| tr62gf3t.ngrok.io/files/AsyncClient.exe | 3.14.182.203 | 307 Temporary Redirect | 83 B |
URL HTTP/1.1tr62gf3t.ngrok.io/files/AsyncClient.exe IP3.14.182.203:0
File typeHTML document, ASCII text Hashe0cda483d50e96b14c21c9e70beb9bb3 91472715e3e72ecfd1a3bae5b4a3455c400a3311 926625b03c93cf051d2d57e993a8a639c6a38370dd07c096d7968db57989ad9e
Analyzer | Verdict | Alert | fortinet | Malware | |
NIDS | Severity | Alert | suricata | high | ET POLICY Possible EXE Download Request to ngrok |
GET /files/AsyncClient.exe HTTP/1.1
Host: tr62gf3t.ngrok.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 307 Temporary Redirect
Content-Type: text/html; charset=utf-8
Location: https://tr62gf3t.ngrok.io/files/AsyncClient.exe
Ngrok-Trace-Id: f4fce25612ad56b69efd65d59171d548
Date: Tue, 10 Jan 2023 06:44:46 GMT
Content-Length: 83
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash1f67827b21be68d925837dd729590f2d dc24511141f5352e496b300d7d7e81b0cffb7475 afb1850e7c16f02d267a1310f1681367ecf598816fc62bd02447ffcd26117a9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AFB1850E7C16F02D267A1310F1681367ECF598816FC62BD02447FFCD26117A9F"
Last-Modified: Mon, 09 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5411
Expires: Tue, 10 Jan 2023 08:14:57 GMT
Date: Tue, 10 Jan 2023 06:44:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashe6b7a72139d0ef7688330456e9be9a4c e130a94e7d531768300071764dd1e81fee5bbbcb d3818afd1493030105341b4cfb91037acbf27085c96068b3ef91c5071277c8e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D3818AFD1493030105341B4CFB91037ACBF27085C96068B3EF91C5071277C8E5"
Last-Modified: Mon, 09 Jan 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14635
Expires: Tue, 10 Jan 2023 10:48:41 GMT
Date: Tue, 10 Jan 2023 06:44:46 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash89a058935fd04697c87e9441fbb466a9 59b5b08119374b1da34cff7e43a7c6dc80103f6e 3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9441
Expires: Tue, 10 Jan 2023 09:22:07 GMT
Date: Tue, 10 Jan 2023 06:44:46 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Content-Type, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 10 Jan 2023 05:48:28 GMT
content-type: application/json
age: 3378
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashb1fcd419a4245617397846e8d17233f6 2a037ce244587640b27ead9a0ec2af4f862d91b2 e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: OaJa+Fu50AsZevKKFVrfs+OLuRc6d7UP0xzCdKSkP5TW0GmWigvCSLWAs/KVPp7abg+Zs/kBHjZnvHaxB9+Xrg==
x-amz-request-id: N84K0CNF5D2K0HXX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 10 Jan 2023 06:01:32 GMT
age: 2594
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 10 Jan 2023 06:44:47 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2e6199129f1ddbdf3efd0fe93ef633d6 5714497dacd8602a399e455a93d50d6c44fc39e3 523b4ec0f5efbb65a9a198536c94a759cf89a3f107f4693624fca104bbad53e2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "523B4EC0F5EFBB65A9A198536C94A759CF89A3F107F4693624FCA104BBAD53E2"
Last-Modified: Mon, 09 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10921
Expires: Tue, 10 Jan 2023 09:46:48 GMT
Date: Tue, 10 Jan 2023 06:44:47 GMT
Connection: keep-alive
|
|
| tr62gf3t.ngrok.io/files/AsyncClient.exe | 3.14.182.203 | 404 Not Found | 875 B |
URL HTTP/1.1tr62gf3t.ngrok.io/files/AsyncClient.exe IP3.14.182.203:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Hashfd101fdeb0cda4de61666ec78e42c883 93ce1dbdc8dd257034d813301adf76969b9b910c 78f887d6a4adc999a3bc31aad931827e576ebfc9f83687ccea3015db3144dcbc
Analyzer | Verdict | Alert | fortinet | Malware | |
NIDS | Severity | Alert | suricata | high | ET POLICY Possible EXE Download Request to ngrok |
GET /files/AsyncClient.exe HTTP/1.1
Host: tr62gf3t.ngrok.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Connection: close
Content-Type: text/html
Ngrok-Error-Code: ERR_NGROK_3200
Ngrok-Trace-Id: 8deb6f1b2def9e54ac5c50b966462c7c
Referrer-Policy: no-referrer
Date: Tue, 10 Jan 2023 06:44:47 GMT
Content-Length: 875
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Expires, Pragma, Content-Type, Backoff, Last-Modified, Cache-Control, ETag
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 10 Jan 2023 06:33:45 GMT
age: 662
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2f0f1f22af78b331f7b64598192442fe 6afff0b8e701d383dd6fc6dc7234e2b1ba333e14 d941436f41595e39187946232f72f605c5701ba2560e4364ad1db85106355ad2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D941436F41595E39187946232F72F605C5701BA2560E4364AD1DB85106355AD2"
Last-Modified: Tue, 10 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2391
Expires: Tue, 10 Jan 2023 07:24:38 GMT
Date: Tue, 10 Jan 2023 06:44:47 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash2f0f1f22af78b331f7b64598192442fe 6afff0b8e701d383dd6fc6dc7234e2b1ba333e14 d941436f41595e39187946232f72f605c5701ba2560e4364ad1db85106355ad2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D941436F41595E39187946232F72F605C5701BA2560E4364AD1DB85106355AD2"
Last-Modified: Tue, 10 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2363
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:44:47 GMT
Connection: keep-alive
|
|
| cdn.ngrok.com/static/js/error.js | 18.158.249.75 | 200 OK | 469 B |
URL HTTP/1.1cdn.ngrok.com/static/js/error.js IP18.158.249.75:0
File typeASCII text, with very long lines (868), with no line terminators Hash60744f11aac2600d069b3e2615a2fc97 44ef853b68829597f1bec29cc6e286429c6b8da0 755d3c73eb34fe5e26bdb46cead9047638eab4992b5ecdd5353c4d434b1251e1
GET /static/js/error.js HTTP/1.1
Host: cdn.ngrok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Content-Length: 469
Content-Type: text/javascript; charset=utf-8
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Thu, 03 Nov 2022 14:23:29 GMT
Ngrok-Trace-Id: b52320ed42b97030ede66ac46087f282, f02db13bf3213c3bbfb6587193f5b54b
Vary: Accept-Encoding
|
|
| cdn.ngrok.com/static/css/error.css | 18.158.249.75 | 200 OK | 252 B |
URL HTTP/1.1cdn.ngrok.com/static/css/error.css IP18.158.249.75:0
Hashc81f94d708a1ffd3fa482bc1712dbbd3 bae29483a2a7f1d6fb0ed9a8f1755c0cbbacc169 4971ce28e4c8e5307b10da4cad773746e7b01d0b57f6281c1f11aa0c0e66fb88
GET /static/css/error.css HTTP/1.1
Host: cdn.ngrok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Content-Length: 252
Content-Type: text/css; charset=utf-8
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Mon, 07 Nov 2022 17:24:35 GMT
Ngrok-Trace-Id: 15bfcd99e1df491d8f830bde3e37ff80, 66ed176e69c871b794b158079dfb463e
Vary: Accept-Encoding
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashe8e0c910ffff02061a1806b1aa8cf9d2 c5bf0e7ad96e89b17a657fcb1e1cd1aa6d15ab89 896f08fa0030a1313df1f05ef47c5d1f11caa9094380fc026b95193164005448
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 36
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Tue, 10 Jan 2023 06:44:11 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 471
|
|
| cdn.ngrok.com/static/compiled/css/allerrors.css | 18.158.249.75 | 200 OK | 70 kB |
URL HTTP/1.1cdn.ngrok.com/static/compiled/css/allerrors.css IP18.158.249.75:0
File typeASCII text, with very long lines (65536), with no line terminators Hashed80047459dca300c668dad3b8fdcb32 d50554000c006fcedf07174cd073446f5c825de6 5b9834408ea17c7c5fb9a1f9b445e1ac65b2a503b5dcfd56f25c007e7d41ec2b
GET /static/compiled/css/allerrors.css HTTP/1.1
Host: cdn.ngrok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Content-Type: text/css; charset=utf-8
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Thu, 03 Nov 2022 14:23:29 GMT
Ngrok-Trace-Id: 744217a8007717d25ef6c78643e05ce4, 09ccf2960efbc8bb35f483989f9f975f
Vary: Accept-Encoding
Transfer-Encoding: chunked
|
|
| cdn.ngrok.com/static/compiled/js/allerrors.js | 18.158.249.75 | 200 OK | 107 kB |
URL HTTP/1.1cdn.ngrok.com/static/compiled/js/allerrors.js IP18.158.249.75:0
File typeASCII text, with very long lines (54290) Size107 kB (107407 bytes) Hashf7e94ec3be51b0cfd544369f03cb9c5b c4ce793a655f1b4bb23cfdd93e331ae457ac4cfb 2e0e19f413cf7505758691dbd05b9ab0114952111da4af0d5f642be423cd8377
GET /static/compiled/js/allerrors.js HTTP/1.1
Host: cdn.ngrok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
Content-Encoding: gzip
Content-Type: text/javascript; charset=utf-8
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Mon, 07 Nov 2022 17:24:35 GMT
Ngrok-Trace-Id: 484683eedd3ef8e9758db5f1a49d0313, 427973a9afa4bf7cae67dbaa0cfdfc03
Vary: Accept-Encoding
Transfer-Encoding: chunked
|
|
| push.services.mozilla.com/ | 54.149.149.164 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.149.149.164:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z6kVjPl/HJnal54tC7lDDQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BcVphPOCbSTIym8hgJTEGxRJgfs=
|
|
| cdn.ngrok.com/static/fonts/EuclidSquare/EuclidSquare-Regular-WebS.woff | 18.158.249.75 | 200 OK | 24 kB |
URL HTTP/1.1cdn.ngrok.com/static/fonts/EuclidSquare/EuclidSquare-Regular-WebS.woff IP18.158.249.75:0
File typeWeb Open Font Format, TrueType, length 23967, version 3.1\012- data Hashe905c1c1c0fca605002be693375a890b ed6a771f2b6a7be2d36a91dccd765e87a687a4cb 6026a87dbdb10ca6c00ff1a0911981ba317bdeb6ddf640464cfc4467983f56cc
GET /static/fonts/EuclidSquare/EuclidSquare-Regular-WebS.woff HTTP/1.1
Host: cdn.ngrok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tr62gf3t.ngrok.io
Connection: keep-alive
Referer: https://cdn.ngrok.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
Content-Length: 23967
Content-Type: font/woff
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Mon, 07 Nov 2022 17:24:35 GMT
Ngrok-Trace-Id: b1fd01278f90d9842bd1c9827123c57c, 169275b3dfa875c3ef8e1dc48f7bd9d0
|
|
| cdn.ngrok.com/static/fonts/EuclidSquare/EuclidSquare-Medium-WebS.woff | 18.158.249.75 | 200 OK | 24 kB |
URL HTTP/1.1cdn.ngrok.com/static/fonts/EuclidSquare/EuclidSquare-Medium-WebS.woff IP18.158.249.75:0
File typeWeb Open Font Format, TrueType, length 23954, version 3.1\012- data Hash12224706e4e36f347c39cdf75db5a225 a4f9c068a888a3880bf97bd8aea25d323550f5eb 646ce581732bdbb5b7c9eaec265dbbf35b33890eef3af6958e9c53ba8d9553bd
GET /static/fonts/EuclidSquare/EuclidSquare-Medium-WebS.woff HTTP/1.1
Host: cdn.ngrok.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://tr62gf3t.ngrok.io
Connection: keep-alive
Referer: https://cdn.ngrok.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=31536000
Content-Length: 23954
Content-Type: font/woff
Date: Tue, 10 Jan 2023 06:44:47 GMT
Last-Modified: Mon, 07 Nov 2022 17:24:35 GMT
Ngrok-Trace-Id: 0024ae406b737652a2372a0de992fe91, b3f3792bb15c6313806720b402f9d7f4
|
|
| tr62gf3t.ngrok.io/favicon.ico | 3.14.182.203 | 404 Not Found | 875 B |
URL HTTP/1.1tr62gf3t.ngrok.io/favicon.ico IP3.14.182.203:0
File typeHTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Hashfd101fdeb0cda4de61666ec78e42c883 93ce1dbdc8dd257034d813301adf76969b9b910c 78f887d6a4adc999a3bc31aad931827e576ebfc9f83687ccea3015db3144dcbc
GET /favicon.ico HTTP/1.1
Host: tr62gf3t.ngrok.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Connection: close
Content-Type: text/html
Ngrok-Error-Code: ERR_NGROK_3200
Ngrok-Trace-Id: 0b03cf45d73863f3287950888a0df12f
Referrer-Policy: no-referrer
Date: Tue, 10 Jan 2023 06:44:48 GMT
Content-Length: 875
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash385fbe651dc747111b979f40f9583702 a69fa58ffc6e2b15222f17ad6345b2bec9d75106 c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2361
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:44:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash385fbe651dc747111b979f40f9583702 a69fa58ffc6e2b15222f17ad6345b2bec9d75106 c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2361
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:44:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash385fbe651dc747111b979f40f9583702 a69fa58ffc6e2b15222f17ad6345b2bec9d75106 c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2361
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:44:49 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash385fbe651dc747111b979f40f9583702 a69fa58ffc6e2b15222f17ad6345b2bec9d75106 c82b794c471d79568f5eee05529ceddbefc383ac0d035578da7bc3866062e5cc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C82B794C471D79568F5EEE05529CEDDBEFC383AC0D035578DA7BC3866062E5CC"
Last-Modified: Tue, 10 Jan 2023 01:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2361
Expires: Tue, 10 Jan 2023 07:24:10 GMT
Date: Tue, 10 Jan 2023 06:44:49 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22aaa4ec-a3a2-40cd-b0a6-2727e078bd89.jpeg | 34.120.237.76 | 200 OK | 9.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22aaa4ec-a3a2-40cd-b0a6-2727e078bd89.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashe93c4504f211614e76206db4ef758cb2 933bd495fcfd2d39ad13f1f5d0aba5a0a3a677bf f3bde37de7ecbfbcd7c52e39178625760af7c86ffeaa6a68eb2ad1462e9a8be6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22aaa4ec-a3a2-40cd-b0a6-2727e078bd89.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: d4290427-ed0d-4805-9e4e-57bf21ea8813
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: efpx3FBroAMFZYA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bc89a5-6d54f5317723f2602860c410;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 21:39:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: YkH9Kc-hD0HIRIekBKzkeKwKU3quoCQiijvSWyMtWVxqRuwMCbjcbQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 21:54:28 GMT
age: 31821
etag: "933bd495fcfd2d39ad13f1f5d0aba5a0a3a677bf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafe713be-1c84-4820-ac74-bdcf12a854d4.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafe713be-1c84-4820-ac74-bdcf12a854d4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0fb07eed296f5106e7b0f40702adddc2 24f637156c37dce6ee8c94f40ce41c1f6ce57dca ed656dadbcc659a4342b1c04d615adb92ef8a5f69092225e04890400951dddf3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fafe713be-1c84-4820-ac74-bdcf12a854d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12190
x-amzn-requestid: 3ab3f00d-2464-445e-8004-9efc440798e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: efo63HseIAMFgMA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bc8845-584746e11b0c570a215e5221;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 21:33:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: qA2BDyF32p8pcA707GqHU-azEz16PtztjVgIJ-2BBZNQo5tWDENcrQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 21:54:28 GMT
age: 31821
etag: "24f637156c37dce6ee8c94f40ce41c1f6ce57dca"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8bd889ec-302d-44e9-a290-89266ee38381.jpeg | 34.120.237.76 | 200 OK | 8.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8bd889ec-302d-44e9-a290-89266ee38381.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdb3c7aaa80c366124e52b9da9aa710e2 ac50f2b47dd387175f838d4606e33fb91fec37b1 d4e19635e7ad010d0bc8eb1c34084e9174026df4e36e9a972318b9f6b7957834
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8bd889ec-302d-44e9-a290-89266ee38381.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7981
x-amzn-requestid: aef01bcd-4752-4435-a6a8-a33c78cb7d42
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ1FIFQVIAMFTmQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba3553-2d2e650374cb35a322f96153;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:15:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7mLg6jPKWUrMy3N0c4eddMN0_WBzh4fDyWRL9hk5BUFoRhPSQ3dBog==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 03:25:45 GMT
age: 11944
etag: "ac50f2b47dd387175f838d4606e33fb91fec37b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231b20e9-b883-4d22-a499-0edffa21d837.jpeg | 34.120.237.76 | 200 OK | 9.1 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231b20e9-b883-4d22-a499-0edffa21d837.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4753795f36012ff993f492314aa210ec d5c8f6896fda40fc34dbc7554ce1ece173dd2d09 cbf28b1d51aae0e01fbe9228bfb1afead400ca7cc69875ffaef573f9e068a51f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F231b20e9-b883-4d22-a499-0edffa21d837.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9052
x-amzn-requestid: 51cb3d41-07e4-499a-b7a7-b4ee4963c587
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: efp7aGB-oAMF-0w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bc89e2-7bb9960c3f0116240e5ba086;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 21:40:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Q3YFShpJVvVInome7uge_EV1ORl4EdK9AW2lXaBfnFeBtnTCtOSf-A==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 21:53:46 GMT
age: 31863
etag: "d5c8f6896fda40fc34dbc7554ce1ece173dd2d09"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc8e3798-004e-4393-91d7-0581321417a7.jpeg | 34.120.237.76 | 200 OK | 5.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc8e3798-004e-4393-91d7-0581321417a7.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash8e351685c57200ff97e77036c699cd09 1ff8bae6a44f911b369486e137e923b2e596b8c1 0a72cf94bdcd4819556cfacb690743ace708b4edca35b5efc328cc8aaf0f24ec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc8e3798-004e-4393-91d7-0581321417a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5595
x-amzn-requestid: fa40af0f-85a1-4abe-8c0d-c6a89cd8bf09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eT2W-EFFoAMFruA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7d0f9-7c38c961644029073b16217c;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:42:49 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Re4XcM4N35eXhs-10YFDJLiq_OaeZFkEXor08P_a5bETXffb6VMyBg==
via: 1.1 fec77e486350d1bd33f526a760d8b5a4.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 10:28:32 GMT
age: 72977
etag: "1ff8bae6a44f911b369486e137e923b2e596b8c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feebfbbfd-68f7-4ded-a474-c951cdd7773f.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feebfbbfd-68f7-4ded-a474-c951cdd7773f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash56ae748c9316a1db699c71c07f74eccd 42d2c5cffa7040decca69a3cab8ecc936acebc43 2b613914077dcdd5f520a26362f717d06e5756dc103aaa7924055e2cab823548
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Feebfbbfd-68f7-4ded-a474-c951cdd7773f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7572
x-amzn-requestid: 195485a7-598e-483d-9c89-a23bcf33bdc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZ0X8HosIAMFTQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba3432-6984bf62713f6bd63fc8cdc8;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 03:10:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: rttJ4c_pZrGzDdduW4GXN7_ijnd9V5j-yep38_6A-_jpnUZhYYJjlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Tue, 10 Jan 2023 05:00:19 GMT
age: 6270
etag: "42d2c5cffa7040decca69a3cab8ecc936acebc43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|