urlquery - report: weatherlauncher.com/

Overview

URL	weatherlauncher.com/
IP	3.141.126.30
ASN	AMAZON-02
Location	United States
Report completed	2022-07-06 10:01:04 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-06	2	weatherlauncher.com/	Malware
2022-07-06	2	weatherlauncher.com/css/styles.css?v=0.10	Malware
2022-07-06	2	weatherlauncher.com/js/jquery.js	Malware
2022-07-06	2	weatherlauncher.com/img/tstorms.svg	Malware
2022-07-06	2	weatherlauncher.com/js/lp.js?v=0.3	Malware
2022-07-06	2	weatherlauncher.com/img/sleet.svg	Malware
2022-07-06	2	weatherlauncher.com/img/mglass.svg	Malware
2022-07-06	2	weatherlauncher.com/img/mdlclose.svg	Malware
2022-07-06	2	weatherlauncher.com/img/mostlycloudy.svg	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (18)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-07-06 04:41:34 UTC	23.36.76.226
[Mnemonic Passive DNS]	fonts.gstatic.com (2)	0	2017-01-30 04:59:51 UTC	2022-07-06 04:41:59 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	www.googletagmanager.com (1)	75	2017-01-30 05:00:47 UTC	2022-07-06 04:42:41 UTC	142.250.74.72
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-06 08:25:08 UTC	93.184.220.29
[Mnemonic Passive DNS]	www.google.com (1)	7	2012-05-22 04:23:54 UTC	2022-07-05 15:41:59 UTC	142.250.74.164
[Mnemonic Passive DNS]	googleads.g.doubleclick.net (1)	42	2012-05-21 16:28:57 UTC	2021-02-23 09:01:54 UTC	216.58.207.194
[Mnemonic Passive DNS]	weatherlauncher.com (13)	0	No data	No data	3.22.174.233	Unknown ranking
[Mnemonic Passive DNS]	ocsp.sectigo.com (1)	487	2018-12-17 11:31:55 UTC	2022-07-06 08:02:31 UTC	172.64.155.188
[Mnemonic Passive DNS]	openweathermap.org (1)	11937	2017-05-02 13:47:32 UTC	2021-07-18 18:26:58 UTC	138.201.197.100
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.118
[Mnemonic Passive DNS]	ocsp.pki.goog (12)	175	2017-06-14 07:23:31 UTC	2022-07-06 04:42:12 UTC	142.250.74.3
[Mnemonic Passive DNS]	www.google.no (1)	25607	2012-05-21 14:04:11 UTC	2014-08-11 22:10:14 UTC	142.250.74.3
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-06 04:16:26 UTC	34.120.237.76
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-06 04:55:23 UTC	54.230.111.7
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	cdnjs.cloudflare.com (1)	235	2014-04-23 07:31:51 UTC	2022-05-16 10:07:49 UTC	104.17.25.14
[Mnemonic Passive DNS]	imp.weatherlauncher.com (1)	0	No data	No data	52.54.149.140	Unknown ranking
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-06 04:47:23 UTC	52.39.43.50

Recent reports on same IP/ASN/Domain

Last 4 reports on IP: 3.141.126.30

Date	UQ / IDS / BL	URL	IP
2022-08-02 10:00:31 +0000	0 - 0 - 3	digitalfileconverter.com/	3.141.126.30
2022-07-17 15:22:17 +0000	0 - 0 - 1	getsearchbar.com/Content/kits/rotate_strings. (...)	3.141.126.30
2022-07-15 22:27:38 +0000	0 - 0 - 1	getsearchbar.com/Content/kits/rotate_strings. (...)	3.141.126.30
2022-07-11 12:43:05 +0000	0 - 0 - 9	search.browserio.com/?source=d-lp0-sbe&uid=2a (...)	3.141.126.30

Last 10 reports on ASN: AMAZON-02

Date	UQ / IDS / BL	URL	IP
2022-08-12 23:40:09 +0000	0 - 0 - 2	www1.dreamhouse.org/	13.248.148.254
2022-08-12 23:36:27 +0000	0 - 0 - 34	killbcosiempre-com.ml/	13.57.136.230
2022-08-12 23:33:58 +0000	0 - 0 - 10	xn--azuk-8pa.com/	3.33.152.147
2022-08-12 23:31:54 +0000	0 - 0 - 1	www1.luminouslandscape.com/?tm=1&subid4=16603 (...)	75.2.73.197
2022-08-12 23:24:09 +0000	0 - 0 - 2	www.ibayme.eb2a.com/code.php?mode=cb&usr=Z2Vv (...)	199.59.243.220
2022-08-12 23:19:21 +0000	0 - 0 - 1	diegobahu.com/	44.227.76.166
2022-08-12 23:09:27 +0000	0 - 0 - 1	clk.flexdirectpath.com/c/c=1834811/s=289339/m (...)	3.18.216.192
2022-08-12 23:05:29 +0000	0 - 0 - 1	a4fbb.xyz/get/campaign/prcampaignlil	54.230.111.50
2022-08-12 23:03:11 +0000	0 - 0 - 4	www.wownicepop.com/73fd2ca3-649a-4076-a2e5-e4 (...)	18.196.84.70
2022-08-12 23:01:12 +0000	0 - 0 - 2	www.ibayme.eb2a.com/code.php?mode=cb&usr=Z2Vv (...)	199.59.243.220

No other reports on domain: weatherlauncher.com

JavaScript

Executed Scripts (11)

Executed Evals (1)

#1 JavaScript::Eval (size: 139, repeated: 1) - SHA256: fe6343a1239036e56011c522218df537ad4a9f060960de2e93082f43743cf1cf

                                        window.dataLayer = window.dataLayer || [];

function gtag() {
    dataLayer.push(arguments);
}
gtag('js', new Date());
gtag('config', 'AW-810040867');

Executed Writes (0)

HTTP Transactions (52)

Request	Response
GET / HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (480) Size: 4510 Md5: 37dcf9e3b2f58322a796fe9226112996$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Wed, 06 Jul 2022 10:00:49 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (480) Size: 4510 Md5: 37dcf9e3b2f58322a796fe9226112996 Sha1: 74a3d1c28b34cbbd192f9c1dcaf9e410f5549443 Sha256: 9761cbd414951348cab58fc0e803b84c15d61672d4a835f5a4f0bae0bacc1665 Alerts: Blocklists: - fortinet: Malware
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659" Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3089 Expires: Wed, 06 Jul 2022 10:52:19 GMT Date: Wed, 06 Jul 2022 10:00:50 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 65822db7ce56247876fbdcc5c29607f6 Sha1: 91262a33683099ad0dc3631d0a7a9051d8539b20 Sha256: 5ca12512dfbe8a007255191678a4ecd570026d865ae741c0d3025d8fe1a58659
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3$ 54.230.111.118 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Content-Type, Alert, Backoff, Content-Length Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Wed, 06 Jul 2022 09:49:13 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 a343e36742f64defd0a2caf1f96ff772.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: loKnKK5g0Ht4RuQvFlFOzs4rWjHphK0injxpBOqtonpAUAlJj6Mfcg== Age: 697 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: c98c56ff7bc7ba547517573963f425e3 Sha1: 58c8dccc28ecd76424af6ed9988575a35cf8a0c2 Sha256: d57d9d5e87e8761ffdf790ff762307f5c823e8e8241781797373c10e076ec44e
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.7 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Wed, 06 Jul 2022 03:26:46 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 5573uXeJ-WlfD0Zv_mmfTqzGqOe1-GVgpY3tDmzDUAKh8JwVQfhWWg== age: 23645 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Wed, 06 Jul 2022 10:00:50 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://weatherlauncher.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	104.17.25.14 HTTP/2 200 OK date: Wed, 06 Jul 2022 10:00:50 GMT content-type: text/css; charset=utf-8 content-length: 5631 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e5f-7918" last-modified: Mon, 04 May 2020 16:10:07 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 144978 expires: Mon, 26 Jun 2023 10:00:50 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=n1MALjTviTY5HoEmPLc3zCeo4qpA0qOV6POIIZ4kbgvXp5%2F%2FVTujEEe3ZZEezOkuCaYyS3Vjw1lfMvk2zyz7Sc7ImQHlIHYj8rv07e8GLMESbJqTF5w6H%2B3M0JK4DEvY1kLAW4ey"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 72677ee24e6fb527-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (30837) Size: 5631 Md5: 109d1ed85cd01f9cdab73a4cac5bf80d Sha1: d6c6498ad46de2d8e2008a8ff68e364ae7f16b32 Sha256: 8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 77412d8fb7fe2f69e9101c3386b79da9 Sha1: fac8ee244f886d6d4f4c5f5b0e0371d9b84159af Sha256: 0a4c9ca5b0d4ed182a03392dd82b0e6e1e0e35d8de7f008a71d3f67aa8c7176c
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 77412d8fb7fe2f69e9101c3386b79da9 Sha1: fac8ee244f886d6d4f4c5f5b0e0371d9b84159af Sha256: 0a4c9ca5b0d4ed182a03392dd82b0e6e1e0e35d8de7f008a71d3f67aa8c7176c
GET /css/styles.css?v=0.10 HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	3.22.174.233 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 14263 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-37b7" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text, with very long lines (647) Size: 14263 Md5: 3d03b758f005478460f2bd7db0d7943b Sha1: bf2ed895ab5d8a3b332ea53e88ab68cf3f850342 Sha256: 9e52a0857f4f35d3a6e2c1d27573499812f5c0509293c9769fbcecd19e958090 Alerts: Blocklists: - fortinet: Malware
POST / HTTP/1.1 Host: ocsp.sectigo.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	172.64.155.188 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 471 Connection: keep-alive Last-Modified: Tue, 05 Jul 2022 16:42:20 GMT Expires: Tue, 12 Jul 2022 16:42:20 GMT ETag: 9EF9CEA1FCCADA6FC5D5319B96EDE811B4F43389 Cache-Control: max-age=541889,s-maxage=1800,public,no-transform,must-revalidate X-OCSP-Responder-ID: mcdpcaocsp16 CF-Cache-Status: DYNAMIC Server: cloudflare CF-RAY: 72677ee2fd7afac4-OSL --- Additional Info --- Magic: data Size: 471 Md5: 0c40989e1002194abe28441e7afdaecf Sha1: 9ef9cea1fccada6fc5d5319b96ede811b4f43389 Sha256: ebe7b7c751197832a20f0f03e27df19b21e14eae75a4588be13e61d2bf684dff
GET /js/jquery.js HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	3.22.174.233 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 95905 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-176a1" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text, with very long lines (65536), with no line terminators Size: 95905 Md5: ce7092c9dcc6af3c74423729abe80447 Sha1: 80a5c061454550b04510e08854d40d460bc655c4 Sha256: 5aa42812961402a87076bc7a833aac5cd2c6dba847ed399bf836e025b7749b6e Alerts: Blocklists: - fortinet: Malware
GET /js/init.js?userclass=20220706&v=0.31 HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	3.22.174.233 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 18866 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-49b2" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text Size: 18866 Md5: 3d78b0300946633362040f5da7116190 Sha1: 41bfe911dcd29408afb35507160685b4e4a949e5 Sha256: ca499f5721bac62ea61fd9e67cc6ee16715ac61691538be7e3e992fd5f33d13e
GET /img/wn/01d.png HTTP/1.1 Host: openweathermap.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://weatherlauncher.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data Size: 529 Md5: ed22e08c4aafb6ac3afa98e002abd5a3$ 138.201.197.100 HTTP/1.1 200 OK Content-Type: image/png Server: openresty/1.9.7.1 Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 529 Last-Modified: Fri, 21 Jun 2019 06:47:45 GMT Connection: keep-alive ETag: "5d0c7d91-211" Access-Control-Allow-Origin: * Access-Control-Allow-Credentials: true Access-Control-Allow-Methods: GET Access-Control-Allow-Headers: origin, content-type, accept Expires: Wed, 13 Jul 2022 10:00:50 GMT Cache-Control: max-age=604800 Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 50 x 50, 8-bit/color RGBA, non-interlaced\012- data Size: 529 Md5: ed22e08c4aafb6ac3afa98e002abd5a3 Sha1: 7e55c38d4e52bc94ca938b39308f718e5435868d Sha256: 3307ac23d6d7f731ed8d5e18f052b62f8ea1d40a96ac48fe5bebaf01fd90cb4e
GET /img/tstorms.svg HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1058) Size: 5359 Md5: 2fc951a53594d9ee5d864e3a599b7f38$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/svg+xml Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 5359 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-14ef" Accept-Ranges: bytes --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1058) Size: 5359 Md5: 2fc951a53594d9ee5d864e3a599b7f38 Sha1: 78b919f28fa1813068e9682275d957c7cfa96245 Sha256: 933fccfb8b6b2ae057b5c6e3e3d62b1ca858987e38b0b4b2f7594cce7e1caa7a Alerts: Blocklists: - fortinet: Malware
GET /js/lp.js?v=0.3 HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	3.22.174.233 HTTP/1.1 200 OK Content-Type: application/javascript Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 43427 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:53:38 GMT ETag: "605a1d12-a9a3" Accept-Ranges: bytes --- Additional Info --- Magic: ASCII text, with very long lines (42862), with CRLF line terminators Size: 43427 Md5: ed01ac1fe24a6298897fd2984d6cd2cc Sha1: 186f2cbe8ac42df0e01dc9c87dd8bfee41a57016 Sha256: 35241da9699e865345181d4904dc290e12c1a17a4c05e7ee1488d9917650a043 Alerts: Blocklists: - fortinet: Malware
GET /img/sleet.svg HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (768) Size: 5567 Md5: cd26329a33a39d5ff7afaa7df78001a1$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/svg+xml Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 5567 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:53:38 GMT ETag: "605a1d12-15bf" Accept-Ranges: bytes --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (768) Size: 5567 Md5: cd26329a33a39d5ff7afaa7df78001a1 Sha1: c77a9342c7ce7e0980f165a6fd9bf9880b5f4e89 Sha256: f2f4ad44d9c29e8625a073a01304bb5d5cf0264c5b41e9aecb300a7061efb319 Alerts: Blocklists: - fortinet: Malware
GET /img/mglass.svg HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1493) Size: 2310 Md5: f5fbfd7e9b6ef0f6d4c7108781c06c04$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/svg+xml Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 2310 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-906" Accept-Ranges: bytes --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (1493) Size: 2310 Md5: f5fbfd7e9b6ef0f6d4c7108781c06c04 Sha1: 52ab2783a6c63824b0ce31f707cdf22c2050e3b5 Sha256: c4ccba217f8710a5a185454a41e18a7a3d007f9998c26dd50aa0b0e6c541d829 Alerts: Blocklists: - fortinet: Malware
GET /img/mdlclose.svg HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (322) Size: 1074 Md5: 9211fd00b6fdd96ce41c7b9f4e0fbab9$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/svg+xml Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 1074 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:53:38 GMT ETag: "605a1d12-432" Accept-Ranges: bytes --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (322) Size: 1074 Md5: 9211fd00b6fdd96ce41c7b9f4e0fbab9 Sha1: 5e849d3dcfe25a2e281ec02ec699930ea336402b Sha256: 0adbb0aa239110abc7f0ee409c55d0b3da78ed940b12531f939c020c23cf041f Alerts: Blocklists: - fortinet: Malware
GET /img/mostlycloudy.svg HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	$Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (756) Size: 9530 Md5: 0ae06643eb1c5b730c6ec48e816321be$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/svg+xml Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 9530 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-253a" Accept-Ranges: bytes --- Additional Info --- Magic: SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, ASCII text, with very long lines (756) Size: 9530 Md5: 0ae06643eb1c5b730c6ec48e816321be Sha1: a3b4368bb40c8e79ee9240b3fea2e2b8a428372a Sha256: 90c70bd94cb8cf47fd7abaed702ece4488c6a887c46260dd8344acc3e6bf675c Alerts: Blocklists: - fortinet: Malware
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.118 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Wed, 06 Jul 2022 09:34:56 GMT Cache-Control: max-age=3600 Expires: Wed, 06 Jul 2022 10:00:47 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: N-mrTWcdaVua6iZtIHetU1boI90grwZmOZAUtAhxBA5CDUOniuA9yA== Age: 1554 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://weatherlauncher.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 15744 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Jun 2022 19:34:08 GMT expires: Thu, 29 Jun 2023 19:34:08 GMT cache-control: public, max-age=31536000 age: 570402 last-modified: Wed, 11 May 2022 19:24:48 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Size: 15744 Md5: 15d9f621c3bd1599f0169dcf0bd5e63e Sha1: 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 Sha256: f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/raleway/v27/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVs9pbCIPrE.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://weatherlauncher.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 21456, version 1.0\012- data Size: 21456 Md5: 007a154259ea787aac5ecadf9f230e39$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 21456 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 29 Jun 2022 19:47:12 GMT expires: Thu, 29 Jun 2023 19:47:12 GMT cache-control: public, max-age=31536000 age: 569618 last-modified: Wed, 27 Apr 2022 15:56:05 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 21456, version 1.0\012- data Size: 21456 Md5: 007a154259ea787aac5ecadf9f230e39 Sha1: f2e6c96c5ba7825a00b444a7ba0c3180b23a7c57 Sha256: 5a6b61a6dec37b97dc483e82526807617e7bf1fb643c89c5bfeff6f92b91fade
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:50 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: dec809e4db9d04ddc585dadf9f434d15 Sha1: bef367231632f70618fcee4bf9514a20908e9d92 Sha256: d88c21632d8e0ec2a4d3c7542a5ba84f202f02b3d4403d4c482ffacb8a0c87a0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET /gtag/js?id=AW-810040867&_=1657101650764 HTTP/1.1 Host: www.googletagmanager.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://weatherlauncher.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.72 HTTP/2 200 OK content-type: application/javascript; charset=UTF-8 access-control-allow-origin: * access-control-allow-credentials: true access-control-allow-headers: Cache-Control content-encoding: br vary: Accept-Encoding date: Wed, 06 Jul 2022 10:00:51 GMT expires: Wed, 06 Jul 2022 10:00:51 GMT cache-control: private, max-age=900 last-modified: Wed, 06 Jul 2022 09:00:00 GMT strict-transport-security: max-age=31536000; includeSubDomains cross-origin-resource-policy: cross-origin server: Google Tag Manager content-length: 43967 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1596) Size: 43967 Md5: 444bcb3a25c7218e8121767e889fa475 Sha1: be68d95727f5e7b4096aa23344ee566e54f36672 Sha256: f5ba5f617b71b41c80ae9ee331fdd507cd2597cdd5dc6975ff1a4f308224ef08
GET /img/logo.png HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/css/styles.css?v=0.10	$Magic: PNG image data, 39 x 39, 8-bit/color RGBA, non-interlaced\012- data Size: 1958 Md5: a14a7cc81196f7cf0f27c30ae80db75b$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 1958 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:50:08 GMT ETag: "605a1c40-7a6" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 39 x 39, 8-bit/color RGBA, non-interlaced\012- data Size: 1958 Md5: a14a7cc81196f7cf0f27c30ae80db75b Sha1: cc715c6aff46016169072375d7ffa81b7cb53602 Sha256: 630a5873a23b3b3e926d8334b30d54253e514ab2a0bacac60dac383c957f4535
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: dec809e4db9d04ddc585dadf9f434d15 Sha1: bef367231632f70618fcee4bf9514a20908e9d92 Sha256: d88c21632d8e0ec2a4d3c7542a5ba84f202f02b3d4403d4c482ffacb8a0c87a0
GET /impression.do?event=ex_js_request&page=&referrer=&user_id=b7d25fce-916a-4ee3-b217-32470c427b81&source=undefined-lp1-obff-wbn-bb9-ab10-w32-brwsr&traffic_source=undefined&subid=20220706&implementation_id=wbn-weather HTTP/1.1 Host: imp.weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/	$Magic: PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data Size: 109 Md5: 3260e2cd06cba4871584bc863bc0dd10$ 52.54.149.140 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 10:00:51 GMT Content-Length: 109 Connection: keep-alive Cache-Control: no-cache Pragma: no-cache Expires: -1 Server: Microsoft-IIS/8.5 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET --- Additional Info --- Magic: PNG image data, 1 x 1, 8-bit/color RGB, non-interlaced\012- data Size: 109 Md5: 3260e2cd06cba4871584bc863bc0dd10 Sha1: 5d780204aecb7cd5d0ffa2ca5bf540d7afdf4afc Sha256: 87e6caca9e3e1c0b4ea254f67bf855c8496a1b80f4034bd5ae596be264ea5be8
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 2308 Cache-Control: 'max-age=158059' Date: Wed, 06 Jul 2022 10:00:51 GMT Last-Modified: Wed, 06 Jul 2022 09:22:23 GMT Server: ECS (ska/F71A) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 54a5ebdb4e3b060878632555583e462f Sha1: df627b311d6276eabf36fe1390a8219714839aed Sha256: 5c77d20265a9a328455b745ec5191e036ec35814586c1e6bcd1c8b2de01b3ff2
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 2903136304a826eca8c777b5738004f8 Sha1: 381a0885546d0918e70f7bbaeabdd9ab81ad8049 Sha256: 36a2036b2a13dde58cddd14c6ccf1298688d150db29f3c68e9a270101a1337c7
GET /pagead/conversion_async.js HTTP/1.1 Host: www.google.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://weatherlauncher.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.164 HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin vary: Accept-Encoding date: Wed, 06 Jul 2022 10:00:51 GMT expires: Wed, 06 Jul 2022 10:00:51 GMT cache-control: private, max-age=3600 content-type: text/javascript; charset=UTF-8 etag: 3379859422830751262 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 15159 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (1716) Size: 15159 Md5: cbef4e3fe506f37ad6151e96d28bb454 Sha1: 0c67dd479c7e4413383360df560c32c42c66fd36 Sha256: 3491568be3fb8de41c6d7be1f21813ef0a35c6d3eb2a2e59f705bdd42539f20a
GET /favicon.ico HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/ Cookie: _gcl_au=1.1.1614387953.1657101651	$Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 141 Md5: a94321d1b68ed4ff115bac45d32c57a6$ 3.22.174.233 HTTP/1.1 404 Not Found Content-Type: text/html Date: Wed, 06 Jul 2022 10:00:51 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Content-Encoding: gzip --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 141 Md5: a94321d1b68ed4ff115bac45d32c57a6 Sha1: 8a8a1a624f9f0f45d08f99200997cb75ebd0d323 Sha256: d61af8da5501b4b8085bbc73121eca98a83b18d57017280dfbddc5ded4c3ce72
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 2908841ed56460b12548b5dac65e8363 Sha1: d99ab2b76d17454a1d3d0d3dcb9edabe04c6869d Sha256: 3579d6f01551ebf36c5ab84329fda574d8cf60fbff5ccf28905786d6cc0a265f
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: MysUg5DKkukAfFNf2lEUrw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.39.43.50 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: BpacOytYEurfCfu0KTayl6EBPbM= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: d7d2effbf2b288241e8750e27dfe440b Sha1: 569599d2e60fb274168a47009cfba52acea61c09 Sha256: 6a78c9b96ebca5fc8ae6e96631c5a2ecb19c9d94ef7a8f6d213ffb8a92734a99
GET /img/clouds_bg.png HTTP/1.1 Host: weatherlauncher.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://weatherlauncher.com/css/styles.css?v=0.10	$Magic: PNG image data, 1920 x 777, 8-bit/color RGBA, non-interlaced\012- data Size: 1580454 Md5: 6e283f63ac5d9c3a38cb14961b171037$ 3.22.174.233 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 10:00:50 GMT Content-Length: 1580454 Connection: keep-alive Server: nginx/1.10.3 (Ubuntu) Last-Modified: Tue, 23 Mar 2021 16:53:38 GMT ETag: "605a1d12-181da6" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 1920 x 777, 8-bit/color RGBA, non-interlaced\012- data Size: 1580454 Md5: 6e283f63ac5d9c3a38cb14961b171037 Sha1: 80cfc4017d6aa81af675fa62989600d9ca542741 Sha256: 0c34063a9b5203614d6069cedbefb7aea4346e3b3e9641bd9c5b6d7c06983516
GET /pagead/viewthroughconversion/810040867/?random=1657101651335&cv=9&fst=1657101651335&num=1&bg=ffffff&guid=ON&resp=GooglemKTybQhCsO&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa6t0&sendb=1&ig=0&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fweatherlauncher.com%2F&tiba=Weather%20Launcher&hn=www.google.com&async=1&rfmt=3&fmt=4 HTTP/1.1 Host: googleads.g.doubleclick.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://weatherlauncher.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	216.58.207.194 HTTP/2 200 OK p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Wed, 06 Jul 2022 10:00:51 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, must-revalidate content-type: text/javascript; charset=UTF-8 x-content-type-options: nosniff content-disposition: attachment; filename="f.txt" content-encoding: gzip server: cafe content-length: 1024 x-xss-protection: 0 set-cookie: test_cookie=CheckForPermission; expires=Wed, 06-Jul-2022 10:15:51 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (2238), with no line terminators Size: 1024 Md5: 9eb6f60d60f3c5ec852d6f37db1e6a5a Sha1: 442d5b64012d398b3859cce62e18c31adbd25ee2 Sha256: c691ea19713a65517bf3533ab9c2bb0dd61b0ecf580930b3115db4ed9fb4c801
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: d7d2effbf2b288241e8750e27dfe440b Sha1: 569599d2e60fb274168a47009cfba52acea61c09 Sha256: 6a78c9b96ebca5fc8ae6e96631c5a2ecb19c9d94ef7a8f6d213ffb8a92734a99
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 328d9bfb4bd7c31190b4a1303725858c Sha1: 3fedaaf1cb6d779040a46c336226beb06a05f3d2 Sha256: 5c3ad4e1a6f5296c000c59d049f1e33af08979cdfc3e7202186d5d1a3ff26c40
GET /pagead/1p-user-list/810040867/?random=1657101651335&cv=9&fst=1657101600000&num=1&bg=ffffff&guid=ON&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_his=1&u_tz=0&u_java=false&u_nplug=0&u_nmime=0&gtm=2oa6t0&sendb=1&data=event%3Dgtag.config&frm=0&url=http%3A%2F%2Fweatherlauncher.com%2F&tiba=Weather%20Launcher&async=1&fmt=3&is_vtc=1&random=1586167583&resp=GooglemKTybQhCsO&rmt_tld=1&ipr=y HTTP/1.1 Host: www.google.no User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://weatherlauncher.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: d89746888da2d9510b64a9f031eaecd5$ 142.250.74.3 HTTP/2 200 OK p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC" timing-allow-origin: * cross-origin-resource-policy: cross-origin date: Wed, 06 Jul 2022 10:00:51 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate content-type: image/gif content-security-policy: script-src 'none'; object-src 'none' x-content-type-options: nosniff server: cafe content-length: 42 x-xss-protection: 0 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: GIF image data, version 89a, 1 x 1\012- data Size: 42 Md5: d89746888da2d9510b64a9f031eaecd5 Sha1: d5fceb6532643d0d84ffe09c40c481ecdf59e15a Sha256: ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 10:00:51 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 328d9bfb4bd7c31190b4a1303725858c Sha1: 3fedaaf1cb6d779040a46c336226beb06a05f3d2 Sha256: 5c3ad4e1a6f5296c000c59d049f1e33af08979cdfc3e7202186d5d1a3ff26c40
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6796 Expires: Wed, 06 Jul 2022 11:54:08 GMT Date: Wed, 06 Jul 2022 10:00:52 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6796 Expires: Wed, 06 Jul 2022 11:54:08 GMT Date: Wed, 06 Jul 2022 10:00:52 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6796 Expires: Wed, 06 Jul 2022 11:54:08 GMT Date: Wed, 06 Jul 2022 10:00:52 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6796 Expires: Wed, 06 Jul 2022 11:54:08 GMT Date: Wed, 06 Jul 2022 10:00:52 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3138a2a5-6ce8-4465-8dff-7307ebdd802f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13276 Md5: 95aa230a6b516a252f3815c586803c15$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 13276 x-amzn-requestid: 33881d12-a991-437c-90a2-4c00d31642b8 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UUXHsFwoIAMFqkg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62b80564-15ff67dd1eee173c5730daf4;Sampled=0 x-amzn-remapped-date: Sun, 26 Jun 2022 07:06:12 GMT x-amz-cf-pop: SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: jqKUpQrSzmKObwwVi8gqnNdDGPhy70oWIIQ8xtK_1BXQIBhTdB1mow== via: 1.1 1352c0a623ff0601dd16439f3f225f70.cloudfront.net (CloudFront), 1.1 0d4ebcaa87ba94709def0eaac9371e5a.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 04:37:49 GMT age: 19383 etag: "7e5a550bbbac49269cae75ce9bb92e8fdf77b086" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13276 Md5: 95aa230a6b516a252f3815c586803c15 Sha1: 7e5a550bbbac49269cae75ce9bb92e8fdf77b086 Sha256: fc3c49de063a4e13c64e799664fa6c7ccf6e42aac5973aaf1af2b7689338f3b9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb156bf40-83c5-4d7e-a04a-93f719d05ead.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8607 Md5: b025bd295e8dec725288f69773e8efe8$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8607 x-amzn-requestid: b3b8af2d-9d05-463e-a72d-86f349bca2fe x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UwukvER9IAMFViA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c35e1e-7e4ea25c0c2e8e3230690009;Sampled=0 x-amzn-remapped-date: Mon, 04 Jul 2022 21:39:42 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: I2frUxaNWiIM6DVT8IlYiA9u7zqOTiEQjQ3kgzL_nn0VX6-PR6iTzQ== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 22:04:44 GMT age: 42968 etag: "00c409c96837ba3e01a486f245fef579df2ef290" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8607 Md5: b025bd295e8dec725288f69773e8efe8 Sha1: 00c409c96837ba3e01a486f245fef579df2ef290 Sha256: b125cd91184d2f80e58e434c8854835cd79c71282725e4d2f1a70049328267b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb43d6c1-9277-41c7-a6a2-7ed481cb6008.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6262 Md5: 405e2c36af93466ec54a46cc09c98a34$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6262 x-amzn-requestid: 22aedc9c-1363-4dad-921c-d1d9abc9b47a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BWNE7QoAMFtkA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4af5a-3d6ba96b447d35f50209d4e2;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:34 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: 1-Ua3C7qW9jiOyHc18DVoXl5IXJY8x5BRoZIpQmAW80sm8D6NvOkWQ== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:51:05 GMT etag: "516324380a247cd6fd356168b23603d2e63da2f2" content-type: image/jpeg age: 43787 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6262 Md5: 405e2c36af93466ec54a46cc09c98a34 Sha1: 516324380a247cd6fd356168b23603d2e63da2f2 Sha256: ab63d378c66b22b900a4c853c124e91273a730df53e0e6b7868c3f9102993b55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc072e61d-3b9b-4f2d-acc8-d26a8adf968d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12165 Md5: 29949330f4dc3b69747d5534e745fde3$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 12165 x-amzn-requestid: 796ca673-2ab5-4bd9-b4f1-d2c250c34e3a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BWXH-HoAMFhkg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4af5b-51c7abd54a523a1f479a7d5b;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:35 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: _-zkK-6DIfDVDzXmTOTigF2tM4pfh19MReGO_X26eRhLNFGL3Jc9Aw== via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:50:29 GMT age: 43823 etag: "604b4cc5d50ca494df1de2ab8baa486da20d1e4e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12165 Md5: 29949330f4dc3b69747d5534e745fde3 Sha1: 604b4cc5d50ca494df1de2ab8baa486da20d1e4e Sha256: b98faa2080573124f84254a2f87df3631f257e9a040cf34ebe267a1784d4b954
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb6c586-bb86-4a54-bd48-f2b5da763e74.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7117 Md5: b4ead2bdcbc998a5685d65a26e40ce1a$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7117 x-amzn-requestid: 7cfe344b-f098-4260-bb50-6574786e6ee2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BW8HnbIAMFkrA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4af5f-14a960ac060d2d120cb0ad7c;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:39 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 0F6ZVkqKywgjh9Qa1DJw_-rdOLcc1tzEll0J58NeawksoIu9nY1a-g== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:52:41 GMT age: 43691 etag: "01efbdf6b2ab79332bf6a22d36472e294732aa17" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7117 Md5: b4ead2bdcbc998a5685d65a26e40ce1a Sha1: 01efbdf6b2ab79332bf6a22d36472e294732aa17 Sha256: 04399a91345db4f89bdbbb9ddb30db0f2a0c29654491b38bb1a30bd40c4f3e48
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb82ec83-887b-4050-91d9-57a545edfc43.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6527 Md5: c74b2cd74c712ef13e74569a07f963ef$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6527 x-amzn-requestid: 391d747d-26bd-4303-bccb-fb510b7788e4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BHqGLpoAMF8Cg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4aefd-49710428275253eb6c36832f;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:37:01 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: uL6YaW91qzBRv40cuvLT4QVncM9UT8NDM1XDDSLIJohj4uqqvwlmPA== via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 ead78c395f4bede3ec6cd7ea180e3d3a.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:37:02 GMT etag: "5320ab2d511bcf3b66328f71d2cecf6beecd8139" content-type: image/jpeg age: 44630 cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6527 Md5: c74b2cd74c712ef13e74569a07f963ef Sha1: 5320ab2d511bcf3b66328f71d2cecf6beecd8139 Sha256: 90498a0e0e346788001a46a6b505805ba91861505fd69cab53486fa66c50eadb