Overview

URL dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22
IP23.185.0.4
ASNFASTLY
Location United States
Report completed2022-09-05 22:15:31 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-05 2 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22 Phishing
2022-09-05 2 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22 Phishing
2022-09-05 2 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/ Phishing
2022-09-05 2 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/common/log.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (16)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-05 04:38:00 UTC 23.36.77.32
mnemonic passive DNS ocsp.godaddy.com (1) 698 2012-05-20 19:28:57 UTC 2022-09-05 04:39:20 UTC 192.124.249.24
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-05 14:49:07 UTC 143.204.55.36
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-05 05:14:21 UTC 143.204.55.110
mnemonic passive DNS cdnjs.cloudflare.com (2) 235 2020-10-20 10:17:36 UTC 2022-09-05 05:20:47 UTC 104.17.25.14
mnemonic passive DNS ocsp.digicert.com (4) 86 2012-05-21 07:02:23 UTC 2022-09-05 17:53:49 UTC 93.184.220.29
mnemonic passive DNS cdn.jsdelivr.net (1) 439 2012-09-30 00:15:09 UTC 2022-09-05 08:16:52 UTC 151.101.85.229
mnemonic passive DNS ocsp.pki.goog (1) 175 2017-06-14 07:23:31 UTC 2022-09-05 04:38:08 UTC 142.250.74.3
mnemonic passive DNS maxcdn.bootstrapcdn.com (2) 724 2014-06-18 00:37:31 UTC 2022-09-05 17:33:14 UTC 104.18.11.207
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-05 05:10:58 UTC 54.149.101.24
mnemonic passive DNS dev-hbvcffes.pantheonsite.io (11) 0 2022-07-15 08:58:44 UTC 2022-08-11 18:55:42 UTC 23.185.0.4 Unknown ranking
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-05 04:38:54 UTC 34.117.237.239
mnemonic passive DNS ajax.googleapis.com (1) 12905 2019-10-15 17:52:08 UTC 2022-09-05 21:17:50 UTC 142.250.74.106
mnemonic passive DNS ocsp.globalsign.com (1) 2075 2012-05-25 06:20:55 UTC 2022-09-05 04:45:07 UTC 104.18.21.226
mnemonic passive DNS api.telegram.org (1) 38509 2015-06-25 10:09:00 UTC 2022-09-05 16:15:02 UTC 149.154.167.220
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-05 08:52:38 UTC 34.120.237.76


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 23.185.0.4

Date UQ / IDS / BL URL IP
2022-12-09 21:35:17 +0000
10 - 0 - 5 dev-www-online-dkb-de-ref91535.pantheonsite.i (...) 23.185.0.4
2022-12-09 20:30:27 +0000
10 - 0 - 5 dev-www-online-dkb-de-ref91535.pantheonsite.i (...) 23.185.0.4
2022-12-09 20:30:25 +0000
10 - 0 - 5 dev-www-online-dkb-de-ref91534.pantheonsite.i (...) 23.185.0.4
2022-12-09 17:57:27 +0000
10 - 0 - 3 dev-www-online-dkb-de-ref91535.pantheonsite.i (...) 23.185.0.4
2022-12-09 17:46:16 +0000
0 - 0 - 2 dev-www-online-dkb-de-ref91534.pantheonsite.i (...) 23.185.0.4

Last 5 reports on ASN: FASTLY

Date UQ / IDS / BL URL IP
2022-12-09 22:25:29 +0000
0 - 0 - 2 mal2711ex.web.app/ 199.36.158.100
2022-12-09 21:39:55 +0000
0 - 0 - 0 mackinawdepot.commentsold.com/account 151.101.2.133
2022-12-09 21:39:25 +0000
0 - 0 - 2 ggle.io/acerts_rfeib_feb 199.36.158.100
2022-12-09 21:35:17 +0000
10 - 0 - 5 dev-www-online-dkb-de-ref91535.pantheonsite.i (...) 23.185.0.4
2022-12-09 21:35:04 +0000
10 - 0 - 5 dev-www-online-dkb-de-ref91530.pantheonsite.i (...) 23.185.0.3

Last 5 reports on domain: dev-hbvcffes.pantheonsite.io

Date UQ / IDS / BL URL IP
2022-09-28 04:19:13 +0000
0 - 0 - 4 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/ 23.185.0.4
2022-09-06 22:51:16 +0000
0 - 0 - 5 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22 23.185.0.4
2022-09-06 22:50:59 +0000
0 - 0 - 3 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/ 23.185.0.4
2022-09-06 08:24:40 +0000
0 - 0 - 5 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22 23.185.0.4
2022-09-06 08:24:18 +0000
0 - 0 - 3 dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/ 23.185.0.4

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-12-06 14:06:35 +0000
0 - 0 - 4 dev-lkiopmvcs.pantheonsite.io/wp-content/S0CGR22 23.185.0.4
2022-12-06 11:19:51 +0000
0 - 0 - 4 dev-lkiopmvcs.pantheonsite.io/wp-content/S0CGR22 23.185.0.4
2022-10-19 10:57:41 +0000
0 - 0 - 3 dev-hjkppmcx.pantheonsite.io/wp-content/S0CGN22/ 23.185.0.2
2022-10-06 22:56:48 +0000
0 - 0 - 5 dev-gftuooo.pantheonsite.io/wp-content/S0CGN22/ 23.185.0.4
2022-10-06 20:44:39 +0000
0 - 0 - 5 dev-gftuooo.pantheonsite.io/wp-content/S0CGN22/ 23.185.0.4


JavaScript

Executed Scripts (6)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (41)


Request Response
                                        
                                            GET /wp-content/S0CGN22 HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         23.185.0.4
HTTP/1.1 301 Moved Permanently
Content-Type: text/html
                                        
Location: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22
Server: nginx
Traceparent: 00-9e483182be9e40fb99838ca31d5775e5-59c14ab6857e7da8-00
X-Cloud-Trace-Context: 9e483182be9e40fb99838ca31d5775e5/6467532687664905640;o=0
X-Pantheon-Styx-Hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
X-Styx-Req-Id: 3a8a0baf-2d68-11ed-af03-52872e658687
Cache-Control: public, max-age=86400
Content-Length: 162
Date: Mon, 05 Sep 2022 22:15:20 GMT
Connection: keep-alive
X-Served-By: cache-ams21024-AMS, cache-bma1648-BMA
X-Cache: MISS, MISS
X-Cache-Hits: 0, 0
X-Timer: S1662416120.016797,VS0,VE33
Vary: Cookie, Cookie
X-Robots-Tag: noindex
Age: 0
Accept-Ranges: bytes
Via: 1.1 varnish, 1.1 varnish


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 05 Sep 2022 21:45:03 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zSVJHKoeT_qulHDNP86bQFOBYJzVaU6gy_ysnMqeDl-KpVL-24KnqQ==
Age: 1817


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    99b7d23c1748d0526782b9ff9ea45f09
Sha1:   eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
Sha256: 48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2503
Expires: Mon, 05 Sep 2022 22:57:03 GMT
Date: Mon, 05 Sep 2022 22:15:20 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.110
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 05 Sep 2022 01:15:19 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2dDUYbM0YiqYU0XPsNmXKyZXSknO3P52AYvLCVhQ7UPjhBUV4Ckspw==
age: 75603
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /wp-content/S0CGN22 HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         23.185.0.4
HTTP/2 301 Moved Permanently
content-type: text/html
                                        
location: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
server: nginx
strict-transport-security: max-age=300
traceparent: 00-01573a6603434905822a9b38e81f4f48-5bd4a8bc1ef1b447-00
x-cloud-trace-context: 01573a6603434905822a9b38e81f4f48/6617099278440576071;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: 736c963c-2cfe-11ed-baa3-5e0d87cff249
cache-control: public, max-age=86400
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12773-AMS, cache-bma1649-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1662416120.317909,VS0,VE26
vary: Cookie, Cookie
x-robots-tag: noindex
age: 45432
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 162
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size:   162
Md5:    4f8e702cc244ec5d4de32740c0ecbd97
Sha1:   3adb1f02d5b6054de0046e367c1d687b6cdf7aff
Sha256: 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Mon, 05 Sep 2022 22:15:20 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /wp-content/S0CGN22/ HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: text/html
                                        
content-encoding: gzip
etag: W/"62d0b86c-1d70"
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-b8695e695e9048d2b9027e94e132d2ff-3bd90821991f092a-00
x-cloud-trace-context: b8695e695e9048d2b9027e94e132d2ff/4312487058579851562;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: 38c04219-2d68-11ed-af03-52872e658687
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12780-AMS, cache-bma1649-BMA
x-cache: HIT, MISS
x-cache-hits: 1, 0
x-timer: S1662416120.417618,VS0,VE24
vary: Accept-Encoding, Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 3041
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Size:   3041
Md5:    89c063defceb1383476a2ffd4fd3cb94
Sha1:   bf80040158629da1c0ace9b553d40752ab2b1326
Sha256: 17e51323b3d305e2a05747048bc32f1384e85c1d9c8810a4d4d0ec384a38199d

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/S0CGN22/img/logo.png HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/png
                                        
etag: "62d0b86c-9ff"
expires: Mon, 05 Sep 2022 22:15:19 GMT
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-7f89d3d49fd445a18575fdba73c8c3ff-dc7605c300bf521c-00
x-cloud-trace-context: 7f89d3d49fd445a18575fdba73c8c3ff/15885891070685303324;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-nlhhc
x-styx-req-id: 3ae0901d-2d68-11ed-a8a6-36f62962685c
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12777-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.584840,VS0,VE34
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 2559
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 203 x 58, 8-bit/color RGBA, non-interlaced\012- data
Size:   2559
Md5:    567cf3cd42121b35a78b7fa616653f6e
Sha1:   6a92a46e9906eb399edae0c13dd445edc4fdfbbb
Sha256: 471873808f436309961a1ab7bd351100f8bf493730393ee8a61cc82469f67057
                                        
                                            GET /wp-content/S0CGN22/img/close.png HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/png
                                        
etag: "62d0b86c-327"
expires: Mon, 05 Sep 2022 22:15:19 GMT
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-af42e75cc57540549dbe60dea11cd824-d943239114e42ef3-00
x-cloud-trace-context: af42e75cc57540549dbe60dea11cd824/15655395835697704691;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: 3ae10062-2d68-11ed-af03-52872e658687
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12751-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.590168,VS0,VE29
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 807
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 54 x 48, 8-bit/color RGB, non-interlaced\012- data
Size:   807
Md5:    efe574eceb477661ac8fc9e50ce762ef
Sha1:   b438fe2c7932854f046ccaa3312728f3b8cd36fb
Sha256: a1b13ce699476a96cc6c97b9994def06157b50ee5959c076f6942c0370067fa9
                                        
                                            GET /wp-content/S0CGN22/img/check.png HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/png
                                        
etag: "62d0b86c-3a4"
expires: Mon, 05 Sep 2022 22:15:19 GMT
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-8ff488930edb414ebbef44bcd61a00b3-bb503831cffca75e-00
x-cloud-trace-context: 8ff488930edb414ebbef44bcd61a00b3/13497349869823371102;o=0
x-pantheon-styx-hostname: styx-fe3fe4-d-774cf4cc7f-6x4zm
x-styx-req-id: 3ae15375-2d68-11ed-af03-52872e658687
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12738-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.590339,VS0,VE31
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 932
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 54 x 42, 8-bit/color RGB, non-interlaced\012- data
Size:   932
Md5:    0d0315490a733a3bc7b565924a3ee0ae
Sha1:   92e464ea98a4ec70dc3bbd4b0964c724234376a4
Sha256: 2b6f3b2b6ca2beba5a321626845821cfd8b61bf6dee6b133895e25aaf8e31b45
                                        
                                            GET /wp-content/S0CGN22/common/log.js HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: application/x-javascript
                                        
content-encoding: gzip
etag: W/"62d0b86c-8ee"
expires: Mon, 05 Sep 2022 22:15:19 GMT
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-3dda4d5561494d6e83280912d02a28fe-d13e3302f92f134e-00
x-cloud-trace-context: 3dda4d5561494d6e83280912d02a28fe/15077544690346562382;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: 3ae139dc-2d68-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12733-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.591448,VS0,VE31
vary: Accept-Encoding
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1006
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with CRLF line terminators
Size:   1006
Md5:    c33057ffe679f45350ebbd29eee2fd9a
Sha1:   fc12f6b989f2c7255829cdeb5e89ea62f06723d3
Sha256: b6bd3b86319e8be686389e28607f2a549248c06d0cca432bdf14f51cc53eba9f

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /ajax/libs/popper.js/1.16.0/umd/popper.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 05 Sep 2022 22:15:20 GMT
content-length: 6696
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-5309"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 236770
expires: Sat, 26 Aug 2023 22:15:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fg5phhlGGhON9ghB6myfg1GLHxDwSCD5s8eHnSu%2BCX9DCn4Bi%2BJkfqK0fLbZ75FkmYJEpHooT7PZmLH%2Biu3it3fObm5hfH2FX06UBOlbcoRS%2BYSxM%2FBXILZUdCz6xh7kxG0zkGFc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746252b1ed0cb518-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21084)
Size:   6696
Md5:    9e85c6f6521bceeccb3d9ba9149fef80
Sha1:   1e18137215b276bb9bda85ac311d9c8cd5b01985
Sha256: 913b850ee0b505bf6b957ecd04dd3aab13543c9047c46532ac27b0be31e206bc
                                        
                                            GET /wp-content/S0CGN22/img/btn.png HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/png
                                        
etag: "62d0b86c-784"
expires: Mon, 05 Sep 2022 22:15:19 GMT
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-f3b84e83ff904fb48b86d24ecb2278fc-d93a77f06fd21206-00
x-cloud-trace-context: f3b84e83ff904fb48b86d24ecb2278fc/15652955329431474694;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-xgnh7
x-styx-req-id: 3ae08936-2d68-11ed-baa3-5e0d87cff249
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12780-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.585266,VS0,VE38
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 1924
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 176 x 53, 8-bit/color RGBA, non-interlaced\012- data
Size:   1924
Md5:    460e1583fc870fdb8e17cb1935913da0
Sha1:   a9e1cd92410e64a5bab38f969bbe6c222fd23fc3
Sha256: 92ff9cf73a09fa3d1448ff8a977f2c1253c4d858995c3873ad20d305aa62ce43
                                        
                                            GET /wp-content/S0CGN22/img/footerbas.png HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/png
                                        
etag: "62d0b86c-5d7d"
expires: Mon, 05 Sep 2022 22:15:19 GMT
last-modified: Fri, 15 Jul 2022 00:44:28 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-c1ac9d373e264e9ca563943ef7a96191-b19ea8d30e879223-00
x-cloud-trace-context: c1ac9d373e264e9ca563943ef7a96191/12798852815468859939;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: 3ae1ae66-2d68-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:20 GMT
x-served-by: cache-ams12773-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.590663,VS0,VE34
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 23933
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1888 x 213, 8-bit/color RGBA, non-interlaced\012- data
Size:   23933
Md5:    878e876c4721e5ce60900a1dfbc86d24
Sha1:   1276176cf28dfbdf5df492ad2f7871ef4c50a2d6
Sha256: c462aaaa1015122ebee70701b3ba5ffac8545dc79e4ea249735ab0df324de724
                                        
                                            GET /ajax/libs/sweetalert/2.1.2/sweetalert.min.js HTTP/1.1 
Host: cdnjs.cloudflare.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://dev-hbvcffes.pantheonsite.io
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         104.17.25.14
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 05 Sep 2022 22:15:20 GMT
content-length: 10494
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03ff8-9f68"
last-modified: Mon, 04 May 2020 16:16:56 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 1642690
expires: Sat, 26 Aug 2023 22:15:20 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=D1Y5zwWhvJ2cu6Rb4pr2ynafOPcIbYLKo6z%2B%2FRfVvNF48WnIwda%2F%2FKelAfkcehuFlKkbU5qrJK0%2FuuIFZTLLOIhHpPr6XPI4jSXL655xXtGqRBnJPxXr%2BgsJttxzWqiVc8xsau9E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 746252b1ed8bfac0-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (40808), with no line terminators
Size:   10494
Md5:    cb97ae392c3fb56f4afc6d5f97da4237
Sha1:   38c35ad19fb9b7bacaff79840bef8638b6f52d85
Sha256: cbff330b47a3850bdc0c1047256d98921de83c11cbdfcdfd42a61d9424b3021d
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4530
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 22:15:20 GMT
Last-Modified: Mon, 05 Sep 2022 20:59:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278

                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 3879
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 22:15:20 GMT
Last-Modified: Mon, 05 Sep 2022 21:10:41 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /npm/sweetalert2@7.26.11/dist/sweetalert2.all.min.js HTTP/1.1 
Host: cdn.jsdelivr.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         151.101.85.229
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 7.26.11
x-jsd-version-type: version
etag: W/"f0e9-mwT0+YYEiqCevutFnxfidLvDzeY"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Sep 2022 22:15:20 GMT
age: 1799330
x-served-by: cache-fra19179-FRA, cache-bma1633-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
content-length: 14829
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Unicode text, UTF-8 text, with very long lines (34666)
Size:   14829
Md5:    4d09ebb6b98eea8864b0907f469b3915
Sha1:   0bd401bfe99c80a9675e3c60012cdb64a131197d
Sha256: d5d777125e123cd311ceb283f7f9c6a9d16fc593a704e089e31f12aa3570a35e
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:15:20 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /ajax/libs/jquery/3.5.1/jquery.min.js HTTP/1.1 
Host: ajax.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.106
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
                                        
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 31021
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 10:39:21 GMT
expires: Fri, 01 Sep 2023 10:39:21 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
age: 387359
last-modified: Fri, 08 May 2020 07:05:03 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   31021
Md5:    903bc7a7e510f87aa5d0201eb59a0832
Sha1:   ac9aa4dd94cde1bcba9037e94087138b127e41fc
Sha256: 41a7ac8150cc9f38421451d5143c1ffec7a1f1fafbf7a7fc0f51b98ad699cf8f
                                        
                                            POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1 
Host: ocsp.globalsign.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         104.18.21.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Mon, 05 Sep 2022 22:15:20 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "EE0499B1C29B0BC41ED11D4AB21230E47B72D191"
Expires: Tue, 06 Sep 2022 09:00:00 GMT
Last-Modified: Mon, 05 Sep 2022 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 98
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 746252b268dd1c06-OSL


--- Additional Info ---
Magic:  data
Size:   1462
Md5:    a22bb409527fcfc678583be7a93ea8cc
Sha1:   092e730222669fdb7712f7e1e2051351f000670b
Sha256: 8607c9e18d584a10187c7612a3d1e9c7ea52d6edca64d4f2df4f984ff8afb6df
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4530
Cache-Control: 'max-age=158059'
Date: Mon, 05 Sep 2022 22:15:20 GMT
Last-Modified: Mon, 05 Sep 2022 20:59:50 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 278

                                        
                                            GET /bootstrap/4.5.2/css/bootstrap.min.css HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
date: Mon, 05 Sep 2022 22:15:20 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
last-modified: Mon, 25 Jan 2021 22:04:11 GMT
cdn-cachedat: 08/03/2021 15:44:07
cdn-edgestorageid: 601
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-proxyver: 1.0
cdn-status: 200
cdn-requestid: 0c835de6853c3382b93a518481c93460
cdn-cache: HIT
cf-cache-status: HIT
age: 7860434
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 746252b23a81b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65326)
Size:   25407
Md5:    c066fadf894a769c7105b12394e4bddf
Sha1:   a3871c8e423c418e8622a867577bfc9c9a0b414c
Sha256: de5af05bfc3688141cf2ced0d737a7e7264ff4e4e85cbae11f16dd786eccf0e6
                                        
                                            POST / HTTP/1.1 
Host: ocsp.godaddy.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         192.124.249.24
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: Sucuri/Cloudproxy
Date: Mon, 05 Sep 2022 22:15:21 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 05 Sep 2022 18:59:44 GMT
Expires: Tue, 06 Sep 2022 18:59:44 GMT
ETag: "b8cc0f7d43801dd340c6f10464add1a82c335dff"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"


--- Additional Info ---
Magic:  data
Size:   1778
Md5:    4e6ac0383e6b384adb20b6586d93170a
Sha1:   b8cc0f7d43801dd340c6f10464add1a82c335dff
Sha256: c77a24baf99c23081d427017c021ce2d951397b20d0c956dea0783bad9563d6f
                                        
                                            GET /bot1785498940:AAGq9W5rUHkxaEtZPa-Cf8qSfH7nMWt7Y30/sendMessage?chat_id=1745366538&text=CLICK%20%20SG-24-08%20SNED%202 HTTP/1.1 
Host: api.telegram.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         149.154.167.220
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx/1.18.0
date: Mon, 05 Sep 2022 22:15:20 GMT
content-length: 290
strict-transport-security: max-age=31536000; includeSubDomains; preload
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-expose-headers: Content-Length,Content-Type,Date,Server,Connection
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   290
Md5:    d83f9ba96196b504212a0e368eca701d
Sha1:   8ab7c51a2e4ddc28c49415be6e1bff201d986c7f
Sha256: 57ecc54433afac493a16a19323a5a946956d6aceff38be593114c266e8bfb0d9
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Mon, 05 Sep 2022 21:38:16 GMT
Cache-Control: max-age=3600
Expires: Mon, 05 Sep 2022 22:30:15 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: HyAnNQ9O6kgAlX9EB8_-hjtO9KduK5ZX1zv6j_u0XignoSuI6JElgQ==
Age: 2224


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4929
Cache-Control: max-age=126812
Date: Mon, 05 Sep 2022 22:15:21 GMT
Etag: "6315ae14-1d7"
Expires: Wed, 07 Sep 2022 09:28:53 GMT
Last-Modified: Mon, 05 Sep 2022 08:06:44 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 94i6c1RNyu/isaAf8b66Ig==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.149.101.24
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: DzRf7baNyU3yot2BtpJ2A7RwZGM=

                                        
                                            GET /favicon.ico HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 302 Found
content-type: text/html; charset=UTF-8
                                        
cache-control: public, max-age=600
link: <https://dev-hbvcffes.pantheonsite.io/wp-json/>; rel="https://api.w.org/"
location: https://dev-hbvcffes.pantheonsite.io/wp-includes/images/w-logo-blue-white-bg.png
server: nginx
strict-transport-security: max-age=300
traceparent: 00-61c9327174d240189a84d195ef33e0dc-660c65b189f8d440-00
x-cloud-trace-context: 61c9327174d240189a84d195ef33e0dc/7353364104787579968;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-redirect-by: WordPress
x-styx-req-id: 3b1d05f5-2d68-11ed-b224-6292cfeb6104
date: Mon, 05 Sep 2022 22:15:21 GMT
x-served-by: cache-ams12759-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416121.983036,VS0,VE760
vary: Cookie, Cookie
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 0
X-Firefox-Spdy: h2

                                        
                                            GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1 
Host: dev-hbvcffes.pantheonsite.io
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://dev-hbvcffes.pantheonsite.io/wp-content/S0CGN22/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         23.185.0.4
HTTP/2 200 OK
content-type: image/png
                                        
etag: "62d0b69a-1017"
expires: Mon, 05 Sep 2022 22:15:20 GMT
last-modified: Fri, 15 Jul 2022 00:36:42 GMT
server: nginx
strict-transport-security: max-age=300
traceparent: 00-4f1d5ff5df444b508475e61c7ab738ed-1e1a076d2253b3d8-00
x-cloud-trace-context: 4f1d5ff5df444b508475e61c7ab738ed/2169054335841055704;o=0
x-pantheon-styx-hostname: styx-fe3fe4-c-5666485765-g24jv
x-styx-req-id: 3b93635a-2d68-11ed-b224-6292cfeb6104
cache-control: no-cache, must-revalidate
date: Mon, 05 Sep 2022 22:15:21 GMT
x-served-by: cache-ams21060-AMS, cache-bma1649-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662416122.758893,VS0,VE33
x-robots-tag: noindex
age: 0
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
content-length: 4119
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced\012- data
Size:   4119
Md5:    000bf649cc8f6bf27cfb04d1bcdcd3c7
Sha1:   d73d2f6d74ec6cdcbae07955592962e77d8ae814
Sha256: 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5013
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5013
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5013
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:15:22 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5013
Expires: Mon, 05 Sep 2022 23:38:55 GMT
Date: Mon, 05 Sep 2022 22:15:22 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:44:33 GMT
age: 1849
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6656
Md5:    983e705542fa78b4d5c876e0c1eada7e
Sha1:   5fc951e5236edd282d4975853ca35dab2e55fb17
Sha256: fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa64096ba-be1d-410c-8f5f-91e53e173c69.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8792
x-amzn-requestid: 32828d39-6bd8-4367-9f6e-e73c78866465
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-4EZSIAMFeAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-0ae6a63e21ac4c8659c3dee3;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FeVWXyGDdcDvZ82lyKDnkqAenGm40Eb1knTlhJpp5TVrEaoXypEuMQ==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "d378158dfa08278f1ffa477111c74a5dbb1d4f3c"
age: 1720
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8792
Md5:    82415c19dc5c495d88093346d9538ea0
Sha1:   d378158dfa08278f1ffa477111c74a5dbb1d4f3c
Sha256: cb31fff4e6845e445f30f2637e9c45b82af94767845e38a6d675c0651988971f
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7ad09c5e-a115-4ff7-9742-809e93046365.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4426
x-amzn-requestid: b5b68557-e46d-41cd-9b11-d996aabc0de7
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzfYTHHFIAMFjFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631145ce-1d3504367cf6ef724a345564;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 23:52:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GSRJIWisH465dPqbKyPj1iZk1jAu3RGrgwj1CX3X8A397zv9Nt0cHA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 08:13:35 GMT
age: 50507
etag: "fc766bca874a352a4acb569577d4cf6527f4f074"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4426
Md5:    c81f3df885bdee8cac46ea9495e6b63b
Sha1:   fc766bca874a352a4acb569577d4cf6527f4f074
Sha256: e21473f88c613ca33ba6bbe1e0cab338274a06744cdcb088f14873c972445b36
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fed40d152-6303-4f00-ad80-054a81ea5425.webp HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 6482
x-amzn-requestid: 5e5b342b-0224-4916-8656-237b4c90ae66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FaYIAMFzjw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-412f897b451130af70026eab;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kD_wcIHwmUDV9M9Pl2NtUwRw0CElnHhX6NGZ5PQlnchvdxpLAZhm0w==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "f8589eb3907582137d8b9373af745d80eddbf1bb"
age: 1720
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   6482
Md5:    0efc32eccbf76ac0d89f324d09a7fd1f
Sha1:   f8589eb3907582137d8b9373af745d80eddbf1bb
Sha256: ee0f5e56c97e50e1c20801ad0a5379982feef16a11137f784f404d14e9c65824
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56f82eaf-49aa-4cfd-ab46-894119225c29.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 13302
x-amzn-requestid: b3cc28ec-5792-4028-b62f-b24dd50a24af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5FLgoAMFo9w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-3ea9e3b364c0efe24b48e826;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: arLdjfE327MmTML3UwIQK2Y-ptUk35lzGyufht73gjkKYqbAxfUdEA==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:46:42 GMT
etag: "998cc906e470e1b8ec9b840ab5c3b93f1618a1e3"
age: 1720
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   13302
Md5:    6287f68a964668d9dcd418f0f55cfa41
Sha1:   998cc906e470e1b8ec9b840ab5c3b93f1618a1e3
Sha256: d1d6a242e8a5e3fa3166271473faa20fe2825f24f02a5e15c02180a066262b4c
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e36fad7-34cb-448b-b231-07f66a5adf7e.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12573
x-amzn-requestid: 93ac3b01-e2e3-462b-93d4-8f1bf949a015
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-5E5JIAMFTJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-7fa8ddcb4b17c5ff1c214b94;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qU3s1u1OYmhFyNM8dgd4R3mLfgN3VXlj7z0WGWFhmW-U00wuUld96w==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:23 GMT
age: 1799
etag: "3f3aad2cc71226b39549db1a9baa6837d4f1d897"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12573
Md5:    3fe4a321dcd6a94a637a528d74f9321a
Sha1:   3f3aad2cc71226b39549db1a9baa6837d4f1d897
Sha256: a19b6749429e8ecaeac8fc0849abc4d891bfc628489762b1619a3ee3064536e3
                                        
                                            GET /bootstrap/4.5.2/js/bootstrap.min.js HTTP/1.1 
Host: maxcdn.bootstrapcdn.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://dev-hbvcffes.pantheonsite.io/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         104.18.11.207
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
                                        
date: Mon, 05 Sep 2022 22:15:20 GMT
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 601, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:11 GMT
cdn-cachedat: 2021-04-23 06:18:12
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 635a5ba5b16f6b5cab614d07cc78dc4b
cdn-cache: HIT
cf-cache-status: HIT
age: 10526418
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 746252b23a85b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---