r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 93f633ce30c038eb581544323c5a971e
2f60526cb750c6babccc207f75fb5a8ae6f7598b
0ff6df80a892199848fb943af78541b66efc09a7ab70d4b169906fdbac1eabf8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0FF6DF80A892199848FB943AF78541B66EFC09A7AB70D4B169906FDBAC1EABF8"
Last-Modified: Mon, 27 Mar 2023 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7360
Expires: Wed, 29 Mar 2023 22:28:03 GMT
Date: Wed, 29 Mar 2023 20:25:23 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c83d39f350161ed2f5d20dcd68e47c92
2695a888e652cb314f8094cc6073c3364336d272
62e5cc6aea61c3c32acd964d4bbe143806416008181eebc4451a8f035b69a0bc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "62E5CC6AEA61C3C32ACD964D4BBE143806416008181EEBC4451A8F035B69A0BC"
Last-Modified: Mon, 27 Mar 2023 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2420
Expires: Wed, 29 Mar 2023 21:05:43 GMT
Date: Wed, 29 Mar 2023 20:25:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ed282214b024a7895d90e229e92bb1cc
1f447aa59287ce2b45860a1a909d005a41305f77
a35ae9f89cbc77ed5fe849acdc2701592799c335f2674776d69c25bca0a00c2e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 29 Mar 2023 20:15:58 GMT
content-type: application/json
age: 565
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash c0d9353dc46e88bf564ed464b0b073c7
0b5ce170e7db24267a3ba5b79a48548b1acd2e5b
7c7ef189b14109b44aa96454ea1b94bcbd3d69599cc7ba429f8234f6acd88a9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7C7EF189B14109B44AA96454EA1B94BCBD3D69599CC7BA429F8234F6ACD88A9B"
Last-Modified: Mon, 27 Mar 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16378
Expires: Thu, 30 Mar 2023 00:58:21 GMT
Date: Wed, 29 Mar 2023 20:25:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wQ620qdPX0+8zu15DnXejjeuux95lG47XecHbTO9/HlE33G1QCGwkfLe8hZWV/jerhvE4ZmtkCU=
x-amz-request-id: 68Z9544CSYS0FYMX
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 29 Mar 2023 20:02:38 GMT
age: 1365
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 29 Mar 2023 20:25:23 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a740252e7b24892a3e34f6dfed6e3bde
d44d21abb95edd1ccc775632254f11ee94fb585e
e289995a2b4b340364dd7dfa32c79c7722ece6cc4b893b38fc68bbce680d2f94
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E289995A2B4B340364DD7DFA32C79C7722ECE6CC4B893B38FC68BBCE680D2F94"
Last-Modified: Mon, 27 Mar 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3598
Expires: Wed, 29 Mar 2023 21:25:21 GMT
Date: Wed, 29 Mar 2023 20:25:23 GMT
Connection: keep-alive
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: fgA82YZD71P9FFJbeXypkA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 2YcTXYi8DoCsnwefeCL0AQdxR7o=
Date: Wed, 29 Mar 2023 20:25:23 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, ETag, Expires, Alert, Pragma, Content-Type, Retry-After, Last-Modified, Content-Length, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 29 Mar 2023 20:14:36 GMT
age: 647
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.goplayer.cc/display/cnet/GoPlayer_encnet.exe
302 Found 11 B URL HTTP/1.1 www.goplayer.cc/display/cnet/GoPlayer_encnet.exe
IP
ASN #30633 LEASEWEB-USA-WDC
File type ASCII text, with no line terminators
Hash 32682312d17c7cbf18e73594f5570319
60e22121bdd0bc71cdb2bae2a3aa577006b2eae9
e55fb1a1d731153e943b68844af12dcce8bfac917c98ffdea64c80da0607dd47
GET /display/cnet/GoPlayer_encnet.exe HTTP/1.1
Host: www.goplayer.cc
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
cache-control: max-age=0, private, must-revalidate
connection: close
content-length: 11
date: Wed, 29 Mar 2023 20:25:23 GMT
location: http://btpnative.com/click?data=dC1ub3pMTlh4WjJyNFp5TkFCMWJJQkdiLWlVb0MzZS1WVHl5aU9EVlJXQnliVVd1ZkxxLU5IRHUxdEVYdEdPanRQQmczbW1PeGh0VG53Y0Y3UGF2OFhoYU5SMDhoMGtYaE9QUEdyZm0tMmJCT19CcXFGQmgyNlNiRVdtX0lCMHdFaGt1UnhmcnFLU3Z0NkVrc3dHd0hnMg2&id=2f80c5bb-d823-4e93-bb2c-902c38129bd0
server: nginx
set-cookie: sid=d5636a70-ce6f-11ed-907f-2f74643ac00a; path=/; domain=.goplayer.cc; expires=Mon, 16 Apr 2091 23:39:30 GMT; max-age=2147483647; HttpOnly
btpnative.com/click?data=dC1ub3pMTlh4WjJyNFp5TkFCMWJJQkdiLWlVb0MzZS1WVHl5aU9EVlJXQnliVVd1ZkxxLU5IRHUxdEVYdEdPanRQQmczbW1PeGh0VG53Y0Y3UGF2OFhoYU5SMDhoMGtYaE9QUEdyZm0tMmJCT19CcXFGQmgyNlNiRVdtX0lCMHdFaGt1UnhmcnFLU3Z0NkVrc3dHd0hnMg2&id=2f80c5bb-d823-4e93-bb2c-902c38129bd0
200 OK 5.4 kB URL HTTP/1.1 btpnative.com/click?data=dC1ub3pMTlh4WjJyNFp5TkFCMWJJQkdiLWlVb0MzZS1WVHl5aU9EVlJXQnliVVd1ZkxxLU5IRHUxdEVYdEdPanRQQmczbW1PeGh0VG53Y0Y3UGF2OFhoYU5SMDhoMGtYaE9QUEdyZm0tMmJCT19CcXFGQmgyNlNiRVdtX0lCMHdFaGt1UnhmcnFLU3Z0NkVrc3dHd0hnMg2&id=2f80c5bb-d823-4e93-bb2c-902c38129bd0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (349), with CRLF line terminators
Hash c2f4cb00d2ec340c3857f913d813ae53
6992036ee8f6dacf2d5797d4fa88de34d853f703
5c6e8e36c639d260b827cb3ce7666696a0151f9798b152f35c648c2744d36f6b
GET /click?data=dC1ub3pMTlh4WjJyNFp5TkFCMWJJQkdiLWlVb0MzZS1WVHl5aU9EVlJXQnliVVd1ZkxxLU5IRHUxdEVYdEdPanRQQmczbW1PeGh0VG53Y0Y3UGF2OFhoYU5SMDhoMGtYaE9QUEdyZm0tMmJCT19CcXFGQmgyNlNiRVdtX0lCMHdFaGt1UnhmcnFLU3Z0NkVrc3dHd0hnMg2&id=2f80c5bb-d823-4e93-bb2c-902c38129bd0 HTTP/1.1
Host: btpnative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: private
Content-Type: text/html; charset=utf-8
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
Set-Cookie: bBtIbFiLbrmmiVY=bBtIbFiLbrmmiVY; path=/
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Wed, 29 Mar 2023 20:25:23 GMT
Content-Length: 5441
btpnative.com/Redirect/
302 Found 1.7 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (1648), with CRLF line terminators
Hash 5f3d29192d7929c0164921754d1f8d0e
3ae2c853c11606e8914339b88dc85effc2a071f6
d282c964c27a245113c1e6b307c5f3486397d7055abc820b9e2d24678d174458
POST /Redirect/ HTTP/1.1
Host: btpnative.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded
Content-Length: 330
Origin: http://btpnative.com
Connection: keep-alive
Referer: http://btpnative.com/click?data=dC1ub3pMTlh4WjJyNFp5TkFCMWJJQkdiLWlVb0MzZS1WVHl5aU9EVlJXQnliVVd1ZkxxLU5IRHUxdEVYdEdPanRQQmczbW1PeGh0VG53Y0Y3UGF2OFhoYU5SMDhoMGtYaE9QUEdyZm0tMmJCT19CcXFGQmgyNlNiRVdtX0lCMHdFaGt1UnhmcnFLU3Z0NkVrc3dHd0hnMg2&id=2f80c5bb-d823-4e93-bb2c-902c38129bd0
Cookie: bBtIbFiLbrmmiVY=bBtIbFiLbrmmiVY
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Cache-Control: private
Content-Type: text/html; charset=utf-8
Location: https://myckdom.com/aS/feedclick?s=HFz5zNIIs95ROWPasgEEzx8Me0kzRtReLyT4nqgY4lUIKv2ZHTfRFmdNRMz_dvhc29XXvCS9-JLFXNSHgbbvMDcVgn291AC8LnQ1xEXJnvGpZ9qnjJS3-I8fVPNyIHVCDoBlQNHP1uM4RfiIYZyFTUb4EgWZ1o3XCOR5nobPUHLl8oOtpeg9tSlwj2t8ZeRgNs4FvOlOvMwB2jUqizWFzdMepJTGJe3UfnlbWd4675xVN2i5puLd5kpY8QpCf5CHHJOhOsJ0dSBc-djPQIQp5rLWsXULhcFHm2y5y9ppaLN2kMmyTrANX4RSDB7x1u7oTqeR4xaOGbuITd4p7o1fFwjcLPw4cFfukW1pnsQyT_qD-Wi16wDU4QdZ5OhS-BIMOXGIn_-uMVDYSlpiDbduNbod8n8dlKOqmo_HeV8HNP7pE8Y541jBT7uNBmvBos0nVMhYfPiYyI4Le7W4wFaAeuy6_PLduO7qTEiBDesFHFRPsC8n-u0Vck22hin6d-84hGzr9LMOove4x4dy3HBiNXepqC-FhY9GtwSMmwTwbf7wurR8cPffm9cSQ_oPGNqX11A8SgbbxwLoSj4aWopbKSRXdnTpctwfTJJIsNHovoruj0miMnsn_TuMkSFmRE7ujGDiB3mrkA94PviaE9PsjxYnAXOSEgNY-xft5P5weYZjFH6ffeneSQeT02o8KM1CkSeS09G60ipiLI4RY9Hb2f6vxVcI-o5ygD4Wl-Q4LgHJsCWh6nIbQo53P_zHTKX-iajbRxHsahyhdyC_mfRU_mLsW9RgefUQPeeD4A0HlIuYuaadTj-ixnkAP3ayQZDo9j185f3oe84udnlNv_TwFSv_76gZ0x4ifpCDMYhoapbXmfHYDu5KgS_SHvldUC9lQinKInlFGJMztHxkHvvJfM-Q_scWsrT20L9BaeZAcVPzpjVpciiQlsJ3fVyjMp4ou_uQdE56yeeFm0MBj9-oZ-ObWDO-dUgl5ryP4VYV0v_Wz_pI3_0G3iZJ7oUoyrlfmWpQ72bc4t3Hx47DhhZ146qPnfQWoodQ1iSnaG39La6iVkSlR8KVKOfPym_ZVj6JCbAvZ09O3ngY7_TcPtpeq036Jorb6N6CBJ96XZxkqEKR0wOys_X6PeJip01C8trXkIE3rD_YYcRg0R1huLlliKTEOj30cz8Z5GZ1oRoZqBvxQ8-ND3oyY7vsQLmg2vrVlK5Pp8oP2etDvfwyvOBULkRDMpb9sIgByysmEHuCNZBr_xH5NaEirGsSmGXoDF-Q2Q_D8Ysg_ILlewVoBZOF05-XO34wuO7dQjYl_5Utt9_KLWnyPHl-NheDed49J45qA_kbag9A4SfKEaBYq_0rHnXlmjlRtrBB4c-5JKYLYBU11JR0z4BFh9ifyQtaVQADTxWmwZzzfMAe0fF0uaJbRbdz9gGIjzLDP5t5d_H0Zcu22OC5LMVycYuIu5E05_VHa_8R-TWhIqzp6t2Df9GS8xCtfim9Wk2h06KJHmAstSBB2dPtWXWlyhYEa7djHvbY5DMMj415PjNYMthgg7FUFyYNb-iWwdA0
Server: Microsoft-IIS/10.0
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Content-Type
Date: Wed, 29 Mar 2023 20:25:23 GMT
Content-Length: 1720
ocsp.sectigo.com/
200 OK 471 B IP
Hash 732f1cd1cce0690e86759d55e8aa2707
d77e2163112d0fa960b9584cc793f06091f92ba5
cb9c24d8d9c7a2cc9bf5de2c63111118693f9280689f901270caaa3d3d20452c
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Wed, 29 Mar 2023 20:25:24 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Wed, 29 Mar 2023 18:29:58 GMT
Expires: Wed, 05 Apr 2023 18:29:57 GMT
Etag: "d77e2163112d0fa960b9584cc793f06091f92ba5"
Cache-Control: max-age=597272,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7afad78a4b8ab4f3-OSL
myckdom.com/aS/feedclick?s=HFz5zNIIs95ROWPasgEEzx8Me0kzRtReLyT4nqgY4lUIKv2ZHTfRFmdNRMz_dvhc29XXvCS9-JLFXNSHgbbvMDcVgn291AC8LnQ1xEXJnvGpZ9qnjJS3-I8fVPNyIHVCDoBlQNHP1uM4RfiIYZyFTUb4EgWZ1o3XCOR5nobPUHLl8oOtpeg9tSlwj2t8ZeRgNs4FvOlOvMwB2jUqizWFzdMepJTGJe3UfnlbWd4675xVN2i5puLd5kpY8QpCf5CHHJOhOsJ0dSBc-djPQIQp5rLWsXULhcFHm2y5y9ppaLN2kMmyTrANX4RSDB7x1u7oTqeR4xaOGbuITd4p7o1fFwjcLPw4cFfukW1pnsQyT_qD-Wi16wDU4QdZ5OhS-BIMOXGIn_-uMVDYSlpiDbduNbod8n8dlKOqmo_HeV8HNP7pE8Y541jBT7uNBmvBos0nVMhYfPiYyI4Le7W4wFaAeuy6_PLduO7qTEiBDesFHFRPsC8n-u0Vck22hin6d-84hGzr9LMOove4x4dy3HBiNXepqC-FhY9GtwSMmwTwbf7wurR8cPffm9cSQ_oPGNqX11A8SgbbxwLoSj4aWopbKSRXdnTpctwfTJJIsNHovoruj0miMnsn_TuMkSFmRE7ujGDiB3mrkA94PviaE9PsjxYnAXOSEgNY-xft5P5weYZjFH6ffeneSQeT02o8KM1CkSeS09G60ipiLI4RY9Hb2f6vxVcI-o5ygD4Wl-Q4LgHJsCWh6nIbQo53P_zHTKX-iajbRxHsahyhdyC_mfRU_mLsW9RgefUQPeeD4A0HlIuYuaadTj-ixnkAP3ayQZDo9j185f3oe84udnlNv_TwFSv_76gZ0x4ifpCDMYhoapbXmfHYDu5KgS_SHvldUC9lQinKInlFGJMztHxkHvvJfM-Q_scWsrT20L9BaeZAcVPzpjVpciiQlsJ3fVyjMp4ou_uQdE56yeeFm0MBj9-oZ-ObWDO-dUgl5ryP4VYV0v_Wz_pI3_0G3iZJ7oUoyrlfmWpQ72bc4t3Hx47DhhZ146qPnfQWoodQ1iSnaG39La6iVkSlR8KVKOfPym_ZVj6JCbAvZ09O3ngY7_TcPtpeq036Jorb6N6CBJ96XZxkqEKR0wOys_X6PeJip01C8trXkIE3rD_YYcRg0R1huLlliKTEOj30cz8Z5GZ1oRoZqBvxQ8-ND3oyY7vsQLmg2vrVlK5Pp8oP2etDvfwyvOBULkRDMpb9sIgByysmEHuCNZBr_xH5NaEirGsSmGXoDF-Q2Q_D8Ysg_ILlewVoBZOF05-XO34wuO7dQjYl_5Utt9_KLWnyPHl-NheDed49J45qA_kbag9A4SfKEaBYq_0rHnXlmjlRtrBB4c-5JKYLYBU11JR0z4BFh9ifyQtaVQADTxWmwZzzfMAe0fF0uaJbRbdz9gGIjzLDP5t5d_H0Zcu22OC5LMVycYuIu5E05_VHa_8R-TWhIqzp6t2Df9GS8xCtfim9Wk2h06KJHmAstSBB2dPtWXWlyhYEa7djHvbY5DMMj415PjNYMthgg7FUFyYNb-iWwdA0
302 Found 0 B URL HTTP/2 myckdom.com/aS/feedclick?s=HFz5zNIIs95ROWPasgEEzx8Me0kzRtReLyT4nqgY4lUIKv2ZHTfRFmdNRMz_dvhc29XXvCS9-JLFXNSHgbbvMDcVgn291AC8LnQ1xEXJnvGpZ9qnjJS3-I8fVPNyIHVCDoBlQNHP1uM4RfiIYZyFTUb4EgWZ1o3XCOR5nobPUHLl8oOtpeg9tSlwj2t8ZeRgNs4FvOlOvMwB2jUqizWFzdMepJTGJe3UfnlbWd4675xVN2i5puLd5kpY8QpCf5CHHJOhOsJ0dSBc-djPQIQp5rLWsXULhcFHm2y5y9ppaLN2kMmyTrANX4RSDB7x1u7oTqeR4xaOGbuITd4p7o1fFwjcLPw4cFfukW1pnsQyT_qD-Wi16wDU4QdZ5OhS-BIMOXGIn_-uMVDYSlpiDbduNbod8n8dlKOqmo_HeV8HNP7pE8Y541jBT7uNBmvBos0nVMhYfPiYyI4Le7W4wFaAeuy6_PLduO7qTEiBDesFHFRPsC8n-u0Vck22hin6d-84hGzr9LMOove4x4dy3HBiNXepqC-FhY9GtwSMmwTwbf7wurR8cPffm9cSQ_oPGNqX11A8SgbbxwLoSj4aWopbKSRXdnTpctwfTJJIsNHovoruj0miMnsn_TuMkSFmRE7ujGDiB3mrkA94PviaE9PsjxYnAXOSEgNY-xft5P5weYZjFH6ffeneSQeT02o8KM1CkSeS09G60ipiLI4RY9Hb2f6vxVcI-o5ygD4Wl-Q4LgHJsCWh6nIbQo53P_zHTKX-iajbRxHsahyhdyC_mfRU_mLsW9RgefUQPeeD4A0HlIuYuaadTj-ixnkAP3ayQZDo9j185f3oe84udnlNv_TwFSv_76gZ0x4ifpCDMYhoapbXmfHYDu5KgS_SHvldUC9lQinKInlFGJMztHxkHvvJfM-Q_scWsrT20L9BaeZAcVPzpjVpciiQlsJ3fVyjMp4ou_uQdE56yeeFm0MBj9-oZ-ObWDO-dUgl5ryP4VYV0v_Wz_pI3_0G3iZJ7oUoyrlfmWpQ72bc4t3Hx47DhhZ146qPnfQWoodQ1iSnaG39La6iVkSlR8KVKOfPym_ZVj6JCbAvZ09O3ngY7_TcPtpeq036Jorb6N6CBJ96XZxkqEKR0wOys_X6PeJip01C8trXkIE3rD_YYcRg0R1huLlliKTEOj30cz8Z5GZ1oRoZqBvxQ8-ND3oyY7vsQLmg2vrVlK5Pp8oP2etDvfwyvOBULkRDMpb9sIgByysmEHuCNZBr_xH5NaEirGsSmGXoDF-Q2Q_D8Ysg_ILlewVoBZOF05-XO34wuO7dQjYl_5Utt9_KLWnyPHl-NheDed49J45qA_kbag9A4SfKEaBYq_0rHnXlmjlRtrBB4c-5JKYLYBU11JR0z4BFh9ifyQtaVQADTxWmwZzzfMAe0fF0uaJbRbdz9gGIjzLDP5t5d_H0Zcu22OC5LMVycYuIu5E05_VHa_8R-TWhIqzp6t2Df9GS8xCtfim9Wk2h06KJHmAstSBB2dPtWXWlyhYEa7djHvbY5DMMj415PjNYMthgg7FUFyYNb-iWwdA0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aS/feedclick?s=HFz5zNIIs95ROWPasgEEzx8Me0kzRtReLyT4nqgY4lUIKv2ZHTfRFmdNRMz_dvhc29XXvCS9-JLFXNSHgbbvMDcVgn291AC8LnQ1xEXJnvGpZ9qnjJS3-I8fVPNyIHVCDoBlQNHP1uM4RfiIYZyFTUb4EgWZ1o3XCOR5nobPUHLl8oOtpeg9tSlwj2t8ZeRgNs4FvOlOvMwB2jUqizWFzdMepJTGJe3UfnlbWd4675xVN2i5puLd5kpY8QpCf5CHHJOhOsJ0dSBc-djPQIQp5rLWsXULhcFHm2y5y9ppaLN2kMmyTrANX4RSDB7x1u7oTqeR4xaOGbuITd4p7o1fFwjcLPw4cFfukW1pnsQyT_qD-Wi16wDU4QdZ5OhS-BIMOXGIn_-uMVDYSlpiDbduNbod8n8dlKOqmo_HeV8HNP7pE8Y541jBT7uNBmvBos0nVMhYfPiYyI4Le7W4wFaAeuy6_PLduO7qTEiBDesFHFRPsC8n-u0Vck22hin6d-84hGzr9LMOove4x4dy3HBiNXepqC-FhY9GtwSMmwTwbf7wurR8cPffm9cSQ_oPGNqX11A8SgbbxwLoSj4aWopbKSRXdnTpctwfTJJIsNHovoruj0miMnsn_TuMkSFmRE7ujGDiB3mrkA94PviaE9PsjxYnAXOSEgNY-xft5P5weYZjFH6ffeneSQeT02o8KM1CkSeS09G60ipiLI4RY9Hb2f6vxVcI-o5ygD4Wl-Q4LgHJsCWh6nIbQo53P_zHTKX-iajbRxHsahyhdyC_mfRU_mLsW9RgefUQPeeD4A0HlIuYuaadTj-ixnkAP3ayQZDo9j185f3oe84udnlNv_TwFSv_76gZ0x4ifpCDMYhoapbXmfHYDu5KgS_SHvldUC9lQinKInlFGJMztHxkHvvJfM-Q_scWsrT20L9BaeZAcVPzpjVpciiQlsJ3fVyjMp4ou_uQdE56yeeFm0MBj9-oZ-ObWDO-dUgl5ryP4VYV0v_Wz_pI3_0G3iZJ7oUoyrlfmWpQ72bc4t3Hx47DhhZ146qPnfQWoodQ1iSnaG39La6iVkSlR8KVKOfPym_ZVj6JCbAvZ09O3ngY7_TcPtpeq036Jorb6N6CBJ96XZxkqEKR0wOys_X6PeJip01C8trXkIE3rD_YYcRg0R1huLlliKTEOj30cz8Z5GZ1oRoZqBvxQ8-ND3oyY7vsQLmg2vrVlK5Pp8oP2etDvfwyvOBULkRDMpb9sIgByysmEHuCNZBr_xH5NaEirGsSmGXoDF-Q2Q_D8Ysg_ILlewVoBZOF05-XO34wuO7dQjYl_5Utt9_KLWnyPHl-NheDed49J45qA_kbag9A4SfKEaBYq_0rHnXlmjlRtrBB4c-5JKYLYBU11JR0z4BFh9ifyQtaVQADTxWmwZzzfMAe0fF0uaJbRbdz9gGIjzLDP5t5d_H0Zcu22OC5LMVycYuIu5E05_VHa_8R-TWhIqzp6t2Df9GS8xCtfim9Wk2h06KJHmAstSBB2dPtWXWlyhYEa7djHvbY5DMMj415PjNYMthgg7FUFyYNb-iWwdA0 HTTP/1.1
Host: myckdom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://btpnative.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: nginx
date: Wed, 29 Mar 2023 20:25:25 GMT
content-length: 0
set-cookie: rhid=83038065425; Max-Age=15552000; Expires=Mon, 25-Sep-2023 20:25:25 GMT; Domain=myckdom.com; Path=/; SameSite=None; secure;
location: https://p274639.myckdom.com/adServe/domainClick?ai=Yqr0iu0EPPJVkBNqEMboxRCtfim9Wk2hMSAB6xGVB__D53I6CyBlCYzoeAOaw8DEQ0RjChNydKUb9OvwQ386-4gZ0Wk234ZqA4MA7ESrrFYr2lb-WNxaFmeC7YphiSH1fkt3-mt-8H9Kgbz0VF_-WH_9b8ky2I1bjwDLTvEjLcP0B9AM9pb07V2k4XVJzHJX8mFgHSWE3TYiz-JMXi3K7feRA0BBII8VSERGCvbayJ4JbewQCztnWeHPuSSmC2AVtoGWPdkgXNN_qCYvh_QGQ2QBCYiu7z84nn5UmE97yH54bdH1BfqIyI4XRKiQejY9l5g72F1sPYafqhWZ-YKZz6rRPbGyYnCcF9nxG1Y8QfZKdkAM850vP-n44YFBbd7ECEomdw_Jheywpth3iNEvd_P4BsKUl697UgDHGPx9sdOxxaLzhkg6TSol4S5osn5YR0Ng4Sbb-ez4Kbfkwb3MQhMKyxAGjlv4s4j2U_KFyanAA_7nJ21J41Yy3XW5yq2M&ui=HFz5zNIIs96w8gbO8AoGVPmI0xR1wwxSVya-MBlX_gHPF8Cjy8-j000iPayALnSxKgZeyzGIW8SW77Nyzmv8jqWYK6fsp1StD4L4UxLcsnm8FWaIrH4W3g&si=1&oref=1b228d957202c412327640d18352c84b&optunit=lix9hju79jRd8p_SJD2hQg&rb=E-qvs9aXu7s&rr=0&abtg=0
X-Firefox-Spdy: h2
p274639.myckdom.com/adServe/domainClick?ai=Yqr0iu0EPPJVkBNqEMboxRCtfim9Wk2hMSAB6xGVB__D53I6CyBlCYzoeAOaw8DEQ0RjChNydKUb9OvwQ386-4gZ0Wk234ZqA4MA7ESrrFYr2lb-WNxaFmeC7YphiSH1fkt3-mt-8H9Kgbz0VF_-WH_9b8ky2I1bjwDLTvEjLcP0B9AM9pb07V2k4XVJzHJX8mFgHSWE3TYiz-JMXi3K7feRA0BBII8VSERGCvbayJ4JbewQCztnWeHPuSSmC2AVtoGWPdkgXNN_qCYvh_QGQ2QBCYiu7z84nn5UmE97yH54bdH1BfqIyI4XRKiQejY9l5g72F1sPYafqhWZ-YKZz6rRPbGyYnCcF9nxG1Y8QfZKdkAM850vP-n44YFBbd7ECEomdw_Jheywpth3iNEvd_P4BsKUl697UgDHGPx9sdOxxaLzhkg6TSol4S5osn5YR0Ng4Sbb-ez4Kbfkwb3MQhMKyxAGjlv4s4j2U_KFyanAA_7nJ21J41Yy3XW5yq2M&ui=HFz5zNIIs96w8gbO8AoGVPmI0xR1wwxSVya-MBlX_gHPF8Cjy8-j000iPayALnSxKgZeyzGIW8SW77Nyzmv8jqWYK6fsp1StD4L4UxLcsnm8FWaIrH4W3g&si=1&oref=1b228d957202c412327640d18352c84b&optunit=lix9hju79jRd8p_SJD2hQg&rb=E-qvs9aXu7s&rr=0&abtg=0
302 Found 0 B URL HTTP/2 p274639.myckdom.com/adServe/domainClick?ai=Yqr0iu0EPPJVkBNqEMboxRCtfim9Wk2hMSAB6xGVB__D53I6CyBlCYzoeAOaw8DEQ0RjChNydKUb9OvwQ386-4gZ0Wk234ZqA4MA7ESrrFYr2lb-WNxaFmeC7YphiSH1fkt3-mt-8H9Kgbz0VF_-WH_9b8ky2I1bjwDLTvEjLcP0B9AM9pb07V2k4XVJzHJX8mFgHSWE3TYiz-JMXi3K7feRA0BBII8VSERGCvbayJ4JbewQCztnWeHPuSSmC2AVtoGWPdkgXNN_qCYvh_QGQ2QBCYiu7z84nn5UmE97yH54bdH1BfqIyI4XRKiQejY9l5g72F1sPYafqhWZ-YKZz6rRPbGyYnCcF9nxG1Y8QfZKdkAM850vP-n44YFBbd7ECEomdw_Jheywpth3iNEvd_P4BsKUl697UgDHGPx9sdOxxaLzhkg6TSol4S5osn5YR0Ng4Sbb-ez4Kbfkwb3MQhMKyxAGjlv4s4j2U_KFyanAA_7nJ21J41Yy3XW5yq2M&ui=HFz5zNIIs96w8gbO8AoGVPmI0xR1wwxSVya-MBlX_gHPF8Cjy8-j000iPayALnSxKgZeyzGIW8SW77Nyzmv8jqWYK6fsp1StD4L4UxLcsnm8FWaIrH4W3g&si=1&oref=1b228d957202c412327640d18352c84b&optunit=lix9hju79jRd8p_SJD2hQg&rb=E-qvs9aXu7s&rr=0&abtg=0
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /adServe/domainClick?ai=Yqr0iu0EPPJVkBNqEMboxRCtfim9Wk2hMSAB6xGVB__D53I6CyBlCYzoeAOaw8DEQ0RjChNydKUb9OvwQ386-4gZ0Wk234ZqA4MA7ESrrFYr2lb-WNxaFmeC7YphiSH1fkt3-mt-8H9Kgbz0VF_-WH_9b8ky2I1bjwDLTvEjLcP0B9AM9pb07V2k4XVJzHJX8mFgHSWE3TYiz-JMXi3K7feRA0BBII8VSERGCvbayJ4JbewQCztnWeHPuSSmC2AVtoGWPdkgXNN_qCYvh_QGQ2QBCYiu7z84nn5UmE97yH54bdH1BfqIyI4XRKiQejY9l5g72F1sPYafqhWZ-YKZz6rRPbGyYnCcF9nxG1Y8QfZKdkAM850vP-n44YFBbd7ECEomdw_Jheywpth3iNEvd_P4BsKUl697UgDHGPx9sdOxxaLzhkg6TSol4S5osn5YR0Ng4Sbb-ez4Kbfkwb3MQhMKyxAGjlv4s4j2U_KFyanAA_7nJ21J41Yy3XW5yq2M&ui=HFz5zNIIs96w8gbO8AoGVPmI0xR1wwxSVya-MBlX_gHPF8Cjy8-j000iPayALnSxKgZeyzGIW8SW77Nyzmv8jqWYK6fsp1StD4L4UxLcsnm8FWaIrH4W3g&si=1&oref=1b228d957202c412327640d18352c84b&optunit=lix9hju79jRd8p_SJD2hQg&rb=E-qvs9aXu7s&rr=0&abtg=0 HTTP/1.1
Host: p274639.myckdom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://btpnative.com/
Connection: keep-alive
Cookie: rhid=83038065425
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 302 Found
server: nginx
date: Wed, 29 Mar 2023 20:25:25 GMT
content-length: 0
set-cookie: rhid=83038065425; Max-Age=15552000; Expires=Mon, 25-Sep-2023 20:25:25 GMT; Domain=myckdom.com; Path=/; SameSite=None; secure;
loi=ad_490233_off_142374_aff_3322_cid_274639-577725860-GOPLAYER.CC_ts_1680121525; Max-Age=3600; Expires=Wed, 29-Mar-2023 21:25:25 GMT; Domain=myckdom.com; Path=/; SameSite=None; secure;
location: https://myfood.ltd/?v=20171031&s1=0
X-Firefox-Spdy: h2
myfood.ltd/?v=20171031&s1=0
200 OK 2.9 kB URL HTTP/2 myfood.ltd/?v=20171031&s1=0
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (6859), with no line terminators
Hash 029ccb01ef612a9e6748494c60d24b69
d385f7671725be11701998c27571e94b1950f991
7ac429dc45b509b1bed9bdcdc5610868d510d979ce3cc06d48870511bf0425f5
GET /?v=20171031&s1=0 HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://btpnative.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-encoding: gzip
content-length: 2896
content-type: text/html
last-modified: Mon, 01 Mar 2021 09:43:13 GMT
accept-ranges: bytes
server: nginx
etag: W/"603cb731-1ad4"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds236.sk1.c
X-Firefox-Spdy: h2
myfood.ltd/main/css/style.css
200 OK 19 kB URL HTTP/2 myfood.ltd/main/css/style.css
IP
File type Unicode text, UTF-8 text, with very long lines (65134), with no line terminators
Hash a95a0c8bd1273406b8c8053fb3527d56
2a461dcfa2c4bf1d22727bfd7c3c2abc85d44343
55b46146d32f4ee365d4ca91d8b3b1c504a062b15bbc1ed60a22ac2d05be1db5
GET /main/css/style.css HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-encoding: gzip
content-length: 18933
content-type: text/css
last-modified: Mon, 01 Mar 2021 09:43:15 GMT
accept-ranges: bytes
server: nginx
etag: W/"603cb733-1b1ac"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds261.sk1.c
X-Firefox-Spdy: h2
myfood.ltd/images/Superfood_1.jpg
200 OK 74 kB URL HTTP/2 myfood.ltd/images/Superfood_1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Bigstock], progressive, precision 8, 800x420, components 3\012- data
Hash c2c3ec0e55e648c2a85d4499714a9c11
073f2990a52da59a7d3b73583b30be3c2cf45523
b66cf7365382753dc6340bfa2fba89c368ca3b930a0833d8f64c4c34525fc2ec
GET /images/Superfood_1.jpg HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-length: 74204
content-type: image/jpeg
last-modified: Mon, 01 Mar 2021 09:43:12 GMT
accept-ranges: bytes
server: nginx
etag: "603cb730-121dc"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds247.sk1.c
X-Firefox-Spdy: h2
myfood.ltd/images/Superfood_2.jpg
200 OK 52 kB URL HTTP/2 myfood.ltd/images/Superfood_2.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=1, copyright=Bigstock], progressive, precision 8, 800x341, components 3\012- data
Hash b87af7248a82f58fe2ea5d0c7b030886
1d5a5b9752d7978c68b0d4a1689b3d8e6d322f0a
14da8c39c357dad0441b26d575c0000a9529c76d785680306a3cf51abe4cae81
GET /images/Superfood_2.jpg HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-length: 51830
content-type: image/jpeg
last-modified: Mon, 01 Mar 2021 09:43:13 GMT
accept-ranges: bytes
server: nginx
etag: "603cb731-ca76"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds220.sk1.c
X-Firefox-Spdy: h2
myfood.ltd/images/avatar-1.jpg
200 OK 11 kB URL HTTP/2 myfood.ltd/images/avatar-1.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 128x128, components 3\012- data
Hash 62d0b6a649ac10e72bcb6ea3bbf57564
3e333889b0b66bfc6a32499f4c55878e2102b463
58dddc0a77632d920d096da6c6e2587c5859a4b4dd7af6dcd6eb8009ebc23ba6
GET /images/avatar-1.jpg HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-length: 11304
content-type: image/jpeg
last-modified: Mon, 01 Mar 2021 09:43:12 GMT
accept-ranges: bytes
server: nginx
etag: "603cb730-2c28"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds218.sk1.c
X-Firefox-Spdy: h2
myfood.ltd/images/avatar-2.jpg
200 OK 11 kB URL HTTP/2 myfood.ltd/images/avatar-2.jpg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=12, height=128, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=128], progressive, precision 8, 128x128, components 3\012- data
Hash dd3881ed1b5b03b1d571edf89e12c466
61ca68c1c2d2ae7d286dfc0540f4ca8b357fdf3d
97b65e41dd547b310e1e860d2ae4717dba1d97bd36c0cd06c35749caa515e207
GET /images/avatar-2.jpg HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-length: 10665
content-type: image/jpeg
last-modified: Mon, 01 Mar 2021 09:43:12 GMT
accept-ranges: bytes
server: nginx
etag: "603cb730-29a9"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds202.sk1.c
X-Firefox-Spdy: h2
myfood.ltd/main/js/main.js
200 OK 39 kB URL HTTP/2 myfood.ltd/main/js/main.js
IP
File type Unicode text, UTF-8 text, with very long lines (60220)
Hash 181e3fa3b1de97ff4efd259bc2a2c8c7
52edf1dc36109cb57bea12689a48442e27f06ad1
ffa8984bea3bf0c0a0cb282e9a5a98b3435e63fb6a26dfe0351979fa9f827c40
GET /main/js/main.js HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-encoding: gzip
content-length: 38656
content-type: application/javascript
last-modified: Mon, 01 Mar 2021 09:43:14 GMT
accept-ranges: bytes
server: nginx
etag: "603cb732-1d57b"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds228.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 20:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 20:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14564, version 1.0\012- data
Hash 60c866748ff15f5b347fdba64596b1b1
34f486906decb7c8cf7a02d4758add9a2408c7a5
5278c0f6063ca9ad85653b18a2ddf1aa57e3ab40b7973a69b09acf859db8264d
GET /s/opensans/v15/DXI1ORHCpsQm3Vp6mXoaTegdm0LZdjqr5-oayXSOefg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://myfood.ltd
Connection: keep-alive
Referer: https://myfood.ltd/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14564
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:12 GMT
expires: Sat, 23 Mar 2024 10:27:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 21:49:34 GMT
content-type: font/woff2
age: 467893
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v15/MTP_ySUJH_bn48VBG8sNSugdm0LZdjqr5-oayXSOefg.woff2
200 OK 14 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v15/MTP_ySUJH_bn48VBG8sNSugdm0LZdjqr5-oayXSOefg.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 14544, version 1.0\012- data
Hash 223a277bd88d8a90c8cdf24cda0ad5f5
24234c1c81b3948758c1a0be8e5a65386ca94c52
d61b45b8b3cded238a65ee0aac4043b989f11cee56acfe5c889777f961f241a2
GET /s/opensans/v15/MTP_ySUJH_bn48VBG8sNSugdm0LZdjqr5-oayXSOefg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://myfood.ltd
Connection: keep-alive
Referer: https://myfood.ltd/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14544
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 24 Mar 2023 10:27:12 GMT
expires: Sat, 23 Mar 2024 10:27:12 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 Oct 2017 21:49:52 GMT
content-type: font/woff2
age: 467893
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8666
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 20:25:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8666
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 20:25:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8666
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 20:25:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8666
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 20:25:25 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8666
Expires: Wed, 29 Mar 2023 22:49:51 GMT
Date: Wed, 29 Mar 2023 20:25:25 GMT
Connection: keep-alive
myfood.ltd/favicon.ico
200 OK 1.2 kB IP
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash b671b0407b8abf4ffb9946ee1596d992
79a116ffd13f1888451abd3cb8751cb2140f2fa4
1515616a51664df153b03397585ee45469cb936100992f870419514b17820649
GET /favicon.ico HTTP/1.1
Host: myfood.ltd
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://myfood.ltd/?v=20171031&s1=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Wed, 29 Mar 2023 20:25:25 GMT
cache-control: max-age=30
content-length: 1150
content-type: image/x-icon
last-modified: Wed, 28 Mar 2018 14:00:16 GMT
accept-ranges: bytes
server: nginx
etag: "5abb9ff0-47e"
x-hw: 1680121525.cds215.sk1.hn,1680121525.cds240.sk1.c
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 253f48aa7cbf667d52cb37fda10cdb1f
e29478b866f90402b48d2b516d01d60a863c9cf9
b4a73ab71250b9e4a3f95e28dbf50dd000e1f338c7c3ac9f3351c1f6d6d3bfff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F85885238-8732-476a-b37c-1eac5dbc3e90.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6049
x-amzn-requestid: 2d1a2a66-8b63-44f0-83ec-10628a5fcac6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CgvBFFMGIAMFhCg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235ed3-2a90bf0365925acb3b348489;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:40:35 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXiCIy2ZqOyLvougeQikdsmaIJ9BfMPpOO4oU-3nEGY33FQGCm0ZoQ==
via: 1.1 c28e01aa413e9ea602538ccda1511062.cloudfront.net (CloudFront), 1.1 49cdeca097624936e070b73619df7da8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:44:35 GMT
age: 81650
etag: "e29478b866f90402b48d2b516d01d60a863c9cf9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg
200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5d389dd69e54e5d7b547a425f9b22ebf
604a65cfc5572c5da9d3fdea795be3942b8d14cb
5beda50c5f20633003e1f939673a6005eca314372e7f8fe0a1d4bb5702ae1712
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8fbdd640-8a87-474c-a4d5-f25e31609f46.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9501
x-amzn-requestid: f073f55c-fd49-4b8b-8b9c-026f6a546378
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CdbunG2VIAMFnQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64220cc3-32af7701763d0f734f09a05d;Sampled=0
x-amzn-remapped-date: Mon, 27 Mar 2023 21:38:11 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: wyrl1rguCM5LrsEN49aH42bNWc7ht0Je1UeO-dAx6Ujj1kjQgdfGEQ==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 0cf6c59c77f0fff670ae085179adc458.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 22:20:32 GMT
age: 79493
etag: "604a65cfc5572c5da9d3fdea795be3942b8d14cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fd1bc71c7e9eed7c086d752ea8b4b992
02a74cf88501d65b3dfcceb5adc79fd93ce785ed
a9a423d347533322d4d3ba90ee5fca5ca32f8d540f744ea2621deeda46df89f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d713593-a582-498a-b202-20cddce4f8c4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7605
x-amzn-requestid: b7628073-4eb3-4ef6-b7d0-0224e0a75601
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GFPoAMFebQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-445041c74356c54053f772a1;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: npXnMYBUM1bcf7FQIJEHng73EkILWwM0Jvey0QDUvmln0kAJUG_Rpw==
via: 1.1 ffc1e24c06bfbb135c0a4d240b382048.cloudfront.net (CloudFront), 1.1 0a2ce08fa1ec3c33302a7547d3305978.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:43:57 GMT
age: 81688
etag: "02a74cf88501d65b3dfcceb5adc79fd93ce785ed"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0a85ec27ed4f7910e26b4ff023ab1fb
f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0
fc31409ba6db565d4861a35ee6f74b7436eea5e5169bc1283f63cf6dfdb03764
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67889522-c6ea-4b17-93f3-ac6e2b4777c1.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6722
x-amzn-requestid: a6de82bd-5b03-4ffd-90dd-9bd03331d123
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY8GG2IAMFuzQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-7cb1c8187fe3d2b0283fb3a0;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: lZBspmi0Dku2a7jY39WyiBC3wu5F4eAvbTwHF6_8pgHfw21XSW_NbA==
via: 1.1 773bf3616e85ce2b187fa78710a6beb2.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:43:58 GMT
age: 81687
etag: "f35a6c0c18a7c25a5f644ed9bebef0d38f8c6ac0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: LAAUFZcFBIpdMUkaDQXGW1sdwLK9c_uhQQHLiJHGF7dEvfJ0KX7MaA==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:37:00 GMT
age: 82105
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 21966d424aed17f9af10f69f1cb82860
87ffcdc8f4d76491bc4a5cb3a01a3923d1dff2be
6c02a4b1eee1b1c86633ef6364e6036e3f56b1eaa64a04b770d7641f7e2a2466
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 29 Mar 2023 20:25:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 096bf7a8a2bfe48c19e6bf6887145e64
6193039864cae4ab0163f3a7d45613fb86e6be14
51625131b04aa5294e90062807ca728b7a41db79ea069cd238711f8ead5ecd8a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fede24709-db3b-4687-8715-b976f42d5650.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7630
x-amzn-requestid: 5f162d03-0d82-4cd6-8812-4dac159bc2b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguY9HwhIAMFeOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235dd2-670279397929c69c0ee58b35;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:36:18 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: 79RHJqi0dV_HFeUvGnzbChn8_54pc_ceWOEvLzrtxhr33rG6V42Buw==
via: 1.1 ee6ea1e4552345de209d26f9ffb35d4a.cloudfront.net (CloudFront), 1.1 deaaf0548506de20925615eb51a7ea7e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 28 Mar 2023 21:44:36 GMT
etag: "6193039864cae4ab0163f3a7d45613fb86e6be14"
content-type: image/jpeg
age: 81649
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
207.244.67.218
192.99.158.241
23.36.76.226