firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 25 Sep 2022 13:14:57 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 73w9V_nmISXwvcdC8gt0wONxb-vl7Wt7lcj9YBa4voW2jgijrk8Yzg==
Age: 421
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2961
Expires: Sun, 25 Sep 2022 14:11:20 GMT
Date: Sun, 25 Sep 2022 13:21:59 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 25 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: _eCOmUzPj5ECAX1Y1QQSJyldlnmMLDKxK8kssqcEE_9tt43E1ppgaA==
age: 31605
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 25 Sep 2022 13:21:59 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
202.29.50.21/
200 OK 9.8 kB IP
ASN #4621 Chulalongkorn University
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF line terminators
Hash 2495d8fd861c1bc5fc93fa111842925f
ca7c53d577d9f00c312f1eda8c0e162c3fb9295a
240ef8dd4a9d75561143fc8f6c76a7b8bc309f0f9da4652efb9a4397890b2952
Analyzer Verdict Alert fortinet Malware
GET / HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:28 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
X-Powered-By: PHP/7.3.2
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; expires=Sun, 25-Sep-2022 14:57:28 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D; expires=Sun, 25-Sep-2022 14:57:28 GMT; Max-Age=7200; path=/; httponly
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
202.29.50.21/solarize/js/jquery.dropotron.min.js
200 OK 4.3 kB URL HTTP/1.1 202.29.50.21/solarize/js/jquery.dropotron.min.js
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with very long lines (4203), with CRLF line terminators
Hash c6d70be4c699671cb66616cbbb9595e8
ceec0f266bdc14fc031c70c832c5abcd9756e0e6
3bbc3935ddae08965d18258446d143acb1f37721a21d6008cd93ce2139938e84
Analyzer Verdict Alert fortinet Malware
GET /solarize/js/jquery.dropotron.min.js HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:28 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:07 GMT
ETag: "10af-5832b05d1224a"
Accept-Ranges: bytes
Content-Length: 4271
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 25 Sep 2022 13:04:17 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 25 Sep 2022 13:15:34 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OdXoXZZ9TzzSa2zZoteTxY9SONSl3P3GeD_Gia2oG_720WrKoG1pDQ==
Age: 1062
202.29.50.21/solarize/css/skel.css
200 OK 4.3 kB URL HTTP/1.1 202.29.50.21/solarize/css/skel.css
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with very long lines (816), with CRLF line terminators
Hash f21d89903c095abc4e2e27b81b92a694
502802e5526a85917c8abac44237128358a80cad
4e0adacfc05b88ce2f4c1565a9aa299f464c954a15615924a670face1a5fc88f
GET /solarize/css/skel.css HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:06 GMT
ETag: "10f5-5832b05ba3bc0"
Accept-Ranges: bytes
Content-Length: 4341
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
202.29.50.21/solarize/js/init.js
200 OK 5.0 kB URL HTTP/1.1 202.29.50.21/solarize/js/init.js
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with very long lines (2799), with CRLF line terminators
Hash b2080e65df9fcc1baebf78a0444af7bc
ebb350d51f95e93c69f50c8818782d0bb25283b8
793cad2a75f19e7879df3f8aa26467bbd4d492e1a11e89756063d9101660e049
Analyzer Verdict Alert fortinet Malware
GET /solarize/js/init.js HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:08 GMT
ETag: "1365-5832b05d19c59"
Accept-Ranges: bytes
Content-Length: 4965
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
202.29.50.21/solarize/css/style.css
200 OK 14 kB URL HTTP/1.1 202.29.50.21/solarize/css/style.css
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with CRLF line terminators
Hash be905c1f315ba429be602a3f2ea9c783
3baf5acc62b3eadfec5757af48380ecbe3525e44
6550dacc89418533f108c78372feb2e1c9806dabc2ed348421b41a02df54cb23
GET /solarize/css/style.css HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:06 GMT
ETag: "357b-5832b05b984a5"
Accept-Ranges: bytes
Content-Length: 13691
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Prompt:300,400,600,700,800
200 OK 564 B URL HTTP/1.1 fonts.googleapis.com/css?family=Prompt:300,400,600,700,800
IP
Hash 32f48df1bf109fed128230c322bfdd32
5dda60882eb3d99ffe18d344c6b1327fe5de3970
09a66ab2b0f2bc7b917b095d10542afb72e9efcb1135cf7b00be5aff7a98d9b4
GET /css?family=Prompt:300,400,600,700,800 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sun, 25 Sep 2022 13:21:59 GMT
Date: Sun, 25 Sep 2022 13:21:59 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Opener-Policy: same-origin-allow-popups
Cross-Origin-Resource-Policy: cross-origin
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.digicert.com/
200 OK 471 B IP
Hash fd3b36dc2b620b48de491a8d9ba00fc0
be67ba7db5215dcb7c9225876e35a5e0a5005c9e
28205ee62c77b1caad6cc24c1ce98ddb92d26f67d41270f7d5278208a907c62f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2626
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 25 Sep 2022 13:22:00 GMT
Last-Modified: Sun, 25 Sep 2022 12:38:14 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
202.29.50.21/solarize/js/skel-layers.min.js
200 OK 15 kB URL HTTP/1.1 202.29.50.21/solarize/js/skel-layers.min.js
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with very long lines (14861), with CRLF line terminators
Hash e67377e955ddfda51e78085b7c051916
4526086d443246317ce7237c409094ab6c673e2a
9bc0b06dcf0233a66b3df7377febdb77a83ca8e24c4e35dfd3950c016fb5e37b
Analyzer Verdict Alert fortinet Malware
GET /solarize/js/skel-layers.min.js HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:08 GMT
ETag: "3a4a-5832b05d2907e"
Accept-Ranges: bytes
Content-Length: 14922
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
202.29.50.21/solarize/js/skel.min.js
200 OK 20 kB URL HTTP/1.1 202.29.50.21/solarize/js/skel.min.js
IP
ASN #4621 Chulalongkorn University
File type Unicode text, UTF-8 text, with very long lines (20012), with CRLF line terminators
Hash 85d7aebe038d169928935cb16fb02967
df1b80151fdd8d161307c7ba41fa11c3b58191b9
91117f64ac2429ff26ef9c0511f8b2f56bd736fdeaef1665a63f97b2d77272a3
Analyzer Verdict Alert fortinet Malware
GET /solarize/js/skel.min.js HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:08 GMT
ETag: "4e66-5832b05d25375"
Accept-Ranges: bytes
Content-Length: 20070
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
202.29.50.21/solarize/js/jquery.min.js
200 OK 96 kB URL HTTP/1.1 202.29.50.21/solarize/js/jquery.min.js
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with very long lines (32341), with CRLF line terminators
Hash eaec1712551cd2792f4607f39fab12e7
2439711705752fac5dd1a6a8d6b1be63ffcbc76d
746e54e89161118a67bd59103c4ab55e3060735cc85c1d047c2cf04d4b12043d
Analyzer Verdict Alert fortinet Malware
GET /solarize/js/jquery.min.js HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:28 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:07 GMT
ETag: "17881-5832b05d0e53d"
Accept-Ranges: bytes
Content-Length: 96385
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
202.29.50.21/solarize/css/font-awesome.min.css
200 OK 18 kB URL HTTP/1.1 202.29.50.21/solarize/css/font-awesome.min.css
IP
ASN #4621 Chulalongkorn University
File type ASCII text, with very long lines (17618), with CRLF line terminators
Hash 9c3373f8530ad9831dbc2fec65933314
c1127272e7905eb68956c5f85423b7c077b3caee
f96c8aa5eadbf98b155a0627034b14b6fdced2431dcd5e383eb957e42b7b9d9e
GET /solarize/css/font-awesome.min.css HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/solarize/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:06 GMT
ETag: "4577-5832b05b9c1b0"
Accept-Ranges: bytes
Content-Length: 17783
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Jk1ylVboMlmlX1UTE2VcgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: zKWIT5bJQXA6Gk1L1MmlUobZ2E0=
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMu.woff2
200 OK 18 kB URL HTTP/1.1 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMu.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17960, version 1.0\012- data
Hash 2c5face834f241354099d05fe63a8cca
2df467a4438a6961ea8118ed1486b5fb172908ce
e4208432ab62e4e5a5e5901bbc6db5ca3119001facc45108f137e9c5b5370352
GET /s/prompt/v10/-W_8XJnvUD7dzB2C2_8IaWMu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.29.50.21
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17960
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 25 Sep 2022 12:11:29 GMT
Expires: Mon, 25 Sep 2023 12:11:29 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:47:51 GMT
Content-Type: font/woff2
Age: 4231
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cy_gIfWMuQ5Q.woff2
200 OK 12 kB URL HTTP/1.1 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cy_gIfWMuQ5Q.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 12332, version 1.0\012- data
Hash c19766015ad19e83017d61c6f44e6d70
2fc753290b55c0d0b3d726589e137d8a2710b0eb
60f2aac0699a7cf1ce39d12332dc2716502884d0c5839f3587158bbd570a840d
GET /s/prompt/v10/-W_8XJnvUD7dzB2Cy_gIfWMuQ5Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.29.50.21
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 12332
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 25 Sep 2022 00:37:48 GMT
Expires: Mon, 25 Sep 2023 00:37:48 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:14:54 GMT
Content-Type: font/woff2
Age: 45852
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KdNodVkI.woff2
200 OK 13 kB URL HTTP/1.1 fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KdNodVkI.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13024, version 1.0\012- data
Hash c8307b11610c0ceffcd784060c9e061c
b629de305bc5bf74323cce4407d7d894d019de98
b3a0b2a8b1ee977665c6deaac4be3b91b2f9fd6610221ca1ae31e6cb44199f6c
GET /s/prompt/v10/-W__XJnvUD7dzB2KdNodVkI.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.29.50.21
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13024
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 25 Sep 2022 00:37:48 GMT
Expires: Mon, 25 Sep 2023 00:37:48 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:55:44 GMT
Content-Type: font/woff2
Age: 45852
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IfWMuQ5Q.woff2
200 OK 13 kB URL HTTP/1.1 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2C2_8IfWMuQ5Q.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13052, version 1.0\012- data
Hash e866899520dabbe0fa15f1a28889ed09
068209ff223135f9b770602cabf6743e2457dc5a
d9ea25116dc893d7aa59abe5ac6e9035ff1e3172746c8e86e996e123d4321b03
GET /s/prompt/v10/-W_8XJnvUD7dzB2C2_8IfWMuQ5Q.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.29.50.21
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Content-Type: font/woff2
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 13052
Date: Sun, 25 Sep 2022 13:22:00 GMT
Expires: Mon, 25 Sep 2023 13:22:00 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:47:51 GMT
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2
200 OK 18 kB URL HTTP/1.1 fonts.gstatic.com/s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17640, version 1.0\012- data
Hash 450efa33fd7d38461701d7f0a37fbe2f
aae243f636749420fd77c0cf3aa9b683b47ed3e2
b7be1a25fcda009175b0f140bbd7ed9afdb5798d0c93717b44c62ddc19aef582
GET /s/prompt/v10/-W__XJnvUD7dzB2KYNod.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.29.50.21
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17640
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 25 Sep 2022 12:11:29 GMT
Expires: Mon, 25 Sep 2023 12:11:29 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 15:46:13 GMT
Content-Type: font/woff2
Age: 4231
fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cy_gIaWMu.woff2
200 OK 17 kB URL HTTP/1.1 fonts.gstatic.com/s/prompt/v10/-W_8XJnvUD7dzB2Cy_gIaWMu.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 17280, version 1.0\012- data
Hash f26feca3eb026bc03528de5197503464
cdd13540bf80e881503017068d885720a9340361
d7cb2b3095a72ab6b3ef3001f08f00784b3127bd240c1b7a6c5d8da030878858
GET /s/prompt/v10/-W_8XJnvUD7dzB2Cy_gIaWMu.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://202.29.50.21
Connection: keep-alive
Referer: http://fonts.googleapis.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="apps-themes"
Report-To: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
Timing-Allow-Origin: *
Content-Length: 17280
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Sun, 25 Sep 2022 00:37:48 GMT
Expires: Mon, 25 Sep 2023 00:37:48 GMT
Cache-Control: public, max-age=31536000
Last-Modified: Wed, 27 Apr 2022 16:14:58 GMT
Content-Type: font/woff2
Age: 45852
202.29.50.21/favicon.ico
200 OK 0 B IP
ASN #4621 Chulalongkorn University
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:30 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sat, 15 Dec 2018 14:37:28 GMT
ETag: "0-57d107ca9ba00"
Accept-Ranges: bytes
Content-Length: 0
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/x-icon
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sun, 25 Sep 2022 16:35:49 GMT
Date: Sun, 25 Sep 2022 13:22:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sun, 25 Sep 2022 16:35:49 GMT
Date: Sun, 25 Sep 2022 13:22:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sun, 25 Sep 2022 16:35:49 GMT
Date: Sun, 25 Sep 2022 13:22:01 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7038cca95198779d8bb479045eb56652
e9dcf9451e849f4d55b0909b33a51bd0b1a35296
0fc47dba3f2789b7c509a4916b1fe3c7b6b30c6778e5354742256125730310f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FC47DBA3F2789B7C509A4916B1FE3C7B6B30C6778E5354742256125730310F3"
Last-Modified: Fri, 23 Sep 2022 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11628
Expires: Sun, 25 Sep 2022 16:35:49 GMT
Date: Sun, 25 Sep 2022 13:22:01 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb009e5a9-dad2-4c57-9637-c9930d6b3f05.jpeg
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb009e5a9-dad2-4c57-9637-c9930d6b3f05.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 328516d7184ca4b4f6e50bf895b9bce0
752c2278004a98fcfacf4c3f16470d610ffd2daa
8096b89e6b868d9e40b5c31b80309472695b9cd085cca2f872159f4e35056c08
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb009e5a9-dad2-4c57-9637-c9930d6b3f05.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6671
x-amzn-requestid: c99d94f4-5a09-44d2-a2ce-0daac62d2087
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EAHQ2oAMFaqA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f787f-7fbe302d3e7587263e61cb0d;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FuhBG1wzZ7q3UXGwFA32yLn9Rn4DzcpPODW1HivGDtB-2-9F4Q3gBA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:05 GMT
age: 56696
etag: "752c2278004a98fcfacf4c3f16470d610ffd2daa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3d35df1f57d0736995615b0d8f50b8a3
8324b383c89771a2b1155ec6d069bf5a47338acd
9f381d59d2e4b086d43d784d7660e27f6f7760dc2b4eb9beee4b6e94801cb6db
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0693f3eb-ed7b-4594-b2db-7432590f4d49.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4723
x-amzn-requestid: 4be5e73a-e648-40a4-8566-cb3417e5843b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y-_EKHYcoAMFgMw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7880-4682134275162910149d09ec;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:37:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: NdyoW-aALNbALUNnUAWgJafG47WQBKHxeOEQhLHWS1ie8YlUH9z9uA==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:58:11 GMT
age: 55430
etag: "8324b383c89771a2b1155ec6d069bf5a47338acd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6ZD1652Yn1xqZG7ehDcirlYoG8Hcsrdj11Fzfgj7zb-OiU8xHj1gw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:37:32 GMT
age: 56669
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 714af732a9aa1db2b13ffb62810fd532
358e74de395352a9529ff1c17856daf8900888c5
1d2035cfcd283560ebe8494f9438e52f8d96cd092dd41cb0eb899a3f905c1e05
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F254286e1-1c63-4609-9dfb-0eb4b9096238.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6199
x-amzn-requestid: d26f22d9-4e9b-4764-8c96-2e1c7ce36340
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--OKHowoAMFbQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7727-7adb7c4925e6e50e13889544;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:19 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 3_xkH-s3Fzz3CRHux4j3hergFHWBmOFF9vMBCoN1rJrjrCkeSEp0qQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 22:01:16 GMT
age: 55245
etag: "358e74de395352a9529ff1c17856daf8900888c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9773faaac4deac40b96cd0802e974f36
db601663fa6ee5564eddaf8d3d84c7b04bf3871c
40e7a573f510ff29db04b3fbfacde2ad6ecd67b4c0be30034e057654c86408a4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1730b63d-9494-4330-acb8-7cb387a0cf08.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5305
x-amzn-requestid: df7ba218-d20c-4389-8895-affd870ad15f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y5JqKGtHoAMFcJw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632d230d-1854a5420f7091316aa4f211;Sampled=0
x-amzn-remapped-date: Fri, 23 Sep 2022 03:07:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: JgS9UxuYxMmnN6Op-LDeWN7tpeQYRosQp5Jo4-2jf8uEMUIHa6j-SQ==
via: 1.1 44cd593d82a2d200a94217033c614c6a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 05:04:13 GMT
age: 29868
etag: "db601663fa6ee5564eddaf8d3d84c7b04bf3871c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa43fecfd-7ebd-4a19-85fe-29bd0f3c5033.jpeg
200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa43fecfd-7ebd-4a19-85fe-29bd0f3c5033.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca8f8393365641de380e9443b37a8581
2fde9899cf74129d7df8868008b323a527dc1170
dbcc05dcbbbf4b89bf0f10999c0f5679e822cce6f9e3437f2cafb913606bd8c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa43fecfd-7ebd-4a19-85fe-29bd0f3c5033.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9042
x-amzn-requestid: 8c2e6356-2b43-4162-94b9-efd45249047c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y--PmHRtIAMFwaQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632f7730-034b1944694141f04debec31;Sampled=0
x-amzn-remapped-date: Sat, 24 Sep 2022 21:31:28 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: k1hcUfebiQMb8IRsmeAOkyI02F1vUvh7J9GxgU4qO8Ebp3TQUC2fQQ==
via: 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 24 Sep 2022 21:59:46 GMT
age: 55335
etag: "2fde9899cf74129d7df8868008b323a527dc1170"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
202.29.50.21/solarize/images/banner.jpg
200 OK 565 kB URL HTTP/1.1 202.29.50.21/solarize/images/banner.jpg
IP
ASN #4621 Chulalongkorn University
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1680x600, components 3\012- data
Size 565 kB (564702 bytes)
Hash 9e931a6759af6f11ad1f976e26ac2fd3
9f1ebdde75972f14bf441c77e5db0283d4717fbd
402adf8feb2e812105e2de8bc8ce3663fc5eec0e339f313f5a8ba88efa344572
GET /solarize/images/banner.jpg HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/solarize/css/style.css
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.1 200 OK
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
Last-Modified: Sun, 03 Mar 2019 06:48:07 GMT
ETag: "89dde-5832b05ccbbe5"
Accept-Ranges: bytes
Content-Length: 564702
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: image/jpeg
202.29.50.21/css/style.css
404 Not Found 0 B URL HTTP/1.0 202.29.50.21/css/style.css
IP
ASN #4621 Chulalongkorn University
GET /css/style.css HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.0 404 Not Found
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
X-Powered-By: PHP/7.3.2
Cache-Control: no-cache, private
Connection: close
Content-Type: text/html; charset=UTF-8
202.29.50.21/css/style-wide.css
404 Not Found 0 B URL HTTP/1.0 202.29.50.21/css/style-wide.css
IP
ASN #4621 Chulalongkorn University
GET /css/style-wide.css HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.0 404 Not Found
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
X-Powered-By: PHP/7.3.2
Cache-Control: no-cache, private
Connection: close
Content-Type: text/html; charset=UTF-8
202.29.50.21/css/style-normal.css
404 Not Found 0 B URL HTTP/1.0 202.29.50.21/css/style-normal.css
IP
ASN #4621 Chulalongkorn University
GET /css/style-normal.css HTTP/1.1
Host: 202.29.50.21
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://202.29.50.21/
Cookie: XSRF-TOKEN=eyJpdiI6InFXU2hKcERmZzRYUnRzeTB0M1JWdUE9PSIsInZhbHVlIjoiS011TTdkakFQWnBrbTVXU1YyTjJcL1lQdXBpVDcxWXc4ZjF2UWdpRm9YTktoaEI2UTNjMVwvN0xRUVhFV01lRGIrIiwibWFjIjoiNzdhZjU3OGMzMTVhOTMxNDBmZWMxYTViZDIyOTBlYmIwMTVmNmUyNmJkOTJmNDU1ZDA3OWYzMDdkOGVhNmVkNCJ9; laravel_session=eyJpdiI6Inp3Smk3QVVtd2I4NG9BR0JFXC9xN0l3PT0iLCJ2YWx1ZSI6Im50a2R2d0FvcXE0aHk4bEpQS2FOR3MzTHhwRlI3OFlYUU9UQ2ZkUFFcLzJDXC81SURneUMyeHV6NE56alBcL2RSdW0iLCJtYWMiOiIyOGE0OTFkYmVmYTc0YjAxYWUzNTUyMDE0MDFmNDBjNzRkMjE4MTAyYWRjNjEzZjZkNTVjNDI3YzZlNjkxNGFlIn0%3D
HTTP/1.0 404 Not Found
Date: Sun, 25 Sep 2022 12:57:29 GMT
Server: Apache/2.4.38 (Win32) OpenSSL/1.1.1a PHP/7.3.2
X-Powered-By: PHP/7.3.2
Cache-Control: no-cache, private
Connection: close
Content-Type: text/html; charset=UTF-8
202.29.50.21
34.120.237.76
23.36.76.226
93.184.220.29