4.255.122.255200 OK 495 B URL User Request GET HTTP/1.1 IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text
Hash 5386786e08cf76c5848ea4ea4555ebf8
dc74d7245bedc0da9b57fa188bcef96b3b3a3150
236513a5fe1276412b1e9d84523844586ae51e1007f8396f5d20c284c40b4302
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:46 GMT
Content-Type: text/html
Content-Length: 495
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-1ef"
X-debug-message: /index.html
Accept-Ranges: bytes
4.255.122.255200 OK 495 B URL User Request GET HTTP/1.1 IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document, ASCII text
Hash 5386786e08cf76c5848ea4ea4555ebf8
dc74d7245bedc0da9b57fa188bcef96b3b3a3150
236513a5fe1276412b1e9d84523844586ae51e1007f8396f5d20c284c40b4302
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:47 GMT
Content-Type: text/html
Content-Length: 495
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-1ef"
X-debug-message: /index.html
Accept-Ranges: bytes
4.255.122.255/assets/index-ea3c9b51.css
4.255.122.255200 OK 15 kB URL GET HTTP/1.1 4.255.122.255/assets/index-ea3c9b51.css
IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type ASCII text, with very long lines (15016)
Hash 5ca4b7c430aa665fd8f8defddb1d6963
1e0c2dc4915c3e702ce6f862843ba4e693f68fa9
ea3c9b51bdcbd19c5c269fc0d0c2d02815d1f268afafdd0a1ae497208e70d812
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/index-ea3c9b51.css HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:47 GMT
Content-Type: text/css
Content-Length: 15017
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-3aa9"
X-debug-message: /assets/index-ea3c9b51.css
Accept-Ranges: bytes
4.255.122.255/assets/Capa_1-592e5d79.png
4.255.122.255200 OK 10 kB URL GET HTTP/1.1 4.255.122.255/assets/Capa_1-592e5d79.png
IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 1368 x 625, 8-bit/color RGBA, non-interlaced
Hash 85180c74d3a80943d13b60e9b182aed5
2fd3bce45c45b297302458a34e3062c94f331daa
592e5d79684fb13da4023324d355f0d099445df8ea0538b316b13782f0860de6
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/Capa_1-592e5d79.png HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/assets/index-ea3c9b51.css
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:47 GMT
Content-Type: image/png
Content-Length: 10387
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-2893"
X-debug-message: /assets/Capa_1-592e5d79.png
Accept-Ranges: bytes
4.255.122.255/assets/index-b8c3bec8.js
4.255.122.255200 OK 2.5 MB URL GET HTTP/1.1 4.255.122.255/assets/index-b8c3bec8.js
IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JavaScript source, ASCII text, with very long lines (37695)
Size 2.5 MB (2536724 bytes)
Hash 2c9b4e0d75b8f5ad6dda3d0e460e0c3c
2c11dda605de9464f5eb6b141f301dfbc7cb926e
1d9ebd960f99605c34a0534584c1c5f803509462e32cbe56954ba1ac794b3d51
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/index-b8c3bec8.js HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:47 GMT
Content-Type: application/javascript
Content-Length: 2536724
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-26b514"
X-debug-message: /assets/index-b8c3bec8.js
Accept-Ranges: bytes
4.255.122.255/logo-transparente.png
4.255.122.255200 OK 6.0 kB URL GET HTTP/1.1 4.255.122.255/logo-transparente.png
IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 247 x 207, 8-bit/color RGBA, non-interlaced
Hash 166bb9542e4e7c89ba7adcf6d5b9b310
b0c3198a96cfd17879168499dde3e2627ad49387
eb575597d89a614b74a258905779f169791c86c8aee154135fa08e8f8e8de861
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /logo-transparente.png HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:48 GMT
Content-Type: image/png
Content-Length: 6003
Last-Modified: Mon, 29 Apr 2024 19:53:42 GMT
Connection: keep-alive
ETag: "662ffac6-1773"
X-debug-message: /logo-transparente.png
Accept-Ranges: bytes
firebase.googleapis.com/v1alpha/projects/-/apps/1:234219169272:web:47e04bc741cfe1d924620d/webConfig
142.250.74.42200 OK 0 B URL OPTIONS HTTP/2 firebase.googleapis.com/v1alpha/projects/-/apps/1:234219169272:web:47e04bc741cfe1d924620d/webConfig
IP 142.250.74.42:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /v1alpha/projects/-/apps/1:234219169272:web:47e04bc741cfe1d924620d/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: x-goog-api-key
Referer: http://4.255.122.255/
Origin: http://4.255.122.255
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: http://4.255.122.255
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: x-goog-api-key
access-control-max-age: 3600
date: Sat, 04 May 2024 04:28:48 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
firebase.googleapis.com/v1alpha/projects/-/apps/1:234219169272:web:47e04bc741cfe1d924620d/webConfig
142.250.74.42200 OK 209 B URL OPTIONS HTTP/2 firebase.googleapis.com/v1alpha/projects/-/apps/1:234219169272:web:47e04bc741cfe1d924620d/webConfig
IP 142.250.74.42:443
Certificate IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash ac46f2c0347e7a51788abda08cdfe40f
933ae4a67a5c23cb25d8ada12921347b1170a60a
81505c35a41557cbd6d0d1f74d7bea881baa91fbe8db30642ad293af9d330e8c
GET /v1alpha/projects/-/apps/1:234219169272:web:47e04bc741cfe1d924620d/webConfig HTTP/1.1
Host: firebase.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://4.255.122.255/
x-goog-api-key: AIzaSyB7bV0JkTgjMgeHBSz7V7uNyIy-0s4ddWc
Origin: http://4.255.122.255
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Sat, 04 May 2024 04:28:49 GMT
server: ESF
cache-control: private
content-length: 209
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: http://4.255.122.255
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?l=dataLayer&id=G-21Q6XP5MRL
142.250.74.168200 OK 88 kB URL GET HTTP/2 www.googletagmanager.com/gtag/js?l=dataLayer&id=G-21Q6XP5MRL
IP 142.250.74.168:443
Certificate IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File type JavaScript source, ASCII text, with very long lines (5955)
Hash 46ae0bf5d7775f95a4e2b7aa08c6c35e
8cbb965d7c061aa8797a77a73e94e0678b2d618f
365d4372dbc35bad83f0f68223ac8cc31d66419daa18e3fd47cd873c873e8cc7
GET /gtag/js?l=dataLayer&id=G-21Q6XP5MRL HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sat, 04 May 2024 04:28:49 GMT
expires: Sat, 04 May 2024 04:28:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 87699
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
4.255.122.255/assets/defaultAvatar-b71cfbcb.png
4.255.122.255200 OK 58 kB URL GET HTTP/1.1 4.255.122.255/assets/defaultAvatar-b71cfbcb.png
IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 1920 x 1920, 8-bit/color RGBA, non-interlaced
Hash 6f71e7267f6e0c234969fd481c8a23dc
a567c82642ed8d0fa3626a2678c3f74a65b4ac24
b71cfbcb8ccce0f7ec5f8f1f45cb084fde06675d3e471a672b500fe8f0ec7fa7
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/defaultAvatar-b71cfbcb.png HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/
Cookie: _ga_21Q6XP5MRL=GS1.1.1714796930.1.1.1714796930.0.0.0; _ga=GA1.1.1992888847.1714796930
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:55 GMT
Content-Type: image/png
Content-Length: 58398
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-e41e"
X-debug-message: /assets/defaultAvatar-b71cfbcb.png
Accept-Ranges: bytes
4.255.122.255/assets/Ellipse%202-67e9aa3b.png
4.255.122.255200 OK 5.5 kB URL GET HTTP/1.1 4.255.122.255/assets/Ellipse%202-67e9aa3b.png
IP 4.255.122.255:80
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 336 x 500, 8-bit/color RGBA, non-interlaced
Hash 85dca95ede1d095d9c628bfe06ac0845
63c07c2aee1158d5131ab77069f9a1b44fb6ba3a
67e9aa3b0ba0fd0caadfd161a89f9310a0c472264059e9c36e17f05cf8de1742
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/Ellipse%202-67e9aa3b.png HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/login
Cookie: _ga_21Q6XP5MRL=GS1.1.1714796930.1.1.1714796936.0.0.0; _ga=GA1.1.1992888847.1714796930
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:56 GMT
Content-Type: image/png
Content-Length: 5488
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-1570"
X-debug-message: /assets/Ellipse 2-67e9aa3b.png
Accept-Ranges: bytes
4.255.122.255/assets/Logo-MyMate-eb575597.png
4.255.122.255 6.0 kB URL GET 4.255.122.255/assets/Logo-MyMate-eb575597.png
IP 4.255.122.255:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type PNG image data, 247 x 207, 8-bit/color RGBA, non-interlaced
Hash 166bb9542e4e7c89ba7adcf6d5b9b310
b0c3198a96cfd17879168499dde3e2627ad49387
eb575597d89a614b74a258905779f169791c86c8aee154135fa08e8f8e8de861
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /assets/Logo-MyMate-eb575597.png HTTP/1.1
Host: 4.255.122.255
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/login
Cookie: _ga_21Q6XP5MRL=GS1.1.1714796930.1.1.1714796936.0.0.0; _ga=GA1.1.1992888847.1714796930
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.23.4
Date: Sat, 04 May 2024 04:28:56 GMT
Content-Type: image/png
Content-Length: 6003
Last-Modified: Mon, 29 Apr 2024 19:53:43 GMT
Connection: keep-alive
ETag: "662ffac7-1773"
X-debug-message: /assets/Logo-MyMate-eb575597.png
Accept-Ranges: bytes
ocsp.r2m03.amazontrust.com/
143.204.53.97 471 B URL ocsp.r2m03.amazontrust.com/
IP 143.204.53.97:0
Hash 5e690d66a7dc9bcd6701b362ca3b41da
8765abdbf559363506eac22e89efb50e888ebcac
e6b26dfd900c823d4cdbf8b3546133975ae672f1caca911e30b50fff6dc64d66
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Sat, 04 May 2024 04:28:56 GMT
Server: ECAcc (amb/6AFD)
X-Cache: Miss from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: FpEsgCix0N1pENKYlKTPC_GgXJsCRVcjrhbegJMPSSrIMmqflmCHVA==
react-admin-telemetry.marmelab.com/react-admin-telemetry?domain=4.255.122.255
54.230.111.58200 OK 68 B URL GET HTTP/2 react-admin-telemetry.marmelab.com/react-admin-telemetry?domain=4.255.122.255
IP 54.230.111.58:443
Certificate IssuerAmazon
Subjectmarmelab.com
Fingerprint58:91:33:16:2F:9F:9B:B4:B1:F1:6C:24:0D:23:F3:CC:7C:5F:38:ED
ValidityFri, 29 Mar 2024 00:00:00 GMT - Sat, 26 Apr 2025 23:59:59 GMT
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced
Hash aaaf049e1f1c0e455850ca51aab70485
5f8e845ffced12819513762ad5fbc834284290f6
4443eccbe460b086b56483fdbfdaafca2c11c369a796a56c097997b15c160660
GET /react-admin-telemetry?domain=4.255.122.255 HTTP/1.1
Host: react-admin-telemetry.marmelab.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: http://4.255.122.255/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpg
content-length: 68
date: Sat, 04 May 2024 04:28:56 GMT
x-telemetry: This telemetry request is anonymous and only logs the domain of the application. If you manage this application, you can disable the telemetry by adding the `disableTelemetry` prop to the react-admin `<Admin>` component
apigw-requestid: XOntYiddiGYEPpA=
x-cache: Miss from cloudfront
via: 1.1 4bbc14b5834fc74ccd249b954b43a08c.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Wgn8g1_tVmFBw8CvndgmbjZIwCivd43AwxSc30pn6VWwlfFTaP1vPw==
X-Firefox-Spdy: h2