urlquery - report: ww5.affinity7.com/

Overview

URL	ww5.affinity7.com/
IP	3.128.220.50
ASN	AMAZON-02
Location	United States
Report completed	2022-07-06 09:24:42 UTC
Status	Loading report..
urlquery Alerts	No alerts detected

Settings

UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer

Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Blocklists

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Added / Verified	Severity	Host	Comment
2022-07-06	2	affinity7.com	Sinkholed
2022-07-06	2	affinity7.com	Sinkholed
2022-07-06	2	affinity7.com	Sinkholed
2022-07-06	2	affinity7.com	Sinkholed

Files

No files detected

Passive DNS (20)

Passive DNS Source	Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
[Mnemonic Passive DNS]	www.google-analytics.com (2)	40	2017-01-30 05:00:06 UTC	2022-07-06 06:00:56 UTC	142.250.74.174
[Mnemonic Passive DNS]	js-agent.newrelic.com (1)	378	2017-01-30 05:00:15 UTC	2022-07-06 04:19:35 UTC	151.101.86.137
[Mnemonic Passive DNS]	code.jquery.com (1)	634	2012-05-21 17:28:02 UTC	2022-07-05 21:27:55 UTC	69.16.175.42
[Mnemonic Passive DNS]	www.sav.com (2)	443583	2015-03-02 07:22:33 UTC	2015-03-02 07:22:33 UTC	172.66.42.235
[Mnemonic Passive DNS]	fonts.gstatic.com (2)	0	2017-01-30 04:59:51 UTC	2022-07-06 04:41:59 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
[Mnemonic Passive DNS]	ka-p.fontawesome.com (7)	4489	2020-10-21 15:16:48 UTC	2022-07-06 04:56:06 UTC	104.18.22.52
[Mnemonic Passive DNS]	push.services.mozilla.com (1)	2140	2014-10-24 08:27:06 UTC	2022-07-06 04:47:23 UTC	54.187.160.31
[Mnemonic Passive DNS]	img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-07-06 04:16:26 UTC	34.120.237.76
[Mnemonic Passive DNS]	r3.o.lencr.org (5)	344	2020-12-02 08:52:13 UTC	2022-07-06 04:41:34 UTC	23.36.76.226
[Mnemonic Passive DNS]	ww5.affinity7.com (4)	0	2022-07-06 09:24:22 UTC	2022-07-06 09:24:22 UTC	3.128.220.50	Unknown ranking
[Mnemonic Passive DNS]	widget.trustpilot.com (7)	6018	No data	No data	54.230.111.99
[Mnemonic Passive DNS]	bam.nr-data.net (1)	630	2022-05-18 16:30:58 UTC	2022-07-05 21:19:29 UTC	162.247.241.14
[Mnemonic Passive DNS]	ocsp.digicert.com (1)	86	2012-11-29 12:49:49 UTC	2022-07-06 08:25:08 UTC	93.184.220.29
[Mnemonic Passive DNS]	stackpath.bootstrapcdn.com (1)	2467	2018-04-05 04:41:29 UTC	2021-03-05 09:28:46 UTC	104.18.11.207
[Mnemonic Passive DNS]	firefox.settings.services.mozilla.com (2)	867	2016-03-17 08:25:01 UTC	2020-05-25 20:01:47 UTC	54.230.111.35
[Mnemonic Passive DNS]	content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-07-06 04:55:23 UTC	54.230.111.64
[Mnemonic Passive DNS]	ocsp.pki.goog (6)	175	2017-06-14 07:23:31 UTC	2022-07-06 04:42:12 UTC	142.250.74.3
[Mnemonic Passive DNS]	contile.services.mozilla.com (1)	1114	No data	No data	34.117.237.239
[Mnemonic Passive DNS]	cdnjs.cloudflare.com (4)	235	2014-04-23 07:31:51 UTC	2022-05-16 10:07:49 UTC	104.17.24.14
[Mnemonic Passive DNS]	fonts.googleapis.com (1)	8877	2017-01-30 04:59:43 UTC	2019-10-16 05:12:41 UTC	142.250.74.10

Recent reports on same IP/ASN/Domain

Last 10 reports on IP: 3.128.220.50

Date	UQ / IDS / BL	URL	IP
2022-08-10 07:38:12 +0000	0 - 0 - 1	bestfriedrice.com/	3.128.220.50
2022-08-07 19:38:04 +0000	0 - 0 - 2	ajdralle.info/	3.128.220.50
2022-08-05 01:58:14 +0000	0 - 0 - 1	musicguide.net/	3.128.220.50
2022-08-01 21:28:23 +0000	0 - 0 - 0	allmvr.com	3.128.220.50
2022-07-28 08:44:16 +0000	0 - 0 - 2	allallstate.com/?q=bLFik78DFHz9rxHkg0KMZ3qMHw (...)	3.128.220.50
2022-07-28 03:00:50 +0000	0 - 0 - 1	paraget.com/	3.128.220.50
2022-07-25 22:24:05 +0000	0 - 0 - 2	asiapoker389.com/	3.128.220.50
2022-07-21 08:07:17 +0000	0 - 0 - 4	profitcall.net/	3.128.220.50
2022-07-20 14:27:30 +0000	0 - 0 - 4	profitcall.net/	3.128.220.50
2022-07-15 02:02:41 +0000	0 - 0 - 6	mycabinet.xyz/	3.128.220.50

Last 10 reports on ASN: AMAZON-02

Date	UQ / IDS / BL	URL	IP
2022-08-12 23:19:21 +0000	0 - 0 - 1	diegobahu.com/	44.227.76.166
2022-08-12 23:09:27 +0000	0 - 0 - 1	clk.flexdirectpath.com/c/c=1834811/s=289339/m (...)	3.18.216.192
2022-08-12 23:05:29 +0000	0 - 0 - 1	a4fbb.xyz/get/campaign/prcampaignlil	54.230.111.50
2022-08-12 23:03:11 +0000	0 - 0 - 4	www.wownicepop.com/73fd2ca3-649a-4076-a2e5-e4 (...)	18.196.84.70
2022-08-12 23:01:12 +0000	0 - 0 - 2	www.ibayme.eb2a.com/code.php?mode=cb&usr=Z2Vv (...)	199.59.243.220
2022-08-12 22:57:19 +0000	0 - 0 - 2	www1.vaccinespottr.org/	99.83.136.84
2022-08-12 22:55:40 +0000	2 - 0 - 0	lolllipoping.com/lpz/Mainstream/pk_urdu_sweep (...)	35.157.13.180
2022-08-12 22:54:27 +0000	0 - 0 - 1	dratingmaject.com/5aae180b-db3a-44b8-a94d-1b8 (...)	18.195.149.11
2022-08-12 22:54:11 +0000	0 - 0 - 2	phythmspeters.com/68dc801f-a77e-47a1-a0ba-51c (...)	18.156.16.63
2022-08-12 22:54:09 +0000	0 - 0 - 1	phythmspeters.com/39adc808-b57a-40b1-af4a-0ae (...)	18.156.16.63

No other reports on domain: affinity7.com

JavaScript

Executed Scripts (14)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (56)

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Content-Length, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Wed, 06 Jul 2022 08:56:02 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 db0992ba349fc51d5151ec8330e36c28.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: jrsBllJF_xAX7ZsDMwZk-3zqaok_YGyHMvWOgtCNds5yRQLXdpfXjQ== Age: 1707 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: 91dd975a7b17b2922dd23c0e49314e40 Sha1: 57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2 Sha256: 09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "5CA12512DFBE8A007255191678A4ECD570026D865AE741C0D3025D8FE1A58659" Last-Modified: Mon, 04 Jul 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5270 Expires: Wed, 06 Jul 2022 10:52:19 GMT Date: Wed, 06 Jul 2022 09:24:29 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 65822db7ce56247876fbdcc5c29607f6 Sha1: 91262a33683099ad0dc3631d0a7a9051d8539b20 Sha256: 5ca12512dfbe8a007255191678a4ecd570026d865ae741c0d3025d8fe1a58659
GET / HTTP/1.1 Host: ww5.affinity7.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10249) Size: 21240 Md5: bce5281cb444e17470b195bf3200b3ff$ 3.128.220.50 HTTP/1.1 200 OK Content-Type: text/html; charset=UTF-8 Date: Wed, 06 Jul 2022 09:24:29 GMT Transfer-Encoding: chunked Connection: keep-alive Server: nginx/1.16.1 X-Powered-By: PHP/7.3.12 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (10249) Size: 21240 Md5: bce5281cb444e17470b195bf3200b3ff Sha1: 03ec73efaa2718634307a50c3297751f148f80ec Sha256: a3ac373129986e821872bd2b84b22db43f1c5a919a0feb3143d2c72960d9a577 Alerts: Blocklists: - quad9: Sinkholed
GET /chains/remote-settings.content-signature.mozilla.org-2022-08-10-12-10-21.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	$Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29$ 54.230.111.64 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Tue, 21 Jun 2022 12:10:22 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Wed, 06 Jul 2022 03:26:46 GMT etag: "581454acdd98f34fd3fbabd0977ade29" x-cache: Hit from cloudfront via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: ZriBNIwnJqRGB_bQBdmSm7-EQ3DXeZmlNCSvPQMRuNYvSO2eQMuEqQ== age: 21464 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 581454acdd98f34fd3fbabd0977ade29 Sha1: d8d86c0b513137aeb85de01cea7b272c35eb6ab4 Sha256: e98f8f33ba5ed59c3cfdf2ae54957ed32652cf0899f3c8db4b5872e3ece1e4eb
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6$ 34.117.237.239 HTTP/2 200 OK server: nginx date: Wed, 06 Jul 2022 09:24:29 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	$Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 183 Md5: e4e384d6672787c1bb2a9b500114f1f5$ 54.230.111.99 HTTP/1.1 301 Moved Permanently Content-Type: text/html Server: CloudFront Date: Wed, 06 Jul 2022 09:24:29 GMT Content-Length: 183 Connection: keep-alive Location: https://widget.trustpilot.com/bootstrap/v5/tp.widget.bootstrap.min.js X-Cache: Redirect from cloudfront Via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 219dxVTxQol0oOLu-yzbuNzxuHlV8C7TtahWgYKN8drcbJyZRp987Q== --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size: 183 Md5: e4e384d6672787c1bb2a9b500114f1f5 Sha1: cf909e7937cd3f312c434367b732a53d7a6cbf14 Sha256: 80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /ajax/libs/font-awesome/5.9.0/css/all.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	104.17.24.14 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: text/css; charset=utf-8 content-length: 10234 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e60-111ac" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 2540831 expires: Mon, 26 Jun 2023 09:24:29 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3kMujzqfwpIYfSB0o5rwAYDd%2Fn0KOLxYMJwvDc2xUQPZj6H88kC6wX%2BOeSUiC8A6%2Fnk33mFCjhmytSnn2SfKEDroFe8GyrgxHQon7NNIK4Ue2G%2BGrr9r%2Bv1DsxUhaLhdxHJAWK6I"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 726749a3ef0e1c02-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text Size: 10234 Md5: cd3dfb72d171caffb268d3c10438ec02 Sha1: 8b9087b902215e978e1e1bb6f734b2d46f02481a Sha256: a9a7eadd55d4e2714c778709066da5fe32c900f70d6270e29cc61842f35dfe51
GET /ajax/libs/FitText.js/1.2.0/jquery.fittext.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	104.17.24.14 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: application/javascript; charset=utf-8 content-length: 344 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03cee-237" last-modified: Mon, 04 May 2020 16:03:58 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 2542208 expires: Mon, 26 Jun 2023 09:24:29 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vmJTKUzAyK%2FFkJQJXdX7G11%2FS67bB6AKo1yW7%2FxEAmCyZk4HU0dQIidD%2F6ZCMbqseKJQQLgtja2w%2B5XOeiU1h7RmtTFrIiPckDt%2BEzYiOpDd3tS3F7s%2Blujp%2FxwjSbYfRqnlF1M%2F"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 726749a3ff1f1c02-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (385) Size: 344 Md5: cd3641a36162e1a2537374555233c060 Sha1: 73e6e5b1da87ba4ac4266c8ba7588cae271d4f24 Sha256: 20126157761f1005f552c115dc28788fea8e9ff5340857e0b4595281ceebe2f7
GET /ajax/libs/popper.js/1.14.6/umd/popper.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	104.17.24.14 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: application/javascript; charset=utf-8 content-length: 6634 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03fa9-51ed" last-modified: Mon, 04 May 2020 16:15:37 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 1682518 expires: Mon, 26 Jun 2023 09:24:29 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yboh4xBeduWEzhVJY8B5l3p%2BtbXtj7XVmxdFgnOXOfHTMEysvFIi5Zh75Z21d8Ffwm4US9bHoD6E1QUYnBMbIM3JxrIx5uJEPrLjBwScoe7kBdURbj1t8k4idjsAGuClgvjgt%2FM3"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 726749a40f2b1c02-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (20800) Size: 6634 Md5: dfedfef5394dc12855a1ec785e3bd13b Sha1: 1d8e5431e41ae6021ae6624ac3f298c3c37cf4cd Sha256: 85c063db88d550571210304d57a5cd7b1e18e7b3d22e5069ac50c6e18030aecc
GET /jquery-3.3.1.min.js HTTP/1.1 Host: code.jquery.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	69.16.175.42 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-encoding: gzip content-length: 30288 content-type: application/javascript; charset=utf-8 last-modified: Fri, 20 Aug 2021 17:47:53 GMT accept-ranges: bytes server: nginx etag: W/"611feac9-1538f" cache-control: max-age=315360000, public access-control-allow-origin: * vary: Accept-Encoding x-hw: 1657099469.dop015.sk1.t,1657099469.cds013.sk1.hn,1657099469.cds072.sk1.c X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65451) Size: 30288 Md5: d549b312f7a7d228b4ec229a6547dfdc Sha1: 0766794582ad530ec0f8c2595f741086afffa312 Sha256: f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /css/for_sale_lander.css?1657099469 HTTP/1.1 Host: ww5.affinity7.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	3.128.220.50 HTTP/1.1 200 OK Content-Type: text/css Date: Wed, 06 Jul 2022 09:24:29 GMT Content-Length: 4269 Connection: keep-alive Server: nginx/1.16.1 Last-Modified: Mon, 24 Aug 2020 23:09:06 GMT ETag: "5f444892-10ad" Accept-Ranges: bytes --- Additional Info --- Magic: assembler source, ASCII text Size: 4269 Md5: 05fe463a10e5c1e37e41f4bd9be40803 Sha1: 0170d2d781dc8ec89835b1b29d42c13bed7c740b Sha256: 53241eb89be555a4ca731241f2265257e4d3297f2e92d1679c73efc9b541bd3d Alerts: Blocklists: - quad9: Sinkholed
GET /bootstrap/v5/tp.widget.bootstrap.min.js HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://ww5.affinity7.com/ Connection: keep-alive Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	54.230.111.99 HTTP/2 200 OK content-type: application/x-javascript content-length: 6124 last-modified: Mon, 30 May 2022 14:38:02 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Wed, 06 Jul 2022 06:27:31 GMT cache-control: max-age=86400 etag: "5add60196e5f96a414fb4b9586764e5d" x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: UoRLUI4cYYrvmaNuZ_2jdjMhslJNbLAwSNd13C9H6S8C5st-n6fJdQ== age: 10619 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (19239) Size: 6124 Md5: 5add60196e5f96a414fb4b9586764e5d Sha1: 633f471b3c2fcedeef9cad90cb5bf56f5fe55588 Sha256: 5370f4ba91dda790c7cae92817b812fcbd1ab367cbb4862f5669960ae4e2c9e0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 09:24:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: 77412d8fb7fe2f69e9101c3386b79da9 Sha1: fac8ee244f886d6d4f4c5f5b0e0371d9b84159af Sha256: 0a4c9ca5b0d4ed182a03392dd82b0e6e1e0e35d8de7f008a71d3f67aa8c7176c
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=ef48a658a5 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://ww5.affinity7.com/ Origin: http://ww5.affinity7.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: text/css content-length: 4194 access-control-allow-origin: * cache-control: max-age=31556926 content-encoding: gzip etag: "610ae215-1062" last-modified: Wed, 04 Aug 2021 18:53:09 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a4c848b518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (26366) Size: 4194 Md5: 7fd743485fa194e25e2a207bff6c258a Sha1: 97c999d752b95ee1ed6271a29aa58109dc17281e Sha256: dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=ef48a658a5 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://ww5.affinity7.com/ Origin: http://ww5.affinity7.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: text/css content-length: 2603 access-control-allow-origin: * cache-control: max-age=31556926 content-encoding: gzip etag: "610ae215-a2b" last-modified: Wed, 04 Aug 2021 18:53:09 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a4c84bb518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (27832) Size: 2603 Md5: eaaabd3f60063923cd5333eb1d7a20a1 Sha1: 0da69706105e28896a1f6eeaa91d5bec1b82f7f1 Sha256: f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /images/icann-accredited.png HTTP/1.1 Host: www.sav.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	$Magic: PNG image data, 349 x 352, 8-bit colormap, non-interlaced\012- data Size: 20299 Md5: 06d7b4e876e984539c81a23f2d99a573$ 172.66.42.235 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 09:24:29 GMT Content-Length: 20299 Connection: keep-alive Last-Modified: Thu, 27 Jun 2019 23:26:00 GMT ETag: "4f4b-58c567c1cd642" Access-Control-Allow-Origin: * CF-Cache-Status: BYPASS Set-Cookie: AWSALB=RDVvOrcSc1O5NUdcSQU40hzJrOJvg99V8uLif2ikQid3AsH+68OQ8Sr8gePCtIRP5jK2Wf7dg7nHzHOMFLVk57tHRe+T44LCmy4IwM26JRupP39wI9vI3ko5Oamk; Expires=Wed, 13 Jul 2022 09:24:29 GMT; Path=/ AWSALBCORS=RDVvOrcSc1O5NUdcSQU40hzJrOJvg99V8uLif2ikQid3AsH+68OQ8Sr8gePCtIRP5jK2Wf7dg7nHzHOMFLVk57tHRe+T44LCmy4IwM26JRupP39wI9vI3ko5Oamk; Expires=Wed, 13 Jul 2022 09:24:29 GMT; Path=/; SameSite=None Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2xL04cmCXZdnpFCcMzkMgv1obHaa3zBYkwsE5klgqxPsxx1xnr3Amoc0lAs%2FfDLMYWDyaxX3ZeCTQrrBZDNsYTnT32Eo76skqYMjQP0NLxlGtIcByzKvnNuNiMp0"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 726749a4498c1c06-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: PNG image data, 349 x 352, 8-bit colormap, non-interlaced\012- data Size: 20299 Md5: 06d7b4e876e984539c81a23f2d99a573 Sha1: 5b2911fa40571fb36eb86e359073428da6918d19 Sha256: 27e9b22c9238d8d62fc9f39fe942a7777a1edeb5b8e892dd9b08cdd3382a3183
GET /images/logo/2x/Blue_No_Com.png HTTP/1.1 Host: www.sav.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	$Magic: PNG image data, 829 x 345, 8-bit/color RGBA, non-interlaced\012- data Size: 13946 Md5: fd692240949bcd4ca645282b772a3bc6$ 172.66.42.235 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 09:24:29 GMT Content-Length: 13946 Connection: keep-alive Last-Modified: Wed, 04 Mar 2020 20:52:10 GMT ETag: "367a-5a00d98229765" Access-Control-Allow-Origin: * CF-Cache-Status: BYPASS Set-Cookie: AWSALB=FUUum7Ecw0jMxSomKdb2+IZhlMC1Ib+cqB0y3Gh4y1XdRbYrwK21Fam55xstmLi9DYZl/BxpsJtZAPkYsY2SCn25I/o7fMbJ25G5WKU7W17jB6tuAIpils7IcPvQ; Expires=Wed, 13 Jul 2022 09:24:29 GMT; Path=/ AWSALBCORS=FUUum7Ecw0jMxSomKdb2+IZhlMC1Ib+cqB0y3Gh4y1XdRbYrwK21Fam55xstmLi9DYZl/BxpsJtZAPkYsY2SCn25I/o7fMbJ25G5WKU7W17jB6tuAIpils7IcPvQ; Expires=Wed, 13 Jul 2022 09:24:29 GMT; Path=/; SameSite=None Accept-Ranges: bytes Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HSTTwu2WGpSzkYQl9yMiZlzr2XmuD1NmAYvfx6Ovx99T7MHUFkuWHEWxDaMpDiEnl4QB%2BV%2FOisncMUvNId0zX8tl4aMiv6Ey9ZeZSN8%2B%2BIl8KGOlJUozshYayYAM"}],"group":"cf-nel","max_age":604800} NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} Vary: Accept-Encoding Server: cloudflare CF-RAY: 726749a44824b523-OSL alt-svc: h2=":443"; ma=60 --- Additional Info --- Magic: PNG image data, 829 x 345, 8-bit/color RGBA, non-interlaced\012- data Size: 13946 Md5: fd692240949bcd4ca645282b772a3bc6 Sha1: 15fb0a9507e94f0a80fd3ba96f69e9e4c2f13c8a Sha256: d3c1a3b88adc7e895d79e52d170ba840d20cf7d5b01198d6f093106a20589ea4
GET /releases/v5.15.4/css/pro.min.css?token=ef48a658a5 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Referer: http://ww5.affinity7.com/ Origin: http://ww5.affinity7.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: text/css content-length: 54194 access-control-allow-origin: * cache-control: max-age=31556926 content-encoding: gzip etag: "610ae215-d3b2" last-modified: Wed, 04 Aug 2021 18:53:09 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a4b844b518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65397) Size: 54194 Md5: dc9270247a97f75913a5d8934c24de03 Sha1: ed9b0fa01b552571f99d529ed355b2ba91cfc48d Sha256: 847cc3ab1ea736cbbaac34833596335471fc7a888089b501b3c83a323566f0b8
GET /css?family=Muli:300,400,700,800&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Wed, 06 Jul 2022 09:24:29 GMT date: Wed, 06 Jul 2022 09:24:29 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: data Size: 961 Md5: 0f69a9f9d63dfb8ab8184a2ba7c89f23 Sha1: a816f0061a03df15e707be2a64b782ef0a04f8dd Sha256: 1334bb20f879d557c2e6acc39e90e2d7d9583df2758709fdd8c9218bef1b9ae3
GET /ajax/libs/font-awesome/5.9.0/webfonts/fa-solid-900.woff2 HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: https://cdnjs.cloudflare.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data Size: 75440 Md5: b5cf8ae26748570d8fb95a47f46b69e1$ 104.17.24.14 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: application/octet-stream; charset=utf-8 content-length: 75440 access-control-allow-origin: * cache-control: public, max-age=30672000 etag: "5eb03e60-126b0" last-modified: Mon, 04 May 2020 16:10:08 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" vary: Accept-Encoding cf-cache-status: HIT age: 2387859 expires: Mon, 26 Jun 2023 09:24:29 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7%2Bqn8pBs5UGjB8F2mmhXnmExFLY2ZpTiX%2B9O8WGrU%2FRQfnGpgqiuiQ881Ia%2B%2BiEs7AqU7wHGCc7whjdLJXSDjidjk9R71A6QLtqAfvpV3jnGnJru3Eoo8VR789nO%2FDrknm%2Fz2otO"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 726749a5a8861c02-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 75440, version 329.-1049\012- data Size: 75440 Md5: b5cf8ae26748570d8fb95a47f46b69e1 Sha1: 07bed153d47f9129a944ee54dd72952deed074c8 Sha256: cd398be1a91817126cef10224738e624358edf6f08043abad7e60c1aaeccc8d0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 09:24:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET /s/muli/v27/7Aulp_0qiz-aVz7u3PJLcUMYOFmQkEk30eg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 16836, version 1.0\012- data Size: 16836 Md5: 95468e319fd5dfa37552d2e4fdb8d47c$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16836 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 05 Jul 2022 17:47:38 GMT expires: Wed, 05 Jul 2023 17:47:38 GMT cache-control: public, max-age=31536000 age: 56211 last-modified: Tue, 26 Apr 2022 15:30:12 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 16836, version 1.0\012- data Size: 16836 Md5: 95468e319fd5dfa37552d2e4fdb8d47c Sha1: 1a73a961c1829d57d05e2dbbbc7e851c66bf0249 Sha256: b84f1665cbb6a838feb1fb8b5ad6bdbbb8ebfcc47eb6a1b825db948c9d5881df
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 09:24:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET /trustboxes/5419b732fbfb950b10de65e5/index.html?templateId=5419b732fbfb950b10de65e5&businessunitId=5de804cea525f00001f5a8f2 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://ww5.affinity7.com/ Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: iframe Sec-Fetch-Mode: navigate Sec-Fetch-Site: cross-site TE: trailers	$Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5658) Size: 1843 Md5: 8e4207bd9e7d6f6d376f7ea95a0db7a5$ 54.230.111.99 HTTP/2 200 OK content-type: text/html content-length: 1843 last-modified: Tue, 14 Jun 2022 14:06:38 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Wed, 06 Jul 2022 05:46:20 GMT cache-control: max-age=86400 etag: "8e4207bd9e7d6f6d376f7ea95a0db7a5" x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: xhOj4mqCAr0wi87DuF8GO96i24oIg78qm_a2JtA2BWD4lDy2x9bAlA== age: 13090 X-Firefox-Spdy: h2 --- Additional Info --- Magic: HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5658) Size: 1843 Md5: 8e4207bd9e7d6f6d376f7ea95a0db7a5 Sha1: 5fa0b8f6feba523b8b2faf776e0428ebb9393b4d Sha256: fbe39b5c56c437ebe286e6d24eafa6e640afd035b00b2b01059d5ac7a70349db
GET /s/muli/v27/7Aulp_0qiz-aVz7u3PJLcUMYOFkpl0k30eg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: Web Open Font Format (Version 2), TrueType, length 17020, version 1.0\012- data Size: 17020 Md5: 2724dcce7e37361f0172c264eb9dbaf1$ 142.250.74.163 HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 17020 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 05 Jul 2022 17:15:23 GMT expires: Wed, 05 Jul 2023 17:15:23 GMT cache-control: public, max-age=31536000 age: 58146 last-modified: Tue, 26 Apr 2022 15:29:04 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 17020, version 1.0\012- data Size: 17020 Md5: 2724dcce7e37361f0172c264eb9dbaf1 Sha1: 9a682ad12d172f597ddea8f2748132f5ec3d3e07 Sha256: 2401b6c90334f69bca585263201ccddb9d34412d38acaa83251fc63346716a9d
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 09:24:29 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 347e2358aa2df71261aeb7a8b1b1f6fe Sha1: fa29c219039d0b2086f21bacbdcedc4469ed1be2 Sha256: 9d29368fcc9aaac6d1858baf2cd321eef3ffb3169dd614e5cfcbd17369998a97
GET /trustboxes/5419b732fbfb950b10de65e5/main.js HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b732fbfb950b10de65e5/index.html?templateId=5419b732fbfb950b10de65e5&businessunitId=5de804cea525f00001f5a8f2 Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	54.230.111.99 HTTP/2 200 OK content-type: application/x-javascript content-length: 16669 last-modified: Tue, 14 Jun 2022 14:06:40 GMT x-amz-server-side-encryption: AES256 content-encoding: gzip accept-ranges: bytes server: AmazonS3 x-xss-protection: 1; mode=block x-content-type-options: nosniff strict-transport-security: max-age=31536000 date: Wed, 06 Jul 2022 06:33:05 GMT cache-control: max-age=86400 etag: "3bb49e864b66714a17c75c9b22c8c10a" x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: 6G_nMFKUsURjJkOSdMJSt2ktBFtCbhAH4ewOs-ADF77ueToBdexYmg== age: 10285 X-Firefox-Spdy: h2 --- Additional Info --- Magic: Unicode text, UTF-8 (with BOM) text, with very long lines (54648) Size: 16669 Md5: 3bb49e864b66714a17c75c9b22c8c10a Sha1: c00eac20172565d8b1538731ac2962f7deebc80a Sha256: d26970ab13740b89d3bbd39e1aee089da4e59040431750c1a256974bb60095fb
GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	142.250.74.174 HTTP/1.1 200 OK Content-Type: text/javascript Strict-Transport-Security: max-age=10886400; includeSubDomains; preload X-Content-Type-Options: nosniff Vary: Accept-Encoding Content-Encoding: gzip Cross-Origin-Resource-Policy: cross-origin Server: Golfe2 Content-Length: 20006 Date: Wed, 06 Jul 2022 08:20:03 GMT Expires: Wed, 06 Jul 2022 10:20:03 GMT Cache-Control: public, max-age=7200 Age: 3866 Last-Modified: Wed, 13 Apr 2022 21:02:38 GMT --- Additional Info --- Magic: ASCII text, with very long lines (1325) Size: 20006 Md5: 56f5d7f608e25d64207135f045f988cb Sha1: 901eb59372ae330ae85e1384da93479b21ae1082 Sha256: 1910daea79e5a9d04829a91e432dfa56f45a80a3e14a8cf667fec73af9fd3d29
GET /apple-touch-icon.png HTTP/1.1 Host: ww5.affinity7.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	$Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 5718 Md5: b43fb8386dcd28b0ab239731d77cc913$ 3.128.220.50 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 09:24:29 GMT Content-Length: 5718 Connection: keep-alive Server: nginx/1.16.1 Last-Modified: Tue, 13 Aug 2019 19:55:57 GMT ETag: "5d5315cd-1656" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data Size: 5718 Md5: b43fb8386dcd28b0ab239731d77cc913 Sha1: e4bda0a14f2b374f29dff384ebe8eb54f883d92d Sha256: 1726e4ccf3fd5fc88a90276f587139755ab8f5c3450b2b9ca741d26920d6a056 Alerts: Blocklists: - quad9: Sinkholed
GET /favicon-16x16.png HTTP/1.1 Host: ww5.affinity7.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Referer: http://ww5.affinity7.com/	$Magic: PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size: 384 Md5: c6ed42c3f263bc41ef424d33cf8872b7$ 3.128.220.50 HTTP/1.1 200 OK Content-Type: image/png Date: Wed, 06 Jul 2022 09:24:29 GMT Content-Length: 384 Connection: keep-alive Server: nginx/1.16.1 Last-Modified: Wed, 14 Aug 2019 14:02:56 GMT ETag: "5d541490-180" Accept-Ranges: bytes --- Additional Info --- Magic: PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data Size: 384 Md5: c6ed42c3f263bc41ef424d33cf8872b7 Sha1: 583a273240481adfc750b0d7c9da29afea83f2d0 Sha256: 536749ebcc49ca98725ff07aa7d8c0c4c7cbea992027e64aa676a942ead5f4c9 Alerts: Blocklists: - quad9: Sinkholed
GET /trustbox-data/5419b732fbfb950b10de65e5?businessUnitId=5de804cea525f00001f5a8f2&locale=en-US HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b732fbfb950b10de65e5/index.html?templateId=5419b732fbfb950b10de65e5&businessunitId=5de804cea525f00001f5a8f2 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	$Magic: JSON data\012- , ASCII text, with very long lines (821), with no line terminators Size: 358 Md5: 7011b026e40e2c6bfcc75602299a869f$ 54.230.111.99 HTTP/2 200 OK content-type: application/json; charset=utf-8 content-length: 358 content-encoding: gzip strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-fallback-status: BYPASS x-skip-cache-cookie: 0 x-xss-protection: 1; mode=block cache-control: public,max-age=1800 date: Wed, 06 Jul 2022 09:12:44 GMT etag: "3ede78074b5efca1c4484b6ec485d259" vary: Accept-Encoding x-cache: Hit from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: RKfV4rg7GLfd3_1fsRLHV0c6857Thduay0wnfXsUFsGTZ9-QujWpag== age: 706 X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (821), with no line terminators Size: 358 Md5: 7011b026e40e2c6bfcc75602299a869f Sha1: 603b8662b305ffa2d4609efc13f427a7381b0c61 Sha256: aa9d6c8faddbc4c44ee302e7799172a0a468be1bd54f6f6d9251136f9d856740
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.5.0.woff2 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 9804, version 331.-31196\012- data Size: 9804 Md5: ebf96fc384a820c37a0816cd5710d3e7$ 104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:30 GMT content-type: font/woff2 content-length: 9804 access-control-allow-origin: * cache-control: max-age=31556926 etag: "610ae35a-264c" last-modified: Wed, 04 Aug 2021 18:58:34 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a81c2ab518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 9804, version 331.-31196\012- data Size: 9804 Md5: ebf96fc384a820c37a0816cd5710d3e7 Sha1: b1cc876a842c0c4493a9c7857f1c9414729dc82d Sha256: 173c515ed1eaa3209052acddec75a65c6b349db9689d1538b92ba8c93fcedeff
GET /stats/TrustboxImpression?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=http%3A%2F%2Fww5.affinity7.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5de804cea525f00001f5a8f2&widgetId=5419b732fbfb950b10de65e5 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b732fbfb950b10de65e5/index.html?templateId=5419b732fbfb950b10de65e5&businessunitId=5de804cea525f00001f5a8f2 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	54.230.111.99 HTTP/2 204 No Content cache-control: no-store,no-cache date: Wed, 06 Jul 2022 09:24:29 GMT pragma: no-cache strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: X8wDTO1qI7L7jIhNCyI2XV91FnqfxR81AVdbDY9p4WdxSHvJNzVETQ== X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.10.1.woff2 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 10412, version 331.-31196\012- data Size: 10412 Md5: 82b2764fcd41e25136e931dd303a29f4$ 104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:30 GMT content-type: font/woff2 content-length: 10412 access-control-allow-origin: * cache-control: max-age=31556926 etag: "610ae358-28ac" last-modified: Wed, 04 Aug 2021 18:58:32 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a81c2fb518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 10412, version 331.-31196\012- data Size: 10412 Md5: 82b2764fcd41e25136e931dd303a29f4 Sha1: ec11167afa020752f2dcdbeba74c10ee6d9255d6 Sha256: 94db1583c12033a2b06418908eaf13362e9e79e6c4a78e5e8ce608774cf6e512
GET /stats/TrustboxView?locale=en-US&styleHeight=24px&styleWidth=100%25&theme=light&url=http%3A%2F%2Fww5.affinity7.com%2F&referrer=&userAgent=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&language=en-US&platform=Linux%20x86_64&nosettings=1&businessUnitId=5de804cea525f00001f5a8f2&widgetId=5419b732fbfb950b10de65e5 HTTP/1.1 Host: widget.trustpilot.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/x-www-form-urlencoded Connection: keep-alive Referer: https://widget.trustpilot.com/trustboxes/5419b732fbfb950b10de65e5/index.html?templateId=5419b732fbfb950b10de65e5&businessunitId=5de804cea525f00001f5a8f2 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	54.230.111.99 HTTP/2 204 No Content cache-control: no-store,no-cache date: Wed, 06 Jul 2022 09:24:29 GMT pragma: no-cache strict-transport-security: max-age=31536000 x-content-type-options: nosniff x-xss-protection: 1; mode=block x-cache: Miss from cloudfront via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-P1 x-amz-cf-id: OC7tvwU6OGF3LwgdApukhP5K1n1BHmIppW_gzNBay_wnbmzNtiGzNw== X-Firefox-Spdy: h2 --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.0.0.woff2 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data Size: 24800 Md5: 4abe94f1746789f39110d3ebac7ebd96$ 104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:30 GMT content-type: font/woff2 content-length: 24800 access-control-allow-origin: * cache-control: max-age=31556926 etag: "610ae357-60e0" last-modified: Wed, 04 Aug 2021 18:58:31 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a81c2db518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 24800, version 331.-31196\012- data Size: 24800 Md5: 4abe94f1746789f39110d3ebac7ebd96 Sha1: bdc3b41f3cc3e5e3e87ca020eeddc2b288f0dd91 Sha256: 299dc8e16be2ab2214e279b5536efd387d17fd3d364f397ce9f1fed602384fea
GET /releases/v5.15.4/webfonts/pro-fa-light-300-5.10.2.woff2 HTTP/1.1 Host: ka-p.fontawesome.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers	$Magic: Web Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data Size: 17168 Md5: 8a43eb7db323b6a82d87a458c34cbe82$ 104.18.22.52 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:30 GMT content-type: font/woff2 content-length: 17168 access-control-allow-origin: * cache-control: max-age=31556926 etag: "610ae358-4310" last-modified: Wed, 04 Aug 2021 18:58:32 GMT vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method cf-cache-status: MISS accept-ranges: bytes expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" server: cloudflare cf-ray: 726749a81c2bb518-OSL X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 17168, version 331.-31196\012- data Size: 17168 Md5: 8a43eb7db323b6a82d87a458c34cbe82 Sha1: 968367a39a575ffe38f1cfda07eea12eff885831 Sha256: 2bbaabc785383c5d90abc17e6703ac6a057b9644c6ebdfe9e15709c6ffac9c71
GET /nr-1216.min.js HTTP/1.1 Host: js-agent.newrelic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	151.101.86.137 HTTP/2 200 OK x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8= x-amz-request-id: 4AV5AVKCCR961CNG last-modified: Thu, 14 Apr 2022 16:45:57 GMT etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8" x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy content-type: application/javascript server: AmazonS3 cache-control: public, max-age=7200, stale-if-error=604800 content-encoding: gzip accept-ranges: bytes date: Wed, 06 Jul 2022 09:24:30 GMT via: 1.1 varnish x-served-by: cache-bma1656-BMA x-cache: HIT x-cache-hits: 7664 x-timer: S1657099470.204019,VS0,VE0 vary: Accept-Encoding cross-origin-resource-policy: cross-origin content-length: 14391 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (32022) Size: 14391 Md5: b7c09cc097b2847f9edc784adba62dcb Sha1: 5aa648623cf5e3b4b215fe5d068a7904c59f2925 Sha256: 6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243$ 54.230.111.35 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, ETag, Content-Type, Last-Modified, Alert, Backoff, Pragma, Expires, Content-Length, Cache-Control Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Wed, 06 Jul 2022 08:34:56 GMT Cache-Control: max-age=3600 Expires: Wed, 06 Jul 2022 09:00:36 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: bqkXGFlZmWRQ8PcZQSvoM46JKUlJDDwnyrNCge_7pOP-OzudMaJCHw== Age: 2974 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 09:24:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: dec809e4db9d04ddc585dadf9f434d15 Sha1: bef367231632f70618fcee4bf9514a20908e9d92 Sha256: d88c21632d8e0ec2a4d3c7542a5ba84f202f02b3d4403d4c482ffacb8a0c87a0
POST /j/collect?v=1&_v=j96&a=2032266298&t=pageview&_s=1&dl=http%3A%2F%2Fww5.affinity7.com%2F&ul=en-us&de=UTF-8&dt=affinity7.com%20Is%20for%20Sale&sd=24-bit&sr=1280x1024&vp=1280x1024&je=0&_u=IEBAAEABAAAAAC~&jid=1283164776&gjid=1988473433&cid=1202437137.1657099470&tid=UA-142700782-2&_gid=852311594.1657099470&_r=1&_slc=1&z=1335524477 HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: text/plain Content-Length: 0 Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	142.250.74.174 HTTP/2 200 OK access-control-allow-origin: http://ww5.affinity7.com date: Wed, 06 Jul 2022 09:24:30 GMT pragma: no-cache expires: Fri, 01 Jan 1990 00:00:00 GMT cache-control: no-cache, no-store, must-revalidate last-modified: Sun, 17 May 1998 03:00:00 GMT access-control-allow-credentials: true x-content-type-options: nosniff content-type: text/plain cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with no line terminators Size: 2 Md5: 38684612f0c6bb6dfa16da92f4a6878f Sha1: 6fe62d0dd7db314b7f9bb945672f078e01d27f0f Sha256: a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Wed, 06 Jul 2022 09:24:30 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: dec809e4db9d04ddc585dadf9f434d15 Sha1: bef367231632f70618fcee4bf9514a20908e9d92 Sha256: d88c21632d8e0ec2a4d3c7542a5ba84f202f02b3d4403d4c482ffacb8a0c87a0
GET /1/NRJS-8157b8e0cd94813fb57?a=413936412&v=1216.487a282&to=NFBXMBFVWxdYAhBaWA0adAcXXVoKFi0FXVMKW1I7E1VSAUpODV1TBk0%3D&rst=1382&ck=1&ref=http://ww5.affinity7.com/&ap=10&be=411&fe=974&dc=879&perf=%7B%22timing%22:%7B%22of%22:1657099468849,%22n%22:0,%22f%22:-8,%22dn%22:-8,%22dne%22:-2,%22c%22:-2,%22ce%22:104,%22rq%22:104,%22rp%22:221,%22rpe%22:326,%22dl%22:387,%22di%22:873,%22ds%22:878,%22de%22:884,%22dc%22:973,%22l%22:973,%22le%22:974%7D,%22navigation%22:%7B%7D%7D&fcp=768&at=GBdURllPSBk%3D&jsonp=NREUM.setToken HTTP/1.1 Host: bam.nr-data.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	162.247.241.14 HTTP/1.1 200 OK Content-Type: text/javascript Date: Wed, 06 Jul 2022 09:24:30 GMT Transfer-Encoding: chunked Connection: keep-alive CF-Ray: 726749a969280b4d-OSL Access-Control-Allow-Origin: * Set-Cookie: JSESSIONID=b4e10df26e40c39d; Path=/; Domain=.nr-data.net; Secure; SameSite=None CF-Cache-Status: DYNAMIC access-control-allow-credentials: true access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS Cross-Origin-Resource-Policy: cross-origin Expect-CT: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" Vary: Accept-Encoding Server: cloudflare Content-Encoding: gzip --- Additional Info --- Magic: ASCII text, with no line terminators Size: 73 Md5: 516a128bb6000ca8154792678f4333fb Sha1: 41d0257bea96afd36c6f3e40fcfdc9ca247f8e01 Sha256: 9fa62b52f24b87a40410fe842cb9be494abed114a2eac2eb406c8b4a4d372d10
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 84 Cache-Control: max-age=168279 Date: Wed, 06 Jul 2022 09:24:30 GMT Etag: "62c542d1-1d7" Expires: Fri, 08 Jul 2022 08:09:09 GMT Last-Modified: Wed, 06 Jul 2022 08:07:45 GMT Server: ECS (ska/F710) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 54a5ebdb4e3b060878632555583e462f Sha1: df627b311d6276eabf36fe1390a8219714839aed Sha256: 5c77d20265a9a328455b745ec5191e036ec35814586c1e6bcd1c8b2de01b3ff2
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 8oPtfOJEb+NIyNTU/9pRHA== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	54.187.160.31 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: 0aS+2Z3JUGKbgi+p0JsWLD6AL58= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Wed, 06 Jul 2022 10:21:02 GMT Date: Wed, 06 Jul 2022 09:24:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
GET /bootstrap/4.2.1/css/bootstrap.min.css HTTP/1.1 Host: stackpath.bootstrapcdn.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: http://ww5.affinity7.com Connection: keep-alive Referer: http://ww5.affinity7.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	104.18.11.207 HTTP/2 200 OK date: Wed, 06 Jul 2022 09:24:29 GMT content-type: text/css; charset=utf-8 vary: Accept-Encoding cdn-pullzone: 252412 cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74 cdn-requestcountrycode: DE access-control-allow-origin: * cache-control: public, max-age=31919000 etag: W/"f411c136e2bb302ada2120b3eb1d5bc3" last-modified: Mon, 25 Jan 2021 22:04:07 GMT cdn-cachedat: 03/10/2022 17:31:07 cdn-proxyver: 1.02 cdn-requestpullcode: 200 cdn-requestpullsuccess: True cdn-edgestorageid: 860 cdn-status: 200 timing-allow-origin: * cross-origin-resource-policy: cross-origin x-content-type-options: nosniff cdn-requestid: 4ae5d3538c847193aa24f9b865ce4484 cdn-cache: HIT cf-cache-status: MISS expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct" strict-transport-security: max-age=31536000; includeSubDomains; preload server: cloudflare cf-ray: 726749a3eea4b511-OSL content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2 --- Additional Info --- Magic: ASCII text, with very long lines (65324) Size: 24586 Md5: fb9b0a46c33d7f2dc747cc7f3499c451 Sha1: 94bd847f1fbda8a72d642bb6410ac58e0b5c35a6 Sha256: 34f948dd845cea98d4cdc55e5b59c4f92c0030ded37c4836224d9ddcf438453b
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Wed, 06 Jul 2022 10:21:02 GMT Date: Wed, 06 Jul 2022 09:24:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Wed, 06 Jul 2022 10:21:02 GMT Date: Wed, 06 Jul 2022 09:24:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	23.36.76.226 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "611E864D4A64EB7175BDED94052A41462E3215D329EF82CBEEA70D511B811E8D" Last-Modified: Mon, 04 Jul 2022 07:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=3391 Expires: Wed, 06 Jul 2022 10:21:02 GMT Date: Wed, 06 Jul 2022 09:24:31 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 88b14e7d8e8c06a7fbc94b02217857ad Sha1: 034816601b832f18309ab4c047269b31a96cc971 Sha256: 611e864d4a64eb7175bded94052a41462e3215d329ef82cbeea70d511b811e8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc072e61d-3b9b-4f2d-acc8-d26a8adf968d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12165 Md5: 29949330f4dc3b69747d5534e745fde3$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 12165 x-amzn-requestid: 796ca673-2ab5-4bd9-b4f1-d2c250c34e3a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BWXH-HoAMFhkg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4af5b-51c7abd54a523a1f479a7d5b;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:35 GMT x-amz-cf-pop: SEA19-C1, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: _-zkK-6DIfDVDzXmTOTigF2tM4pfh19MReGO_X26eRhLNFGL3Jc9Aw== via: 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:49:54 GMT age: 41677 etag: "604b4cc5d50ca494df1de2ab8baa486da20d1e4e" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 12165 Md5: 29949330f4dc3b69747d5534e745fde3 Sha1: 604b4cc5d50ca494df1de2ab8baa486da20d1e4e Sha256: b98faa2080573124f84254a2f87df3631f257e9a040cf34ebe267a1784d4b954
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bb6c586-bb86-4a54-bd48-f2b5da763e74.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7117 Md5: b4ead2bdcbc998a5685d65a26e40ce1a$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 7117 x-amzn-requestid: 7cfe344b-f098-4260-bb50-6574786e6ee2 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BW8HnbIAMFkrA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4af5f-14a960ac060d2d120cb0ad7c;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:39 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 0F6ZVkqKywgjh9Qa1DJw_-rdOLcc1tzEll0J58NeawksoIu9nY1a-g== via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:50:32 GMT age: 41639 etag: "01efbdf6b2ab79332bf6a22d36472e294732aa17" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7117 Md5: b4ead2bdcbc998a5685d65a26e40ce1a Sha1: 01efbdf6b2ab79332bf6a22d36472e294732aa17 Sha256: 04399a91345db4f89bdbbb9ddb30db0f2a0c29654491b38bb1a30bd40c4f3e48
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb82ec83-887b-4050-91d9-57a545edfc43.webp HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6527 Md5: c74b2cd74c712ef13e74569a07f963ef$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6527 x-amzn-requestid: 391d747d-26bd-4303-bccb-fb510b7788e4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BHqGLpoAMF8Cg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4aefd-49710428275253eb6c36832f;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:37:01 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: 4IvLYodhhI-4-NqMWY6xSfMrpjAwS6RKqTWGeNkBGKfZxwBk1bmaig== via: 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 b13f158bdf9805ca47e07c0c35870c12.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:37:38 GMT age: 42413 etag: "5320ab2d511bcf3b66328f71d2cecf6beecd8139" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6527 Md5: c74b2cd74c712ef13e74569a07f963ef Sha1: 5320ab2d511bcf3b66328f71d2cecf6beecd8139 Sha256: 90498a0e0e346788001a46a6b505805ba91861505fd69cab53486fa66c50eadb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb087c84-cd12-4097-af17-4de6bc39bfce.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4983 Md5: 2ed3ce023fb4daa968a877d0fffb8ef5$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 4983 x-amzn-requestid: d9f7641f-ba3f-4c3e-801f-40b65f532f0d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0BVvEO0oAMFTgA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4af57-5b5650e20436832a5c98c963;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:38:31 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: aZUFUF9lLOJeBA5orP49mjnP1_jG2CWyb7TkybkVjlVeV_-mtHEoWw== via: 1.1 a4479a6315f90864adc6175b280f8f44.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:50:58 GMT age: 41613 etag: "dedbc8565770c9e8bd618141ccf5a379a80c15ea" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 4983 Md5: 2ed3ce023fb4daa968a877d0fffb8ef5 Sha1: dedbc8565770c9e8bd618141ccf5a379a80c15ea Sha256: bca74e6849eac0a016f7923b3102c0b871b4bc1c02d0a75c636b2c1c86a2961b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffb43d6c1-9277-41c7-a6a2-7ed481cb6008.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6262 Md5: 405e2c36af93466ec54a46cc09c98a34$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 6262 x-amzn-requestid: 9dc74855-a8e3-4dc0-9962-a783dd17957a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: U0CI7GQqIAMFmjQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c4b09f-450c578d07eb9b177b0e8218;Sampled=0 x-amzn-remapped-date: Tue, 05 Jul 2022 21:43:59 GMT x-amz-cf-pop: SEA73-P2, SEA73-P1 x-cache: Miss from cloudfront x-amz-cf-id: jvMpr8coDJY8LAthF-gHD2WJNMhyu30I_M7uJ__4rHZLDRyWXJPWKw== via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 21:49:50 GMT age: 41681 etag: "516324380a247cd6fd356168b23603d2e63da2f2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 6262 Md5: 405e2c36af93466ec54a46cc09c98a34 Sha1: 516324380a247cd6fd356168b23603d2e63da2f2 Sha256: ab63d378c66b22b900a4c853c124e91273a730df53e0e6b7868c3f9102993b55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3138a2a5-6ce8-4465-8dff-7307ebdd802f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	$Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13276 Md5: 95aa230a6b516a252f3815c586803c15$ 34.120.237.76 HTTP/2 200 OK server: nginx content-length: 13276 x-amzn-requestid: dce1c67f-c737-4247-9322-64e53683db76 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: Uo2PPFQuIAMFWPw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-62c0372e-34f94a46660e3da478d8dc20;Sampled=0 x-amzn-remapped-date: Sat, 02 Jul 2022 12:16:46 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: WTUH5lb3m_h2w5SPh5Jz9uFENg_0kger2oF8BRog11H-Fi19NA3gyA== via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google date: Tue, 05 Jul 2022 12:51:05 GMT age: 74006 etag: "7e5a550bbbac49269cae75ce9bb92e8fdf77b086" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13276 Md5: 95aa230a6b516a252f3815c586803c15 Sha1: 7e5a550bbbac49269cae75ce9bb92e8fdf77b086 Sha256: fc3c49de063a4e13c64e799664fa6c7ccf6e42aac5973aaf1af2b7689338f3b9