urlquery - report: 139.162.33.82/

Overview

URL	139.162.33.82/
IP	139.162.33.82
ASN	Linode, LLC
Location	Singapore
Report completed	2022-07-07 02:09:15 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Added / Verified	Severity	Host	Comment
2022-07-07	2	139.162.33.82/	Phishing
2022-07-07	2	139.162.33.82/js/jquery.animate-enhanced.min.js	Phishing
2022-07-07	2	139.162.33.82/js/retina.min.js	Phishing
2022-07-07	2	139.162.33.82/js/functions.js	Phishing
2022-07-07	2	139.162.33.82/assets/validate.js	Phishing
2022-07-07	2	139.162.33.82/js/jquery-2.2.4.min.js	Phishing
2022-07-07	2	139.162.33.82/js/jquery.easing.1.3.min.js	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

Files

No files detected

Passive DNS (10)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	ocsp.pki.goog (6)	175	2017-06-14 07:23:31 UTC	2022-07-06 04:42:12 UTC	142.250.74.3
[Mnemonic Passive DNS]	fonts.googleapis.com (1)	8877	2017-01-30 04:59:43 UTC	2019-10-16 05:12:41 UTC	216.58.211.10
[Mnemonic Passive DNS]	fonts.gstatic.com (3)	0	2017-01-30 04:59:51 UTC	2022-07-06 04:41:59 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-06 04:47:23 UTC	52.13.69.101
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.35
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-06 04:55:23 UTC	54.230.111.7
[Mnemonic Passive DNS]	139.162.33.82 (13)	0	No data	No data	139.162.33.82	Unknown ranking
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-06 17:02:11 UTC	34.120.237.76
[Mnemonic Passive DNS]	r3.o.lencr.org (4)	344	2020-12-02 08:52:13 UTC	2022-07-06 04:41:34 UTC	23.36.76.226
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239

Recent reports on same IP/ASN/Domain

No other reports on IP: 139.162.33.82

Last 10 reports on ASN: Linode, LLC

Date	UQ / IDS / BL	URL	IP
2022-08-12 11:33:27 +0000	0 - 0 - 2	hservice.com/	72.14.185.43
2022-08-12 11:32:27 +0000	0 - 0 - 3	aapodiatry.com/	45.33.18.44
2022-08-12 11:06:05 +0000	0 - 0 - 2	boxypty.com/	45.79.21.66
2022-08-12 11:05:43 +0000	0 - 0 - 2	cown.com/	45.79.19.196
2022-08-12 11:04:34 +0000	0 - 0 - 4	getme.co.nz/mtb/login.php	45.79.238.21
2022-08-12 11:03:20 +0000	0 - 0 - 2	psncodegen.org/	45.33.23.183
2022-08-12 10:15:50 +0000	0 - 0 - 1	gqm.in/mtm/direct/.eJxdyTEOgzAMheG7eKQR7ghUPU (...)	198.58.118.167
2022-08-12 10:15:31 +0000	0 - 0 - 1	opito.co.uk/mtm/direct/.eJxdikEKAjEMRe-S5Vgal (...)	45.56.79.23
2022-08-12 10:15:09 +0000	0 - 0 - 1	guysxxx.com/mtm/direct/.eJxdikEOwjAMBP_iY4lqj (...)	72.14.185.43
2022-08-12 10:06:24 +0000	0 - 0 - 3	htmail.com/	45.33.18.44

No other reports on domain: 139.162.33.82.

JavaScript

Executed Scripts (6)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (38)

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Backoff, Content-Type, Content-Length, Alert Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Thu, 07 Jul 2022 02:04:23 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: vOBOYcZlYBxi25conJpOGSs5G0TqYuHyYgekx2tnCZEcde-rnsYG9Q== Age: 279 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "78A5DCFAF2D93D9C87CFB6DBC56100E9F22965D4500554BA65F71CB7D84DD666" Last-Modified: Wed, 06 Jul 2022 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3398 Expires: Thu, 07 Jul 2022 03:05:40 GMT Date: Thu, 07 Jul 2022 02:09:02 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 1bd93fff937cfdc8744b841243b93fd5 Sha1: 240c31be9cdaeb5d1e4f9e3558c812ba007e6d22 Sha256: 78a5dcfaf2d93d9c87cfb6dbc56100e9f22965d4500554ba65f71cb7d84dd666
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.7 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Wed, 06 Jul 2022 03:26:46 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: _pMwSjhe8WzI7Ld_ImFgynQO0IBOI9BeCYxkrmLkZuI2U5ZwWgBNug== age: 81737 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Thu, 07 Jul 2022 02:09:02 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET / HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size: 1133 Md5: 7c522219a1b3dfd24108a16abe91ab6b$ 139.162.33.82 HTTP/1.1 200 OK Content-Type: text/html Date: Thu, 07 Jul 2022 02:09:02 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:25:24 GMT ETag: "cfb-58735ded03540-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 1133 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text Size: 1133 Md5: 7c522219a1b3dfd24108a16abe91ab6b Sha1: 706f05c7ced5efe68ecd728c5c215b32dc365247 Sha256: 88d19cf1caa366bef01a564d0ff382f7f54af03ef4882ee59ac79f2bf26d89ce Alerts: Blocklists: - fortinet: Phishing
GET /css/style.css HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: text/css Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:25:28 GMT ETag: "1bb8-58735df0cf023-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 2262 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 2262 Md5: 42bd36ab59b65f039b8d1978efe2d2af Sha1: 4c6e3286d586bd54621aeedbe4b92bd4c7812a6a Sha256: a7bbf14093147386afe40985ff525d61a5c43481c7fdb66181f12749eb1a5ccc
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 02:09:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 6f376d1c4b10affe09f9775324590270 Sha1: cb440fe021fe90b2a57b60c60092dc82837655d8 Sha256: 0cb1e0708015efbcdcb66672de2b9bd9d7923508b071166275f66f69b0de5394
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Thu, 07 Jul 2022 01:34:57 GMT Cache-Control: max-age=3600 Expires: Thu, 07 Jul 2022 02:08:40 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 6259d2cd8a5947ad41a420527bbed7a6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: mk4bCqxTfXXoNkQm49DOPZNbj3VvUMdeFz_V3myNvXWaXGuelZqvBw== Age: 2047 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /fontello/css/animation.css HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: text/css Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:25:35 GMT ETag: "741-58735df7b696a-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 232 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 232 Md5: e155549c56360a55aa4f067dce4e3ac6 Sha1: 09cca3d604d0137d5d4b39eef04fa4b61cb9cac7 Sha256: 4d77d6c6ea5107bd4c5e8f326408931eec84fd5b5c0c270288b8e593ca978008
GET /css/bootstrap.min.css HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: text/css Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:25:32 GMT ETag: "1c99e-58735df41db07-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 19218 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (65371) Size: 19218 Md5: 5fc03000911b3de28e7fb9e9d28b7e7e Sha1: 463cc4d8e3d2bf4d873170759b8223936e1ede15 Sha256: d82e3ff0041c67353c91f54d05d8ceb13682e23f22390b1b1be24a7f588dd3dd
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 02:09:03 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 737decf964c10ece804f79a16c27f8db Sha1: 37ca8f0451d8ecbe91d673d0c2de8f6c119adc82 Sha256: 4ff45d0b28462bd0f6c135fcf8d8887952a4b0bc1badc11bb1b17ddac796891f
GET /js/jquery.animate-enhanced.min.js HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:13 GMT ETag: "1d55-58735e1bf2f6c-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 3091 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (550) Size: 3091 Md5: ddbd9c9ce544ddd93b9cfacdc4535ace Sha1: 087bfc82f04dc2841788f4e4ba58603cf3ccf850 Sha256: 87d4fa64596cfd32ff991162d411777987dce2ac358f25ab0ce4c25c94f6f489 Alerts: Blocklists: - fortinet: Phishing
GET /js/retina.min.js HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:17 GMT ETag: "bb1-58735e1f68b50-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 1202 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (2770) Size: 1202 Md5: 86f6aa9596ac324bf32d7f4de8b50bf2 Sha1: 583800d0fce2668def416bf5a15ef43eaff09b79 Sha256: 7456e3fef67779863024505d0dfb6d673fcb10edfadda55daabf3531d5f0072c Alerts: Blocklists: - fortinet: Phishing
GET /js/functions.js HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:05 GMT ETag: "34a-58735e1409925-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 367 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: exported SGML document, ASCII text Size: 367 Md5: 4ba8ec5756193f41eb8accd7d663d5ec Sha1: ab8f82d92575972ae7f360f7cb929bed7a01983c Sha256: b860024b4f699bf9e579faca249e4dbcd247bb47d0dc8431a591e8479a946822 Alerts: Blocklists: - fortinet: Phishing
GET /css?family=Poppins:400,300,500,600,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://139.162.33.82/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	216.58.211.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Thu, 07 Jul 2022 02:09:03 GMT date: Thu, 07 Jul 2022 02:09:03 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 981 Md5: 85ac051ebaa8aeb77e7031e690a0ff9d Sha1: b24d5fe80a4740066c394d1cf3340e85454dabd4 Sha256: a3dff66133944ce18b2c9ffd50e02e1bbef099b4a10aae8bd691c1118b3b8ab6
GET /fontello/css/fontello.css HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: text/css Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:25:44 GMT ETag: "1b3f1-58735dffd6ab2-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 19792 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive --- Additional Info --- Magic: Unicode text, UTF-8 text Size: 19792 Md5: f450f327a49b7aa192c870cf619ed1f2 Sha1: 826bd3a6d7e67cf7b7f2764d274b8f6415e0e107 Sha256: e4dcdb5089b1c006eb37570826dfc22bad5ecef65b8071ebcae3d1741de11774
GET /assets/validate.js HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:19 GMT ETag: "345-58735e2116651-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 442 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text Size: 442 Md5: 32bd96ed91e5049f6bd168ddc2f36196 Sha1: 798ccfb69a5d94ac667090fb0022b8e277770487 Sha256: d96f41deb999fee1728f4dd042465610efbb4621a8b94554579c470b7033bad3 Alerts: Blocklists: - fortinet: Phishing
GET /js/jquery-2.2.4.min.js HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:16 GMT ETag: "14e49-58735e1dfd6ce-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 29820 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (32065) Size: 29820 Md5: 0e7c0345248fe646b875ad33e2888daf Sha1: aa476198cde59b7ccc4c2a52a9cf48fc69aea420 Sha256: 4bfcddc5c6b86a9834d822db8b3ce2d97d3bba3f0e83621691ed0666a1c771ee Alerts: Blocklists: - fortinet: Phishing
GET /js/jquery.easing.1.3.min.js HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	139.162.33.82 HTTP/1.1 200 OK Content-Type: application/javascript Date: Thu, 07 Jul 2022 02:09:03 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:15 GMT ETag: "3e5-58735e1d6320e-gzip" Accept-Ranges: bytes Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 530 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: ASCII text, with very long lines (997), with no line terminators Size: 530 Md5: 2c5bb6d72fe9347b74d987b0b80906d0 Sha1: 25246c78fae98349d7c4576382b714dbc838c7d6 Sha256: d94c560470abcea55e1f9e1001046d23bcbb2ff6a1f2db57377489e54c3dac7c Alerts: Blocklists: - fortinet: Phishing
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 02:09:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 02:09:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 02:09:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET /s/poppins/v1/yQWaOD4iNU5NTY0apN-qj_k_vArhqVIZ0nv9q090hN8.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://139.162.33.82 Connection: keep-alive Referer: http://139.162.33.82/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 13988, version 2.0\012- data Size: 13988 Md5: 14e5dbab8e2e8259e8f68a6d46d2a4d2$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 13988 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 05 Jul 2022 11:02:40 GMT expires: Wed, 05 Jul 2023 11:02:40 GMT cache-control: public, max-age=31536000 age: 140784 last-modified: Wed, 03 Jun 2015 22:54:37 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 13988, version 2.0\012- data Size: 13988 Md5: 14e5dbab8e2e8259e8f68a6d46d2a4d2 Sha1: 458963b110b03c63b9497a6aeb810b7468b757ca Sha256: e3cc6223f76dac1abe95f64280756f04739beb1c4fd36c7e53169b4f2c7959eb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLDz8Z1xlFQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://139.162.33.82 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data Size: 7840 Md5: 8d91ec1ca2d8b56640a47117e313a3e9$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 7840 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 06 Jul 2022 19:31:00 GMT expires: Thu, 06 Jul 2023 19:31:00 GMT cache-control: public, max-age=31536000 age: 23884 last-modified: Wed, 27 Apr 2022 16:51:55 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 7840, version 1.0\012- data Size: 7840 Md5: 8d91ec1ca2d8b56640a47117e313a3e9 Sha1: a9e9bafe64666f4595051a0e895b47a5fa39e67e Sha256: 78bc3aa78faec288bbb3bf26c9a0fa4eb67b1e69da94a17233c5cab60525efdb
GET /s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://139.162.33.82 Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Size: 7816 Md5: 25b0e113ca7cce3770d542736db26368$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 7816 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Wed, 06 Jul 2022 19:30:58 GMT expires: Thu, 06 Jul 2023 19:30:58 GMT cache-control: public, max-age=31536000 age: 23886 last-modified: Wed, 27 Apr 2022 16:11:40 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data Size: 7816 Md5: 25b0e113ca7cce3770d542736db26368 Sha1: cb726212d5d525021752a1d8470a0fb593e0c49e Sha256: 9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Thu, 07 Jul 2022 02:09:04 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: lFUb1r2OSQwpOmJuZuEJDA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	52.13.69.101 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 5MoFk5L3t4GdshEvEKMyR1cClAY= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/favicon.ico HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://139.162.33.82/	$Magic: MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size: 1150 Md5: 1668e6cf36f672d6cc0f0d4cd7cb30f2$ 139.162.33.82 HTTP/1.1 200 OK Content-Type: image/vnd.microsoft.icon Date: Thu, 07 Jul 2022 02:09:04 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:25:53 GMT ETag: "47e-58735e08b81ba" Accept-Ranges: bytes Content-Length: 1150 Keep-Alive: timeout=5, max=99 Connection: Keep-Alive --- Additional Info --- Magic: MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data Size: 1150 Md5: 1668e6cf36f672d6cc0f0d4cd7cb30f2 Sha1: 2403b06244e37f128ab531a46e92d1b5556a141f Sha256: 3d6408acfbaa818d8e9e9c06388672c90602f31da57d0fa4a8f83d5acf2c6bcd
GET /fontello/font/fontello.woff?32974303 HTTP/1.1 Host: 139.162.33.82 User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: http://139.162.33.82/fontello/css/fontello.css	$Magic: Web Open Font Format, TrueType, length 320576, version 1.0\012- data Size: 320576 Md5: 36d4af800f1c8ec5601c53081b86e03d$ 139.162.33.82 HTTP/1.1 200 OK Content-Type: application/font-woff Date: Thu, 07 Jul 2022 02:09:04 GMT Server: Apache/2.4.34 (Ubuntu) Last-Modified: Tue, 23 Apr 2019 17:26:03 GMT ETag: "4e440-58735e12233e3" Accept-Ranges: bytes Content-Length: 320576 Keep-Alive: timeout=5, max=98 Connection: Keep-Alive --- Additional Info --- Magic: Web Open Font Format, TrueType, length 320576, version 1.0\012- data Size: 320576 Md5: 36d4af800f1c8ec5601c53081b86e03d Sha1: 0a1affe06c4c712f5ed4e220a1730c7b55c88aab Sha256: 2c62a118e82484e6ddbd0c5abe9e870278335d9efa2d309d884cfb0122efe7ed
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15790 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 02:09:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15790 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 02:09:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "E96EA592111AAC8DB4D301EA1E1DEF1043D15D8774C4224D707FB21885E98909" Last-Modified: Wed, 06 Jul 2022 19:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=15790 Expires: Thu, 07 Jul 2022 06:32:15 GMT Date: Thu, 07 Jul 2022 02:09:05 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: c5a2dbe44b8c2efb78582d19feb5623d Sha1: 4d1990af3e155e664e056fa0ab2c88c3d6e7569d Sha256: e96ea592111aac8db4d301ea1e1def1043d15d8774c4224d707fb21885e98909
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac08270-54ba-4f73-b0f7-aeafa1c8f6f2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8883 Md5: ec5268bbe1cfa280827c03fc8483ddfa$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8883 x-amzn-requestid: 04df9308-5ff1-411f-b6b1-caeab8a0a040 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UoJAlEl3IAMFqMg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bfeed0-6383202a6ffb01f8736e5bd8;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 07:08:00 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: AXSexXyFVkbQ0sqsWcrKFKPvRxAjWT02qfq32vyCOdOKx6dtWde9Bg== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 68fadeb91f97256bb67b03bfca74d830.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 08:16:51 GMT age: 64334 etag: "dedb61705eb0330ad53922d1746bd159c2957f9d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8883 Md5: ec5268bbe1cfa280827c03fc8483ddfa Sha1: dedb61705eb0330ad53922d1746bd159c2957f9d Sha256: bdb3c340ae635640a610a9d702fdf904a26ce5d8c6c750e9c8a76078abe19a01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F13136825-0301-44c6-8c81-faf21628fe4c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6737 Md5: 44f59062cacc44be268845c493de29de$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6737 x-amzn-requestid: 9a9c33df-daa2-49fb-ba8e-fd5a3149828e x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UeP9ZG93oAMFX6A= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bbf9ef-248528170cf451be2662dbef;Sampled=0 x-amzn-remapped-date: Wed, 29 Jun 2022 07:06:23 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: GZWZ5vCdHbLeGN4FdZbd8ysfjqcGd-7MsBW_steUpJ38jyLd16JNtw== via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 06:45:43 GMT age: 69802 etag: "5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6737 Md5: 44f59062cacc44be268845c493de29de Sha1: 5e2f835320ab350cdd1c3ad1ceb71db2bb27b84f Sha256: c37305dfa7a241e526c7246a6eb71360dbfa2fe5d7f369f37ef7ddbfe1b97749
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1b3c96c9-a522-4ac7-b26d-8a493fdad54e.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5833 Md5: 0c8f6d61cb2fa1b87748d6ea53f21678$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 5833 x-amzn-requestid: b1906d58-4339-4e95-933b-111b98d7e7f3 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U3UEfHnwIAMFSNA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c60082-7ae16f081c0a62cc04191bf0;Sampled=0 x-amzn-remapped-date: Wed, 06 Jul 2022 21:37:06 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 9f1t_-f8XyBhRAVJJ5ehuh092td7RE4XCCVgW0ZGoI9kJXn_HE0hOA== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 22:03:50 GMT age: 14715 etag: "9e45ca5390279272ab7991b250cd035c569db6c9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 5833 Md5: 0c8f6d61cb2fa1b87748d6ea53f21678 Sha1: 9e45ca5390279272ab7991b250cd035c569db6c9 Sha256: 1f909a49d5f85085e8ebc982bf8e2d0fc4f94b2f01946d0c7dbb232020ce5e8f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5943e946-454d-4fa2-9a42-3742d5c15b9c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8185 Md5: 71f575ec1945ef97114e5125f7f46bec$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 8185 x-amzn-requestid: 4175b120-06ce-4a9c-bc4e-03631c38f97b x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: UoJB0FzDoAMFUTg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62bfeed8-705a0dc35090e183285bfa9a;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 07:08:08 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: noyuVo7-k6XK-GX49yRV5JSF3UzqNjEpQ8N8b6Tv5iUok1C9rMFOrQ== via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 08:38:20 GMT age: 63045 etag: "71d91b56c51c8e6c72049088c5f48d047e3c2528" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8185 Md5: 71f575ec1945ef97114e5125f7f46bec Sha1: 71d91b56c51c8e6c72049088c5f48d047e3c2528 Sha256: b0aafa06050270acd35bd434d7418ca1c6ed4b66c0680302da29477d78bc4578
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7633309-5f51-4741-aec1-77223d21def2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6219 Md5: 6a5de65d5b600c0785e0415233eb2eae$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6219 x-amzn-requestid: 5c99b20a-4356-4613-a812-994358d8d2f2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U3UD1FbRIAMFcOg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c6007e-63e05e65678eab473ef18a0f;Sampled=0 x-amzn-remapped-date: Wed, 06 Jul 2022 21:37:02 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: OIMI0B5-SyhCAhrXYNb9kwvL1DMDz7RIeeR1OAFsrzBUHuWn8XMaUA== via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 21:54:05 GMT age: 15300 etag: "7721f00647b911279b6f42bf463eed176e389622" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6219 Md5: 6a5de65d5b600c0785e0415233eb2eae Sha1: 7721f00647b911279b6f42bf463eed176e389622 Sha256: 835ba3151816b32ab23e3d8a215d0dee67dd070428bad5bb3ab596b67a1373b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F55296720-850d-4c76-80ba-8ba3ae30843c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6616 Md5: 29efcb55217b2007c1327183550dd5c3$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6616 x-amzn-requestid: 5426d14d-8a96-416d-84ff-945c7ab3bd52 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U3UCnGMiIAMFeGw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c60076-0b292802325c3c19636f8e1f;Sampled=0 x-amzn-remapped-date: Wed, 06 Jul 2022 21:36:54 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 883npdST8d-8Cuudrppir5-eOqNE6Cz7pPqZoO_zP6E5Q-dsm0s1og== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google date: Wed, 06 Jul 2022 21:52:29 GMT age: 15396 etag: "11f0210e88bbfbbd7a33d0722cd018522976cbcf" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6616 Md5: 29efcb55217b2007c1327183550dd5c3 Sha1: 11f0210e88bbfbbd7a33d0722cd018522976cbcf Sha256: 8042384ec61e8911986b04ca45a1088c96caff5196674dd8f529e667d1c89224