firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 29 Sep 2022 04:15:52 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: WP5Ki_Ua2IPrLvGXPyPaqs19JQRKlGGQItDMI4xbA_br_PXkswr7NA==
Age: 171
drive.dataexpertservices.hu/login1/i/flow/login.php
87.229.26.122200 OK 19 kB URL HTTP/1.1 drive.dataexpertservices.hu/login1/i/flow/login.php
IP 87.229.26.122:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13946)
Hash 0dc45e12696ce81040e313af2adaffcb
13c5b593594cd8a1929148cc9caa337dc06fbe22
8b20f176a777a20501c4accd76e78849ac371b103abccbdecfdb6039b7dda9d1
Analyzer Verdict Alert fortinet Phishing
GET /login1/i/flow/login.php HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:43 GMT
Server: Apache
Cache-Control: no-cache, private
Set-Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; expires=Thu, 29-Sep-2022 06:18:43 GMT; Max-Age=7200; path=/
laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D; expires=Thu, 29-Sep-2022 06:18:43 GMT; Max-Age=7200; path=/; httponly
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Keep-Alive: timeout=1, max=1000
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 6dd4587c98aef98ad0939030a6976a7f
92dc5966ac2deb0c3ac7fdd02bf8d28f9239801e
a382476d14b6ae14003333e7acdfbbd9ae8775d4c1a7d5c31116f33987043cff
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A382476D14B6AE14003333E7ACDFBBD9AE8775D4C1A7D5C31116F33987043CFF"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10103
Expires: Thu, 29 Sep 2022 07:07:06 GMT
Date: Thu, 29 Sep 2022 04:18:43 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Wed, 28 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: t2OPUrlJzNwZZMdvJrodB-5dakLmVrEaAWzKKXeplceQsXG2fjGTZg==
age: 82217
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 29 Sep 2022 04:18:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 8eb56ca84ce38713c2575c9d5506eabe
294a9ea859390bfe5d73cf810eefae10bf0f2f5e
6e7141f2c597344a55bf1d3a3ca0b9f0bf02f32a6046b3bfa03b64048a1d7002
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 04:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
drive.dataexpertservices.hu/client/runtime.b9c9f885f36ccbba8da5.js
87.229.26.122200 OK 2.0 kB URL HTTP/1.1 drive.dataexpertservices.hu/client/runtime.b9c9f885f36ccbba8da5.js
IP 87.229.26.122:0
File type ASCII text, with very long lines (1919)
Hash 82b82e3ac522b61c78bab5af70818dde
ba2de07b159fccb918d14756654e02f7dc3e6395
872f2776acc2fdaf34d2874ac96433fa06312e632ef26376f8451d7e8f2309ef
Analyzer Verdict Alert fortinet Phishing
GET /client/runtime.b9c9f885f36ccbba8da5.js HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Mar 2019 21:59:02 GMT
Accept-Ranges: bytes
Content-Length: 1976
Keep-Alive: timeout=1, max=1000
Content-Type: application/javascript
drive.dataexpertservices.hu/storage/appearance/theme.css
87.229.26.122200 OK 12 kB URL HTTP/1.1 drive.dataexpertservices.hu/storage/appearance/theme.css
IP 87.229.26.122:0
Hash f08e61c10b26a82cfb086108ccaf77f4
c672b7d729fc0ff79083661eb9b118d218490beb
78b261861124670754cb9c9bfa9808a8f7d270b900d2587a82ba47b948949d1e
GET /storage/appearance/theme.css HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 05 Mar 2019 16:16:40 GMT
Accept-Ranges: bytes
Content-Length: 11692
Keep-Alive: timeout=1, max=1000
Content-Type: text/css
drive.dataexpertservices.hu/client/styles.7c61fed2cfeb85cbaff9.css
87.229.26.122200 OK 67 kB URL HTTP/1.1 drive.dataexpertservices.hu/client/styles.7c61fed2cfeb85cbaff9.css
IP 87.229.26.122:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b9903246cd82fb9029fb8e9630ca3415
d447f50d03af0c8dcff0bace0e3d156c9085d775
abe9c4f31e249dd48fb2d65bf5795c85f4803e788060eecb0f3ac61a28c445fe
GET /client/styles.7c61fed2cfeb85cbaff9.css HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:43 GMT
Server: Apache
Last-Modified: Thu, 14 Mar 2019 12:30:57 GMT
Accept-Ranges: bytes
Content-Length: 66575
Keep-Alive: timeout=1, max=999
Connection: Keep-Alive
Content-Type: text/css
fonts.googleapis.com/css?family=Roboto:300,400,500
142.250.74.10200 OK 1.1 kB URL HTTP/2 fonts.googleapis.com/css?family=Roboto:300,400,500
IP 142.250.74.10:0
Hash 34980a96ee591fb801edbc88ff548cbe
d74388926d9f0cd3b8b52438582f4eb3e76bf0e4
3d6c770d3348097858d795d24e5b15b9ba207e05f8c33b2744fe21ecc2fbfbf5
GET /css?family=Roboto:300,400,500 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 29 Sep 2022 04:18:43 GMT
date: Thu, 29 Sep 2022 04:18:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
drive.dataexpertservices.hu/client/polyfills.db7baccad6d873638a52.js
87.229.26.122200 OK 92 kB URL HTTP/1.1 drive.dataexpertservices.hu/client/polyfills.db7baccad6d873638a52.js
IP 87.229.26.122:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 9cdc9368b3fd31383b89f41796122bdc
8b02e9b256290f639c64101a94b5a2147a097715
e417f406eb84e8593bae1839a3797dc1bd2339cc389cf691109291a70d012d0a
Analyzer Verdict Alert fortinet Phishing
GET /client/polyfills.db7baccad6d873638a52.js HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Mar 2019 21:59:02 GMT
Accept-Ranges: bytes
Content-Length: 91748
Keep-Alive: timeout=1, max=1000
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash eb2f3cc13b8ab763c5f346d6fc23054d
1768cc61721a6a6624c1ccbf2c874342f53abd99
3faee940dd222a051862bc2a4e090ecd2cc1f2ead8b1a5c84e10241f31461c5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 04:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://drive.dataexpertservices.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 31475
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 15dbf298fc5c3f79b34abf59118cc01c
c48dc908b9aa86adb5017683a23b625d8fd1b955
9061294bc67906630f52dfdb486941691a8b9291b938c032076cef3f7bf21ce7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 04:18:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
drive.dataexpertservices.hu/client/main.0f4eff83b8138c3bc68d.js
87.229.26.122200 OK 1.1 MB URL HTTP/1.1 drive.dataexpertservices.hu/client/main.0f4eff83b8138c3bc68d.js
IP 87.229.26.122:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 1.1 MB (1148602 bytes)
Hash d9402cfd8a95a4c3102a49c3d30aae4f
a1726c07e91d4f9740d20b90f2bda625cb65e623
4b07536e9022c57cb85f5b2d1ecd112fbf81a513fc44adc01193bd3046070e2d
Analyzer Verdict Alert fortinet Phishing
GET /client/main.0f4eff83b8138c3bc68d.js HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:43 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 04 Mar 2019 21:59:02 GMT
Accept-Ranges: bytes
Content-Length: 1148602
Keep-Alive: timeout=1, max=1000
Content-Type: application/javascript
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Thu, 29 Sep 2022 03:29:33 GMT
Expires: Thu, 29 Sep 2022 03:36:29 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: e0Lx7e2iEOvOuDMAqwXnDJ_LaUh3TU_BfXg5DTqPW2cLaADaA7M59Q==
Age: 2950
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://drive.dataexpertservices.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:21 GMT
expires: Thu, 28 Sep 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 31463
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15920, version 1.0\012- data
Hash 3a44e06eb954b96aa043227f3534189d
23cef6993ddb2b2979e8e7647fc3763694e2ba7d
b019538234514166ec7665359d097403358f8a4c991901983922fb4d56989f1e
GET /s/roboto/v30/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://drive.dataexpertservices.hu
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 25 Sep 2022 18:14:12 GMT
expires: Mon, 25 Sep 2023 18:14:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:45 GMT
content-type: font/woff2
age: 295472
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
drive.dataexpertservices.hu/client/assets/images/404.png
87.229.26.122200 OK 17 kB URL HTTP/1.1 drive.dataexpertservices.hu/client/assets/images/404.png
IP 87.229.26.122:0
File type PNG image data, 460 x 344, 8-bit/color RGBA, non-interlaced\012- data
Hash 598017a9e3af3bcf5846f35d58d522e3
295ef8bb5f8b1b4205af1e32e05fbddc4c7a8d18
a036b5167347666714104cd3e6c0e13553d216da1dd0a13341e69a74b25bf1c6
GET /client/assets/images/404.png HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:44 GMT
Server: Apache
Last-Modified: Mon, 04 Mar 2019 21:59:04 GMT
Accept-Ranges: bytes
Content-Length: 16709
Keep-Alive: timeout=1, max=999
Connection: Keep-Alive
Content-Type: image/png
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3526d5ce1381ba26cbc553db057e1915
fe01c920696448e8bf12e6fff877bce8281d34a2
09604aed7cbca7971bfcb5afcb53591600b944f28eff21aa65dc601e78cdda53
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3562
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 29 Sep 2022 04:18:44 GMT
Last-Modified: Thu, 29 Sep 2022 03:19:22 GMT
Server: ECS (ska/F714)
X-Cache: HIT
Content-Length: 471
drive.dataexpertservices.hu/storage/branding_images/OdRnbjCGPen5WOFfyZZelMvRJCC55A9lA7KK3LpI.png
87.229.26.122200 OK 22 kB URL HTTP/1.1 drive.dataexpertservices.hu/storage/branding_images/OdRnbjCGPen5WOFfyZZelMvRJCC55A9lA7KK3LpI.png
IP 87.229.26.122:0
File type PNG image data, 982 x 982, 8-bit/color RGBA, non-interlaced\012- data
Hash 2d9b994aa165e5df1eec42abaafad35e
db67083c7e639b6073e3444997e0d944c7d16908
9b9a05b777fd6270fd7ed75c8ae44e0fab88aa1297f5bb2f9f6ffe7acc7ebcc7
GET /storage/branding_images/OdRnbjCGPen5WOFfyZZelMvRJCC55A9lA7KK3LpI.png HTTP/1.1
Host: drive.dataexpertservices.hu
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://drive.dataexpertservices.hu/login1/i/flow/login.php
Cookie: XSRF-TOKEN=eyJpdiI6IkRvQUdwYWc0N3pmNnRxUEx3SjVNdUE9PSIsInZhbHVlIjoiOGk0d0VoUjBwYVR6R1JoZUlOOEFKQnE0Q2RpNk43Rm1pWGVqZ3E1M1VjSndSbVNkQ0Jka3dadklpU0FadmtvZHIzdXJBOFBMUEtJeDJiM2RUNU5vdFE9PSIsIm1hYyI6ImFhODM0Nzc2N2YyMzcyYjRkODkzN2FkNDMzMzkyYzA1ZTdjNGZjOWM1YTllYzg4OTA0NWM1MzJiNjA3ZWE4NmEifQ%3D%3D; laravel_session=eyJpdiI6IkZLNEhTcUJhZUZpUlJcL2N6TVlTSnFBPT0iLCJ2YWx1ZSI6ImJLaEk3bUYxVGJJTHJtM2JGUGMrMXhBXC9Jem5DbXhQMFEraVFcL2ZhZGdyUzlETjduRjd6VDBmZDBraWtzTkdPNXNWS09qNUZyelkrZmJMYmVFYkhHb2c9PSIsIm1hYyI6IjEzNzU2NWVkZWNiOGNhZjhkNDAyNzk0NjkyNTJhZWRhOTM0MmVjYjllOTUxNzhmMjc0NjA4MmMyZmZhMGNlYTgifQ%3D%3D
HTTP/1.1 200 OK
Date: Thu, 29 Sep 2022 04:18:44 GMT
Server: Apache
Last-Modified: Mon, 04 Mar 2019 22:21:26 GMT
Accept-Ranges: bytes
Content-Length: 21767
Keep-Alive: timeout=1, max=998
Connection: Keep-Alive
Content-Type: image/png
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G64d1YxWUla8DjSTrJB/PQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wAyZt3RFOJw0twBlSyGeGzxkW/k=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16598
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 04:18:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16598
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 04:18:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16598
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 04:18:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 47f245f9a098439e59436f81d4c03415
950b3eadfd6fc7f859130fa2c63934c6ccd49889
25f075effbd8acded8f38d69ea17f673de3e197b635274d4c52411ef577fe8e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "25F075EFFBD8ACDED8F38D69EA17F673DE3E197B635274D4C52411EF577FE8E7"
Last-Modified: Thu, 29 Sep 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16598
Expires: Thu, 29 Sep 2022 08:55:23 GMT
Date: Thu, 29 Sep 2022 04:18:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4505f57697072468da82e0b536d0d5b
e1067a2dfbc22e7eb196046d57bd1e17604dba75
b5e79054f165f38b99f93a8128284f82076523988aeb102b85dd8ff1a2870d00
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75de31dd-bbf0-4a21-bfac-94f0062f4da4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10023
x-amzn-requestid: 0cb6b9a1-0707-4094-b197-5a0add2df717
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMK4dHJLIAMFWmg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be9c-2d8bbb17157900f126c5bb3c;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wZ2hBqHAdwimAVV3p-CJFrb9zQ-CTN5ar9CB-cu0mZoENYUFTKKPWQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 ddaf46a95abcfc80e8eae76235e2127c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:40:43 GMT
age: 23882
etag: "e1067a2dfbc22e7eb196046d57bd1e17604dba75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6acbf011-a3c6-43cd-8ac6-b264d0806686.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6acbf011-a3c6-43cd-8ac6-b264d0806686.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2dae2d2b731dbea3d72711eb4dff2567
9d4b472b38d146bb1d9b46ee881628abb8cd5dc5
21f6b8a436e6ac990601a046f85ed78a2a4af899550d80ce66c43cfdfdcdaae7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6acbf011-a3c6-43cd-8ac6-b264d0806686.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12387
x-amzn-requestid: dd1dbee1-daca-4539-9c84-a64a1c1b1162
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZGU0FFLroAMFXHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63326819-537af7437fe7e7141bee544c;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 03:03:53 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: IHmoS-ze77qiX6SYhy7-xFiMRLe-x_7qcK0AWcwcPjFvchtBRVyFIQ==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 04:25:00 GMT
age: 86025
etag: "9d4b472b38d146bb1d9b46ee881628abb8cd5dc5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ae1e7d3-41cb-4400-8cae-870baa006b86.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ae1e7d3-41cb-4400-8cae-870baa006b86.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5a137925cb6116c46ce21c6e27933c44
2973e908318c68489bba9b4242254769a4f3d1ba
737bf9c3d2906a937ed0b082c8830982163be90acf8dd01dacc7ec80c5c8bcd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ae1e7d3-41cb-4400-8cae-870baa006b86.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7777
x-amzn-requestid: d035ce80-1700-4e69-8b75-e0bf47ca9ddf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDCWCFw4oAMFVDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63311759-0412900d669b5381058ec9a2;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 03:07:05 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lJC6Ki9WG5Q9VMJqIWhRvO3yf_6BAARn4TN2QpUhe9_7N5GQgFhz1w==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 05:17:23 GMT
age: 82882
etag: "2973e908318c68489bba9b4242254769a4f3d1ba"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11594ce7500d8776bfd5162b17f87d72
72603efba82d649ce5a7a0ca45dc830c0d9ef012
511f5aa33750cd4a02cf3968bf165ffa521e77cb4fb7135b516d7ad14e8b9d01
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5cbaf6d-fc16-4449-8b54-1d55f68eff4f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14073
x-amzn-requestid: 4ff72590-e28d-4d4b-af1a-4d62e75e3d66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnpEsJoAMFlBQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-38b014a25551aa0a2ab04ccf;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gP4V4fq53Z5BFfjDlx1LCR9AhUPTq0qusBaOY_UEXjJjM6SByqDgXg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:41:45 GMT
etag: "72603efba82d649ce5a7a0ca45dc830c0d9ef012"
content-type: image/jpeg
age: 23820
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ac86079d2901fb11bfaff81d91bb2d2
4fc0699c763f67a2602b4b3f46b8b4013d2049c6
8c25b9129fc01f6ffad911994e91436ab0026ed0b54568757a20ab7f92584467
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb46b76b4-e585-46c3-bf03-5bfe9273000c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3332
x-amzn-requestid: 34214e89-7232-4fd5-9257-adf231670681
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZDb3vGkOIAMFVhg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63314031-3056111d48a5027a2062ad1b;Sampled=0
x-amzn-remapped-date: Mon, 26 Sep 2022 06:01:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: VosALWNOhCfUDfo2bXgYE0Cx2duyHRaLb5DCn9IydXtoIsYyg9vWhA==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:49:13 GMT
age: 23372
etag: "4fc0699c763f67a2602b4b3f46b8b4013d2049c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5724d6da-9431-4843-a505-d3e09b3288d0.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5724d6da-9431-4843-a505-d3e09b3288d0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b2b1199932a09517125a796542aaeddf
6189f15b09a582c678661657b6428b919e2ae09c
e31dc7cf7a636e5612a7ab9101b6e251af22dae8a3f65a4368f5bc7b4a75b072
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5724d6da-9431-4843-a505-d3e09b3288d0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5461
x-amzn-requestid: 4206a547-f263-43be-839d-2f7f6ed98e25
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZMKnoFjRoAMFa0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6334be30-5558305f2182858a72a41137;Sampled=0
x-amzn-remapped-date: Wed, 28 Sep 2022 21:35:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: McmbBeOh8xBrwjA8eMsWF5iSn9YaMXLc16bjNZh-tczaKEfVFmiovg==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 7eb3b782ab09047ce0d11ee03763894c.cloudfront.net (CloudFront), 1.1 google
date: Wed, 28 Sep 2022 21:38:20 GMT
age: 24025
etag: "6189f15b09a582c678661657b6428b919e2ae09c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2