1.jpeg	34.120.237.76	200 OK	5.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F232cdb17-98f3-4be0-b78a-14393eef7fa1.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.2 kB (5234 bytes) Hash cb2fe8b8a9441336c7c2d0db72a5b71b 2f1ed85d55504056381c5fd7c659f6d365f63613 f77d6bfd65cc01a3486560083306a45542132b2e2e23b749d43807634beb952d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F232cdb17-98f3-4be0-b78a-14393eef7fa1.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5234 x-amzn-requestid: a0f2e1e3-f409-45bb-950b-eeec829c1c73 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BnNfYEX4IAMF_Ug= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640c5c62-27c1dcb05b6998ac435f405c;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 10:48:02 GMT x-amz-cf-pop: SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: n7V_mrWVVJbnEDlgjSbfDDhTGo7Kn5gcqcekNG7c5XsTKZOFk_fAZQ== via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 0ec9ddba08fcd99386924593dbdbd44a.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 22:01:45 GMT age: 9110 etag: "2f1ed85d55504056381c5fd7c659f6d365f63613" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F610d32c6-de03-41c8-a59b-12faf1f650e3.jpeg	34.120.237.76	200 OK	11 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F610d32c6-de03-41c8-a59b-12faf1f650e3.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 11 kB (10845 bytes) Hash e8f9226a7abb93a9f1800ef4baab9efd 2b4899d5c5a5e2af78e0a1af1494730be5c8137f e15c82d8db45ada38b658768bc1ac9bc83ba50a503a36bf38640b084a19386f8 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F610d32c6-de03-41c8-a59b-12faf1f650e3.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10845 x-amzn-requestid: 1a5ca885-9b0c-4c7e-b58c-4180a1af0ab2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Bosb9FCyoAMFV8w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf44c-2783848806177b71066c67fc;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:36:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Hit from cloudfront x-amz-cf-id: 4bsQ_Fipc7SUbA-hfz4yPBD04Vn_Ux8k60LxbcK6M0slhTeLJhcqlg== via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 cca7d60248a961ff8fc8c5640024b652.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:49:15 GMT age: 9860 etag: "2b4899d5c5a5e2af78e0a1af1494730be5c8137f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0348ad60-fb94-406e-92fb-8ad4c18bf1b4.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0348ad60-fb94-406e-92fb-8ad4c18bf1b4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (6966 bytes) Hash 1fabecfdfd0dac8e90926aaa3d3345f9 82885d788649ef31c01a4889ed3709fdba1040f2 928a8c18272163da02cedc4a4c11b8e972b937e4bfe1ec8c0b2e8599f14c5ad1 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0348ad60-fb94-406e-92fb-8ad4c18bf1b4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6966 x-amzn-requestid: d791a401-7339-4e79-947c-f846712ab3a4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: BotJbGrOoAMFUBA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-640cf56f-1773826c51c136530fd55185;Sampled=0 x-amzn-remapped-date: Sat, 11 Mar 2023 21:41:03 GMT x-amz-cf-pop: HIO50-C1, SEA19-C3 x-cache: Miss from cloudfront x-amz-cf-id: 6n6SK0G4bE7KBwoM2HrkvNeYqftZIxpyG3eEfneU2y3B5biY9MIbUw== via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 5c7981a979abd51ba7e5ca7d464fd048.cloudfront.net (CloudFront), 1.1 google date: Sat, 11 Mar 2023 21:56:59 GMT etag: "82885d788649ef31c01a4889ed3709fdba1040f2" content-type: image/jpeg age: 9396 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	t.formatinfo.top/v1/popup-trk/show?source_id=10	104.21.73.224	200 OK	0 B
URL HTTP/2 t.formatinfo.top/v1/popup-trk/show?source_id=10 IP 104.21.73.224:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /v1/popup-trk/show?source_id=10 HTTP/1.1 Host: t.formatinfo.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://social-discovery.io Connection: keep-alive Referer: https://social-discovery.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 12 Mar 2023 00:33:37 GMT content-length: 0 access-control-allow-origin: https://social-discovery.io access-control-allow-headers: Content-Type access-control-allow-methods: POST,PUT,DELETE cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JwvTIVEE%2FGyuHnKK4z%2B9x%2FWATW3yATHL2CzIu0X%2BPwZnTnsaEAGw8g6xEb91sLUtfo%2BcDSeTj6jiYz4zt2Lex5EJHVQF4pEsQL0zGC0vVdOxv6bFn%2B86Fus2By51quVzJj2p"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7a67f261fbd9b4f1-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	t.formatinfo.top/v1/popup-trk/close?source_id=10	104.21.73.224	200 OK	0 B
URL HTTP/2 t.formatinfo.top/v1/popup-trk/close?source_id=10 IP 104.21.73.224:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers `GET /v1/popup-trk/close?source_id=10 HTTP/1.1 Host: t.formatinfo.top User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://social-discovery.io Connection: keep-alive Referer: https://social-discovery.io/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Sun, 12 Mar 2023 00:33:37 GMT content-length: 0 access-control-allow-origin: https://social-discovery.io access-control-allow-headers: Content-Type access-control-allow-methods: POST,PUT,DELETE cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=amIPLLYJsCennPz82uUTUMTC7QL%2BwyNT%2FsU8s9aK3adeUz%2Fwk3inE766%2BsZwrHh3grnPMpEgPSLphFZGVlot6Ak3vvaiyKgEgqDzV3oNS2nRikC7y4vIHTUoQBvLu%2BKVULxg"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7a67f261ebceb4f1-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false	104.21.1.92	200 OK	0 B
URL HTTP/2 social-discovery.io/adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false IP 104.21.1.92:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers GET /adult/EN/profiles-mainstream/?offer_id=7303&aff_id=65438&url_id=&source=propeller&aff_sub=&aff_sub2=&aff_sub3=&aff_sub4=&aff_sub5=push&click_id=2gsi1c265d&lands=90&test=&smartLink=false HTTP/1.1 Host: social-discovery.io User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1 HTTP/2 200 OK date: Sun, 12 Mar 2023 00:33:33 GMT content-type: text/html last-modified: Thu, 01 Sep 2022 13:19:38 GMT vary: Accept-Encoding cf-cache-status: DYNAMIC report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CG%2BWSIetJrcWoQoParj9Rt9I4NYWzHRNdRCVK7GO69lYdWHhejgILhwBKGH%2F9juCj5qhoOv61ZegFWGc%2FGi8JGljA5ak6ZxqhtRsAzscZyu%2F965T%2B74%2BsmYyJXAWtKlYOy6FS9cT"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} server: cloudflare cf-ray: 7a67f244ec67b52d-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (29)

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers