Overview

URL 104.211.183.247/
IP104.211.183.247
ASNMICROSOFT-CORP-MSN-AS-BLOCK
Location India
Report completed2022-09-04 01:08:02 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-04 2 104.211.183.247/ Malware
2022-09-04 2 104.211.183.247/js/bootstrap.min.js Malware
2022-09-04 2 104.211.183.247/js/Login/Login.js?V=1.1.7 Malware
2022-09-04 2 104.211.183.247/js/Pages/ForgotPassword.js?v=1.1.0 Malware
2022-09-04 2 104.211.183.247/js/jquery.min.js Malware
2022-09-04 2 104.211.183.247/Pages/GenerateCaptcha.ashx Malware
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (10)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-03 05:35:54 UTC 34.208.34.131
mnemonic passive DNS img-getpocket.cdn.mozilla.net (6) 1631 2017-09-01 03:40:57 UTC 2022-09-03 09:18:41 UTC 34.120.237.76
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-03 17:05:31 UTC 142.250.74.10
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-03 18:20:10 UTC 143.204.55.27
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-03 05:49:56 UTC 143.204.55.35
mnemonic passive DNS 104.211.183.247 (13) 0 2021-01-31 16:29:01 UTC 2021-01-31 16:29:01 UTC 104.211.183.247 Unknown ranking
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-03 14:30:54 UTC 93.184.220.29
mnemonic passive DNS r3.o.lencr.org (5) 344 2020-12-02 08:52:13 UTC 2022-09-03 05:00:20 UTC 23.36.76.226
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-03 05:01:24 UTC 34.117.237.239
mnemonic passive DNS ocsp.pki.goog (2) 175 2017-06-14 07:23:31 UTC 2022-09-03 04:59:51 UTC 142.250.74.3


Recent reports on same IP/ASN/Domain/Screenshot

Last 1 reports on IP: 104.211.183.247

Date UQ / IDS / BL URL IP
2022-09-04 01:08:02 +0000
0 - 0 - 6 104.211.183.247/ 104.211.183.247

Last 5 reports on ASN: MICROSOFT-CORP-MSN-AS-BLOCK

Date UQ / IDS / BL URL IP
2022-12-03 22:39:57 +0000
0 - 0 - 2 www.dd365b.net/ 20.187.105.119
2022-12-03 22:39:12 +0000
0 - 0 - 1 imagehost.pics/09H3DF 52.173.151.229
2022-12-03 22:31:10 +0000
0 - 0 - 2 bimcellzm.net/ 20.107.216.115
2022-12-03 22:29:31 +0000
0 - 0 - 12 grupbokpviral.my.id/ 20.198.224.6
2022-12-03 22:28:05 +0000
0 - 0 - 26 www.premier.com.pk/ 20.74.133.177

Last 1 reports on domain: 104.211.183.247.

Date UQ / IDS / BL URL IP
2022-09-04 01:08:02 +0000
0 - 0 - 6 104.211.183.247/ 104.211.183.247

No other reports with similar screenshot



JavaScript

Executed Scripts (7)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (33)


Request Response
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12337
Expires: Sun, 04 Sep 2022 04:33:28 GMT
Date: Sun, 04 Sep 2022 01:07:51 GMT
Connection: keep-alive

                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 00:49:29 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 83a23d85c009b0c0e3626072e9f997fe.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qMMJdI529syeLsnbEJVyZX8804dyaJTe1xIDrnx6WxSVhHw_3Z9MaA==
Age: 1102


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xaePbTqaSxvGrKjO4ItYSJbMR-Kj8q5NxUWrncSQHlYhv6WEd4S_lQ==
age: 85954
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET / HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
                                        
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 2155


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (426), with CRLF line terminators
Size:   2155
Md5:    53f5e559128d4185aaf4864111c3c0ea
Sha1:   85efb40dbf7f6380c1b592eda1182399c79903e5
Sha256: 6429d6284fe0af621c289acb5353da74ef4c1211c6a9831ffeb5da50552fce29

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Sun, 04 Sep 2022 01:07:51 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Sep 2022 01:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Sun, 04 Sep 2022 01:07:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.27
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 00:38:16 GMT
Expires: Sun, 04 Sep 2022 00:52:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: LPvj3zWl9hK6OGgl2U26b6_ZUeMzWpyn-j0gZOvwDFmZXVcjmd-fyg==
Age: 1776


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            GET /css/font-awesome.min.css HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Thu, 12 Apr 2018 06:19:27 GMT
Accept-Ranges: bytes
ETag: "1ed8943526d2d31:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 8325


--- Additional Info ---
Magic:  ASCII text, with very long lines (30837)
Size:   8325
Md5:    122408ebb5ce04f025c6eb03746809e4
Sha1:   f1be50449509d130f816096fa89f4ae6acf5bf3a
Sha256: 71419fbd8caa026b000ad2efd64f2e2038263d93e8cf1f038ad5cfb1ee9400d3
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 4471
Cache-Control: 'max-age=158059'
Date: Sun, 04 Sep 2022 01:07:52 GMT
Last-Modified: Sat, 03 Sep 2022 23:53:21 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /css/style.css HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Wed, 03 Jul 2019 13:03:42 GMT
Accept-Ranges: bytes
ETag: "2cb74bbd9f31d51:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 8578


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with very long lines (436), with CRLF line terminators
Size:   8578
Md5:    058adcfe17628dd3855218d26192670e
Sha1:   8d0df335fc850a1e5e1124c1b6297767f45fbe4f
Sha256: f8a8ba69ff4b16d6ca22ab09046c054432c5938e14bbab87a1df66f253d6d56e
                                        
                                            GET /css/animate.css HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Thu, 12 Apr 2018 06:19:27 GMT
Accept-Ranges: bytes
ETag: "cbb08d3526d2d31:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 7986


--- Additional Info ---
Magic:  ASCII text
Size:   7986
Md5:    d91552414c869689303135073a73fbe1
Sha1:   04e2007c6b481c5e3310f555005bd6bad30c19c7
Sha256: cc35a85bf502eff3a5f9a4adeec7499e0aa677561cfc11a1c9a77eacad12b3b0
                                        
                                            GET /js/bootstrap.min.js HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Thu, 12 Apr 2018 06:19:49 GMT
Accept-Ranges: bytes
ETag: "9f77ce4226d2d31:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 13045


--- Additional Info ---
Magic:  ASCII text, with very long lines (32033)
Size:   13045
Md5:    3f9ec5c445cf8f77a6390449a7541505
Sha1:   669418484f3303459663923b63a579a879727b05
Sha256: d93d22df61a1ecf911a54330835bb468fb26e5f10e0555cb48a464dfe69d7648

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /js/Login/Login.js?V=1.1.7 HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Mon, 19 Oct 2020 13:34:37 GMT
Accept-Ranges: bytes
ETag: "1a279f961ca6d61:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 1012


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   1012
Md5:    d0afcd4c6515e7b7cfaf187c07c6c9c4
Sha1:   e0cea095b76c7f22d71a350194085d22ca910b6f
Sha256: 11680b70f8b2f7561261de865b53dd2dfb3faa1c9eb4db38dab23a865bf01972

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /css/bootstrap.min.css HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: text/css
                                        
Content-Encoding: gzip
Last-Modified: Thu, 12 Apr 2018 06:19:27 GMT
Accept-Ranges: bytes
ETag: "5615903526d2d31:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 27676


--- Additional Info ---
Magic:  ASCII text, with very long lines (65371)
Size:   27676
Md5:    138518634e038b26320dc8380a716168
Sha1:   d7a57926f2f2beb9fd307f9c71dd8d4fb019feea
Sha256: f612e751b82e3ed8f57a1e9f2f44227752a98dceab22573b14fab2806078bce4
                                        
                                            GET /js/Pages/ForgotPassword.js?v=1.1.0 HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Thu, 10 May 2018 07:47:51 GMT
Accept-Ranges: bytes
ETag: "d9cbc33233e8d31:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 908


--- Additional Info ---
Magic:  Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Size:   908
Md5:    f13342a1cac2df8a1b34ee0fa6c422f8
Sha1:   d887d94f6568dbf0a65c5c4bbd6fdf8592d9ce8a
Sha256: 93cdd425a9b3e8337d6068d8daa6711d6f2eddfed3174df9e083279d1ab13a0e

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8HPkTmGcVEwzXGSHk0XKsw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         34.208.34.131
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BPu5vpxLIhX4T31IRdS4NE2eIkk=

                                        
                                            GET /js/jquery.min.js HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: application/javascript
                                        
Content-Encoding: gzip
Last-Modified: Thu, 12 Apr 2018 06:19:49 GMT
Accept-Ranges: bytes
ETag: "5828df4226d2d31:0"
Vary: Accept-Encoding
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:52 GMT
Content-Length: 42356


--- Additional Info ---
Magic:  ASCII text, with very long lines (38629), with CRLF line terminators
Size:   42356
Md5:    0c02d4a205cf3eb11e8710188e33aa0b
Sha1:   84bd837a1179403ecec8294d83ff8eeaa8e923ca
Sha256: 837f1607aa89b7f14d61f7c89a7b7e770e73f29acee304b0b44c8b9508e8cc2f

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /images/maveric-memo-board-logo.png HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: image/png
                                        
Last-Modified: Thu, 12 Apr 2018 06:19:33 GMT
Accept-Ranges: bytes
ETag: "115393926d2d31:0"
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:53 GMT
Content-Length: 9629


--- Additional Info ---
Magic:  PNG image data, 155 x 47, 8-bit/color RGBA, non-interlaced\012- data
Size:   9629
Md5:    4683db7d47ea0ce7dd7da6619ecab0a6
Sha1:   c32faf81d091070a03904c5fa93826f87a6701ea
Sha256: 4c8ec318f243b3cbd74a998c1e39cf9c599ee07a115279a5b9f308d1f9933283
                                        
                                            GET /Pages/GenerateCaptcha.ashx HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: image/jpeg
                                        
Cache-Control: private
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:53 GMT
Content-Length: 2791


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 220x70, components 3\012- data
Size:   2791
Md5:    8930905ef3c08971e918b3a5e8a360e2
Sha1:   3a2e6e2b1d04e5388bda063e6a1a8ba06da90c73
Sha256: 1ba307b8c183adbaabe30e908e6aa9fe24ebc680b40deaec12c19bc05c1487e6

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://104.211.183.247/css/font-awesome.min.css

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: font/x-woff2
                                        
Last-Modified: Thu, 12 Apr 2018 06:19:28 GMT
Accept-Ranges: bytes
ETag: "94a693626d2d31:0"
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:53 GMT
Content-Length: 77160


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size:   77160
Md5:    af7ae505a9eed503f8b8e6982036873e
Sha1:   d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
Sha256: 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
                                        
                                            GET /favicon.ico HTTP/1.1 
Host: 104.211.183.247
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://104.211.183.247/

                                         
                                         104.211.183.247
HTTP/1.1 200 OK
Content-Type: image/x-icon
                                        
Last-Modified: Thu, 12 Apr 2018 06:19:31 GMT
Accept-Ranges: bytes
ETag: "51aced3726d2d31:0"
Server: Score Webserver
X-Xss-Protection: 1; mode=block
Date: Sun, 04 Sep 2022 01:07:53 GMT
Content-Length: 1150


--- Additional Info ---
Magic:  MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Size:   1150
Md5:    ed48b88ec68266202ea78144db516220
Sha1:   49a30c82b549c522f93039e2e46dbc2a7767f42f
Sha256: fc5f21a68746d12e33dc06865cbbdf2fbec160eb125da64c4fa5af408ed681cb
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11836
Expires: Sun, 04 Sep 2022 04:25:10 GMT
Date: Sun, 04 Sep 2022 01:07:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11836
Expires: Sun, 04 Sep 2022 04:25:10 GMT
Date: Sun, 04 Sep 2022 01:07:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11836
Expires: Sun, 04 Sep 2022 04:25:10 GMT
Date: Sun, 04 Sep 2022 01:07:54 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11836
Expires: Sun, 04 Sep 2022 04:25:10 GMT
Date: Sun, 04 Sep 2022 01:07:54 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8931
x-amzn-requestid: cfc0940f-ad6a-4535-91b7-70b200af68d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwGEVEoAMFriw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-5b6e6e5e3401eba533fb63df;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -ASFa6a22qh9wxe5u-hQxXe9R7JSyBVFLZb6291gbrUeftSsYDXAJA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:31:42 GMT
etag: "5d5c724e26af57967b9a132a77d3986ba8d6ed9c"
age: 9372
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8931
Md5:    0eecb70391b63b662d13355e32d95ea1
Sha1:   5d5c724e26af57967b9a132a77d3986ba8d6ed9c
Sha256: 2c7f2aa1c725a5d39daf44ee746bb24b5c15aab41c67cf160814f7f87d1aacdf
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1814521f-0914-48f7-8ea7-8c2d8155c055.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 10147
x-amzn-requestid: 7c2c3756-fc7b-4386-8c88-f1b42beed37a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XxLzHEAHoAMFV8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631059ad-063448962d443e107716b726;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 07:05:17 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZGR4HPl3KOfSdZzialXKeNrH_DzJzUvyLlwFtx0MQOp0VNsOtdC-bg==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 08:04:39 GMT
age: 61395
etag: "19288de373e2bc69a51c9e0c6f49f5cf4e0d8759"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   10147
Md5:    d8aa56bbbb56df10ff381fc5dd250e09
Sha1:   19288de373e2bc69a51c9e0c6f49f5cf4e0d8759
Sha256: 68c4508940b207a3e1d32a38a9f82b1fbabbb97430fe0a5e2ddc75d62c4bdfcc
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F48ddd9c9-1923-443a-8dbf-f936630b1f9b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4615
x-amzn-requestid: a28cc354-9caf-45e8-805e-a9d076f4c55d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wxXFsZIAMFbVQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c808-118caff17f74408d6ba251b9;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -lSmGdhagYg_JEI3Q5xybMrcddHCBhA_yGmuvYWQcoUqJdM3jJ_mrA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
age: 11987
etag: "c9e50dd6d25825a3fff305261dc8f85a7113150a"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4615
Md5:    7602d55b1969744668194d6433ad2490
Sha1:   c9e50dd6d25825a3fff305261dc8f85a7113150a
Sha256: 9ab721edb038aad74dabe751f7790fe21915884893ea9f471e407ae526495701
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdb23e94d-8ec7-469f-94d2-e08f8feef5d5.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 9428
x-amzn-requestid: 050a7e34-6ee3-4562-bd9d-8122b0432cc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjaFXEoAMFjnQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7af-4915a10726ffab79380d6a52;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: M_WqsKzaeYjV_bY_1ZYgElrRKbQGetGVvkO8wf1kMXNxPyuFOnmwsA==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:17:08 GMT
age: 10246
etag: "3578b5c8eba646e94f574a996703d6b7b4911ab7"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   9428
Md5:    e571197d8c99877f806a60c79368d657
Sha1:   3578b5c8eba646e94f574a996703d6b7b4911ab7
Sha256: 290a444ba0f434f25313d9ce96f93bcb749cb5c7d8bad51a63c2775539b594fb
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8688
x-amzn-requestid: e408351e-ba6c-4e55-815d-449af808282f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5yMEFBLoAMFtqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313ca4d-13831d8572a3b3cf54a0e747;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:42:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GFM9jerDkTPdhlUTm99E7Lpksw2ZGnV81bNVaZLvWSAiRNDNtkZi4g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
age: 11987
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8688
Md5:    6bb4b1d74f1443bc3328301ab3ae6464
Sha1:   2768253dacaaad6cb498c6b2eb7694208b0ce0a6
Sha256: 07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M9Y8U9vqVs1ATiPP9jLPybTJ-xwC--5oiRUpj9-imTWfh6_rmtL5Kw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:58:42 GMT
age: 11352
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   14855
Md5:    ca50f9c56ff869b0b63ca71b1a9f8170
Sha1:   13b16ca74113dfd52ccf23e6bb39307fc713f984
Sha256: 76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
                                        
                                            GET /css?family=PT+Sans:400,700 HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://104.211.183.247/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 01:07:52 GMT
date: Sun, 04 Sep 2022 01:07:52 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---