r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash a8b4f1afb0e830b797238d34ab9254aa
e011acef3d05c959a65205d53b651ecd18a889fe
f7ceff5b4fda083c7449b7298c232224cf48a632dcb87233b646790de207d49c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F7CEFF5B4FDA083C7449B7298C232224CF48A632DCB87233B646790DE207D49C"
Last-Modified: Thu, 12 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12824
Expires: Fri, 13 Jan 2023 09:10:28 GMT
Date: Fri, 13 Jan 2023 05:36:44 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 4826412809ac0196f13ac1ef44e357e5
793c81d2f90cfaa245dc89fc7a6090cbee846b26
11be07342f3aa4e059ddc3149337895d55bc71e30ad045dc72e4cca4be4c6951
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "11BE07342F3AA4E059DDC3149337895D55BC71E30AD045DC72E4CCA4BE4C6951"
Last-Modified: Wed, 11 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15699
Expires: Fri, 13 Jan 2023 09:58:23 GMT
Date: Fri, 13 Jan 2023 05:36:44 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Content-Type, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 13 Jan 2023 04:41:53 GMT
content-type: application/json
age: 3291
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 64765d3d978fd74d7bc47d55d4f097cf
92eb3f0d55ba99be28105c0b28ef7dd456817f1f
761aab02513e7a0ec55ea59109e88b39cbd4e17df0cd2035aa37a4693f22d1f3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "761AAB02513E7A0EC55EA59109E88B39CBD4E17DF0CD2035AA37A4693F22D1F3"
Last-Modified: Thu, 12 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7785
Expires: Fri, 13 Jan 2023 07:46:29 GMT
Date: Fri, 13 Jan 2023 05:36:44 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: q0pHBGv3qvFZgpmkkmcxqZmLRVrMsKEDU06nKYhw67BJ5Uce3BU31DRmaAPhAASDxPf0NeNM+Pk=
x-amz-request-id: X91J0SJN2QRKQD9S
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 13 Jan 2023 05:17:43 GMT
age: 1141
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 13 Jan 2023 05:36:44 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 13 Jan 2023 05:17:25 GMT
age: 1160
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 1362750c01a8e1a2db32aa73ae46a48d
a423b43f2bd52bd4ec38b760a674866a1294c5ad
f0f57e27c4ec8f1cd8e05f530edc37fb1e4a94ffe92e5729939998346f2e204f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4341
Cache-Control: max-age=103342
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:45 GMT
Etag: "63bfcda6-1d7"
Expires: Sat, 14 Jan 2023 10:19:07 GMT
Last-Modified: Thu, 12 Jan 2023 09:06:46 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
htoaau.beauty/
107.161.23.204301 Moved Permanently 178 B IP 107.161.23.204:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cd2e0e43980a00fb6a2742d3afd803b8
81ffbd1712afe8cdf138b570c0fc9934742c33c1
bd9df047d51943acc4bc6cf55d88edb5b6785a53337ee2a0f74dd521aedde87d
GET / HTTP/1.1
Host: htoaau.beauty
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Fri, 13 Jan 2023 05:36:45 GMT
Content-Type: text/html
Content-Length: 178
Connection: keep-alive
Location: http://www.htoaau.beauty/
push.services.mozilla.com/
35.161.132.177101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.132.177:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zBfJ6vZ1xDdq2Hy6A6E8gw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: SaQCQoaoXbmVzmISceFQuNmk9bo=
www.htoaau.beauty/
64.32.22.102302 Moved Temporarily 154 B IP 64.32.22.102:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash cfbeaf604823f038b8b46f0ac862b98c
7b9eb1dac48e74fa5f418bc456cb410f88b81d98
20c1ab602462b7fc0d5b4cbd555cacf127b69a07a737579598ebcbc0f5b21319
GET / HTTP/1.1
Host: www.htoaau.beauty
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Server: nginx
Date: Fri, 13 Jan 2023 05:36:45 GMT
Content-Type: text/html
Content-Length: 154
Connection: keep-alive
Location: http://lak3553.com
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19931
Expires: Fri, 13 Jan 2023 11:08:57 GMT
Date: Fri, 13 Jan 2023 05:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19931
Expires: Fri, 13 Jan 2023 11:08:57 GMT
Date: Fri, 13 Jan 2023 05:36:46 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 256e39696ba05f2324bbc49b2a396115
e1cf8b15abd0a20eb1218be517c03459514a59e0
d576a66e6b39751bdbc7b662454d37866b75efef1aa51761daba61783d755bc9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D576A66E6B39751BDBC7B662454D37866B75EFEF1AA51761DABA61783D755BC9"
Last-Modified: Thu, 12 Jan 2023 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19931
Expires: Fri, 13 Jan 2023 11:08:57 GMT
Date: Fri, 13 Jan 2023 05:36:46 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56e9680-25b8-493c-8831-f933aca26e52.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56e9680-25b8-493c-8831-f933aca26e52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e514f1b711f68a1699f9d0d269ca9a8a
71621fabcc4ae2a8c3180e22e63fac1217c4032f
cc10cadc4477cc6faa1973343b9019b1b4bc94e5ec9fab114a4b755f24872f35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa56e9680-25b8-493c-8831-f933aca26e52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9697
x-amzn-requestid: 6279e4e0-7268-422a-878c-3983bffa37d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: edG9MHqjoAMF3dQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb8521-59063fac03eb407d74cabd38;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 03:08:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: LdM05QUvlJcxt8IaDM9Wr4_CM5-SrhsBRAkVcdkVxNiyrJveNFHK9g==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 07:18:16 GMT
age: 80310
etag: "71621fabcc4ae2a8c3180e22e63fac1217c4032f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0529cb91-7aac-4d53-b970-97e87c8b8462.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0529cb91-7aac-4d53-b970-97e87c8b8462.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7957da74e58963750af16b39145ca9a0
1da8c206d04ec1ed9801f17f63ff9dc6b7dbcbee
f3645d66ba2172d0f83f4c86fe7b11cffbf6ad221c43ec4869741dc50082d308
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0529cb91-7aac-4d53-b970-97e87c8b8462.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6930
x-amzn-requestid: 14babb76-10de-4e09-a594-855ffcb6660b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: em4rXFdhIAMF4jg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bf6e48-06a5d5df44844bab697bf012;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 02:19:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lDUldq3Sybu8ykH-cqKzwfCAbdC2R0ujg248Swoxh4Ma92ryBIq2jg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 23:10:15 GMT
age: 23191
etag: "1da8c206d04ec1ed9801f17f63ff9dc6b7dbcbee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6934d824-7534-44bc-aa4b-a15b6eb4c9c8.jpeg
34.120.237.76200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6934d824-7534-44bc-aa4b-a15b6eb4c9c8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash bb3062f9905c7c6f159cd203f5fdfe64
bcf17c475a27fae03369d1677dc0bedf6793e6b2
33dc1a810207f498c28b764cc26afa00b16594629ae6777957ccffd8e2c51f8e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6934d824-7534-44bc-aa4b-a15b6eb4c9c8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9432
x-amzn-requestid: 2835c1c8-0a8e-4985-be89-d641d5425971
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eph50HONIAMF3vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c07d0b-53c6156514cdb1a463add03b;Sampled=0
x-amzn-remapped-date: Thu, 12 Jan 2023 21:35:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: EOLxwKB_KBf_zkLlBLFn9nrDGM-FfONoTWUGR2093kLhka3wkb6yhg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 22:02:02 GMT
age: 27284
etag: "bcf17c475a27fae03369d1677dc0bedf6793e6b2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash afcc8f4875f4b74ca0640829b689731e
584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df
3e487396389c4330abc99bc99053eecc6aaf56f7afa398d70c30e1f4709577a0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbd91e555-c9f3-4166-92be-27db2e1919b6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13626
x-amzn-requestid: 4769eaeb-0c78-4054-ad47-eefdd6ab2d03
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWHMZErbIAMF6sQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8b8b5-4c7bacfe060899044e361f70;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 00:11:33 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: JRzc2Mcl4EasyH6_1kFh7sr-57f1HNDu-YN8YptDe_kcTET9x8P9LA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 14:00:13 GMT
age: 56193
etag: "584d0e11665ae89f9a294baf1e9bb4f0e4e9a4df"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa67d9adb-9031-430c-a00f-a599c1fde63e.jpeg
34.120.237.76200 OK 4.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa67d9adb-9031-430c-a00f-a599c1fde63e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db5b78b1c51e7a93253851cce9c8686e
b46d6cf78bfc87243e5d9d747cfb56e0d7a7ada9
b4e5848b59bdec6fb73f65b5e83dbc9faa29f73a42dec563b7f79c4b44f8dadf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa67d9adb-9031-430c-a00f-a599c1fde63e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4202
x-amzn-requestid: 9fbedae0-a4a9-4571-80bd-bd0cf1062217
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: edG-gHHRIAMF0ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63bb8529-7411316f7563732420b6fdce;Sampled=0
x-amzn-remapped-date: Mon, 09 Jan 2023 03:08:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: NwUdpM6ftsfOjRf-0srpSQ5AAw5i80w3_WhHwFFScR9SViyoHZzZkw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 12 Jan 2023 07:43:36 GMT
age: 78790
etag: "b46d6cf78bfc87243e5d9d747cfb56e0d7a7ada9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ba61442e6ededd7b49f6244613df0e63
385f45b5920174ca20bcc2d9c02eedb4641f48a9
5e5cd1fd026dc72d0c3c5032fbae17f3383c64ee2714808c892c094353f31012
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7792e19-fdcf-4706-b221-7d3353e6b9ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5990
x-amzn-requestid: 54a83ca0-eb61-4212-8c98-e1e182b860ea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ejsZiEeBoAMF7kg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63be2770-3565b4d43d28ee3c0fd16ed0;Sampled=0
x-amzn-remapped-date: Wed, 11 Jan 2023 03:05:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SUICoi37lPgXPQu4PTLCmc-6l2G9SHKz8f2qhZgHBMEbuuSi5zMiaQ==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Fri, 13 Jan 2023 03:38:24 GMT
age: 7102
etag: "385f45b5920174ca20bcc2d9c02eedb4641f48a9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lak3553.com/
174.129.25.170301 Moved Permanently 169 B IP 174.129.25.170:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash b51956ed2a6129f43c5d0ecc011cc5a5
c03157aff80067b6b57903d3843b9fd9e07b33ab
1ac63374d015eee8d9d875502aa63981dbeb9d86a14096de0d504763808e429b
GET / HTTP/1.1
Host: lak3553.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx/1.22.0
Date: Fri, 13 Jan 2023 05:36:47 GMT
Content-Type: text/html
Content-Length: 169
Connection: keep-alive
Location: http://www.lak3553.com/
www.lak3553.com/
107.154.248.254403 Forbidden 847 B IP 107.154.248.254:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (847), with no line terminators
Hash 683aa8e7b4a567c02551cf8d8e0f315d
75cabd7612098570878139caa0fd5be17ec5e0cc
1d45bc34d18e15acdaf66774cd4d23c0232201accb164b6e155de3826b1f9c62
GET / HTTP/1.1
Host: www.lak3553.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 403 Forbidden
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
Content-Length: 847
X-Iinfo: 14-452141164-0 0NNN RT(1673588208098 0) q(0 -1 -1 0) r(0 -1) B16 U18
Set-Cookie: visid_incap_2257395=hQ2zlJbMQFeswH4zhlKVdvDtwGMAAAAAQUIPAAAAAACX8hNkm41EkIkO0a40tw8P; expires=Fri, 12 Jan 2024 22:16:03 GMT; HttpOnly; path=/; Domain=.lak3553.com
incap_ses_7235_2257395=NHnyPAcxVUu+P7mjr+JnZPDtwGMAAAAAPqCwYaBLacswui9ZMI2E7g==; path=/; Domain=.lak3553.com
www.lak3553.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3
107.154.248.254200 OK 21 kB URL HTTP/1.1 www.lak3553.com/_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3
IP 107.154.248.254:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 687ee86d4e017a4b40076da5008fa1af
c1daacc6f73326d4abd4401a44b8e64559685144
93bb4ed160f43222c66ca011dfd44cc03212c82e78fb40810c4885510e3e4039
NIDS Severity Alert suricata medium ETPRO HUNTING Observed Suspicious Hex Encoded String Inbound (decodeURIComponent)
GET /_Incapsula_Resource?SWJIYLWA=719d34d31c8e3a6e6fffd425f7e032f3 HTTP/1.1
Host: www.lak3553.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.lak3553.com/
Cookie: visid_incap_2257395=hQ2zlJbMQFeswH4zhlKVdvDtwGMAAAAAQUIPAAAAAACX8hNkm41EkIkO0a40tw8P; incap_ses_7235_2257395=NHnyPAcxVUu+P7mjr+JnZPDtwGMAAAAAPqCwYaBLacswui9ZMI2E7g==
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: application/javascript
Content-Encoding: gzip
X-Robots-Tag: noindex
Content-Length: 20973
www.lak3553.com/_Incapsula_Resource?SWKMTFSR=1&e=0.33818042691463235
107.154.248.254200 OK 1 B URL HTTP/1.1 www.lak3553.com/_Incapsula_Resource?SWKMTFSR=1&e=0.33818042691463235
IP 107.154.248.254:0
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
GET /_Incapsula_Resource?SWKMTFSR=1&e=0.33818042691463235 HTTP/1.1
Host: www.lak3553.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.lak3553.com/
Cookie: visid_incap_2257395=hQ2zlJbMQFeswH4zhlKVdvDtwGMAAAAAQUIPAAAAAACX8hNkm41EkIkO0a40tw8P; incap_ses_7235_2257395=NHnyPAcxVUu+P7mjr+JnZPDtwGMAAAAAPqCwYaBLacswui9ZMI2E7g==; ___utmvc=ycLZ3WsdOY2+HBDX4iTiLnv1c9H24NrgW2gOKHEjHcOoeI34uwJ/PAL2rseeuTrzvJnSuY0YvsARKkUcfzuaOgNMnBDD42FNOkJFZhcQw0YFLTpVjqz5mU4KauoavWyBAZc37DxaanX14AyILqXlMmLOJK/AxPqyw4mkpZwHdDnue1X4YounatLq0wh45ogWa8RO8xmYWFkBPq+irUXg/f4wUIM6NFA4JitAaHR0H8gogYNkrDwWczbS+/vcxAT/NyOMNnvhiMc1GgtMlDQNX3Hr9bRASWFaEizxU4gvfBKAKzNytT0edaurl0DRH5bz5gI15xPLOc5fZF8Fqhvb/xjOvT3BiKIeK/SG6OgaY+8usLcYxNRqvCfiDUT1wiLflJyARlF/DrEsUpclzTstEA+TF+b8wKu+oEORHxVF/qlHXMuBoanw9kd/zdTa5+HjzkCmVDCV8gCFYvlFeNUcZoBcIablb4GjynzPCg/27Z1tQjDR9JMqWxX5yxYBZe44YHPg9YjDRArWn1sEkbrzaJzNtERz2/gTV6/Ed/qmQN66gQN462lH2f7lr9J3HIQEABHaxzqdCOG8K74b402VqGnUgvnNWi783uclm0lDA5H70ngFSFb8HUVZO5OYFvbfaqcDF74UdpFJA5rjHFW5d6WZtOJWnooub7yO22zoqE7iSSLD5llqRlD0eeuGmzNRZNVSqWFxjqhfVmXXsSUScKSCY0IAyq0wqTvGKDjMvuqj606KgSm6tduCNFoqIDb0+JI7hNZRO680SQH2x7WtYhuXIsLdlyAkDJNKBQMNccEa4wewGvg6NwyaSC0dxENOZl9tHpQADFnltUNgqqxfwlTNsAtxOFmlTukFaD777Zued8p4syQ6ZSVgXvYlZiYw6Aelg0E584MOEzYAHpAdkuFpJX41yqUzeAK7gcOOD/uTWybaqZuvESbpNc9z/KPtwU5PyIVjbVlyOUiwXOKbafac86OF3MSrGHkvkqdQVYGWWHvBsOouuN1ZO+EZBAsyLz3gx++z+KQvCd6KsfBb1DdG+sWShXUaVGCxuxWVgArfvWWeHOqbGLiuXpuOUa1k1gROOaqwAEzACL2DbKM3iyo80ikVGiwvMfkWFttecjk4Loy6K7Nn1KKbLpIreXOJbo+0IhJuOI6cwnLwQqgyQgEmhQv0P6zSe6VogSgXlwLUcTH9u+hGAnhVTS79xVqmQFyJXEVmtTckMvNJQbi/kTVOKYDgE4J8K4YsC60dCr7KUDSNBUtpZpkAh06Trl0iwqhEPkUgCSt/+lIe5ViJL36uDfJxt58EvNNUjG3T2EiyUPJh0BuNaaUIWOBkdWiWbSECR4C2X5+z6F2+irTSvVl/IODABUFpGlsMsl0M9l2d3XH2no1EBnt40KFgR/Y3IqsXiXroWSko8VVEqcmbqStj0x/BfKzTL/uLh9DLNxZwPlCpb7kbIztxAHBRCGjMjjWu4a+L4XNCoZdCetTJ/+2+C/VDrXFHFKoxBWxZYIbWH/EB9dlKqdAX8w86suJI1bD/Q5AHJ0rCgnNGQkJtZg6NJR4j2O0w8DiKApI6k6LeK/2ZUTFJV1bKMo2SS1cpM0S8+lu4y6G1HQlhbnIs3YeTEE3vut9AdeWqlSd+iiK9ZV2/nVUQimVlCCAMYOKzs/jqXhjieXf9yf5H7nFJeJSCGxrZyPy4D1T01GBZJLIHj+skkuY2Oylt8f+LuVamxze6zt31XEoZceF/xRuHAfqLjatRLyLb1AOoHrtmDdSghyQx9BBl++Tb4UetXwcnVThSjo1WrbhFY5FnJ9t5bPB8uT0ZsgZJDVREQMOgOxzCEPDWC0eWwOKJ8sk/PYRGksLSXTKglYICkDsw7Rwh+Lu17eVStPz+MnyAINgvJK+L+WN8wqnXdAll+++7tmOba90yKu/p6lX2BYHOLBk1T2uBnWz2HhSoSnBMxvL5RcZ/WK7iT2keT++BWjfeWI8GX4eudHYTZATnMTWj710xJJtsaA9wf/i+rbzXoqidg8RCBPl2TUg1nGVKrBupmWrV/6PZlckU8dvUi2JoipOE1ZK7VZUcawrfoIxmqywhEXvA6b+FEEfPFT7wtKH6C4bLHoyljQVUeswqLuSdOTFr89Jytt8W2BEZtYx70I4RuW8J8OfXl9efei9KE9mSz07R8EnM4QcL55DHTrAzY5QIszCOt+PgALGDEYnzkZ7aDLNUfqDPkJQE2Vx0Oe6Z3fNqxSgyAWwraibRO8mZDZNbRmikBcAxvBmNGjO5LK4WMihLcaVtN4j1NY6pPVhVOGVhikq2gm1szMOHwyUcFdUT/B//XwtFa7sAfyqr/Lu71GsWIUivln99bSSfMKZTlPliro1HodmqzmqD2EK6aXfiqMhM4A2me/tsLeHCwGOEm6AUgLvCtHRbsGRJjyTvlIsY1FdyDxgPGy+FpiYWyI04wcBd0iMeNucEyTkJWkGmCAznImOU0AgF/VMTlIx7OsRu2pDysXSivxgcmp87yL2bZFY5ZmvSn9FQ2dDl+wz5hpMR415Ufrz1AGgIzvIo4dVSqjdm+XhZNnE83HY2jh8SGUZndwMT5m3cIvRNp78Ci63i40iAtVQGmdaHgNIdADyR+riZdEHrMNFohkE590IQPHgFCE/zWpMy1sdLJPc4hbVAi0RjLbnNjtTRGJMCK0vj8TvkqZjSHEOCQR1CbBAbjbSzKS6YoyxkaWdlc3Q9MTg1NDU1LHM9NjY2Nzg1Njk5OTY0NzJhMjdmOWQ5ZTc3OWQ3Zjk5YWU4YzlhNjU2ZjliODBhZjZiNjlhYThmNmRhY2FiN2Q5Mjg4N2U2OTZkN2I3OTcyNzE=
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: text/plain
X-Robots-Tag: noindex
Content-Length: 1
www.lak3553.com/_Incapsula_Resource?CWUDNSAI=1&xinfo=14-452141164-0%200NNN%20RT%281673588208098%200%29%20q%280%20-1%20-1%200%29%20r%280%20-1%29%20B16%20U18&incident_id=7235000570387972030-2125172006336007758&edet=16&cinfo=ffffffff&rpinfo=0&mth=GET
107.154.248.254200 OK 3.7 kB URL HTTP/1.1 www.lak3553.com/_Incapsula_Resource?CWUDNSAI=1&xinfo=14-452141164-0%200NNN%20RT%281673588208098%200%29%20q%280%20-1%20-1%200%29%20r%280%20-1%29%20B16%20U18&incident_id=7235000570387972030-2125172006336007758&edet=16&cinfo=ffffffff&rpinfo=0&mth=GET
IP 107.154.248.254:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4072), with CRLF line terminators
Hash 2d1eeb36e4fcdbd2adf6143768162641
dd33cc536fe754e0a2faf6e623ad9194f79089f4
9f52b28264590ec7435cf3c568c49969005273d9504d5b991cb6ed15863d17b4
GET /_Incapsula_Resource?CWUDNSAI=1&xinfo=14-452141164-0%200NNN%20RT%281673588208098%200%29%20q%280%20-1%20-1%200%29%20r%280%20-1%29%20B16%20U18&incident_id=7235000570387972030-2125172006336007758&edet=16&cinfo=ffffffff&rpinfo=0&mth=GET HTTP/1.1
Host: www.lak3553.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.lak3553.com/
Cookie: visid_incap_2257395=hQ2zlJbMQFeswH4zhlKVdvDtwGMAAAAAQUIPAAAAAACX8hNkm41EkIkO0a40tw8P; incap_ses_7235_2257395=NHnyPAcxVUu+P7mjr+JnZPDtwGMAAAAAPqCwYaBLacswui9ZMI2E7g==; ___utmvc=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
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Cache-Control: no-cache, no-store
Content-Type: text/html
Content-Encoding: gzip
X-Robots-Tag: noindex
Content-Length: 3748
www.lak3553.com/favicon.ico
107.154.248.254403 Forbidden 845 B URL HTTP/1.1 www.lak3553.com/favicon.ico
IP 107.154.248.254:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (845), with no line terminators
Hash 6fd13a9dff2efb82953b249e05657b4f
377cccdaa6ffcddd6eee47bf6698730a17bbb69a
bfa925b948246c0354a06330979f657a181d8077d09d507c35bae176a79188d7
GET /favicon.ico HTTP/1.1
Host: www.lak3553.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.lak3553.com/
Cookie: visid_incap_2257395=hQ2zlJbMQFeswH4zhlKVdvDtwGMAAAAAQUIPAAAAAACX8hNkm41EkIkO0a40tw8P; incap_ses_7235_2257395=NHnyPAcxVUu+P7mjr+JnZPDtwGMAAAAAPqCwYaBLacswui9ZMI2E7g==; ___utmvc=ycLZ3WsdOY2+HBDX4iTiLnv1c9H24NrgW2gOKHEjHcOoeI34uwJ/PAL2rseeuTrzvJnSuY0YvsARKkUcfzuaOgNMnBDD42FNOkJFZhcQw0YFLTpVjqz5mU4KauoavWyBAZc37DxaanX14AyILqXlMmLOJK/AxPqyw4mkpZwHdDnue1X4YounatLq0wh45ogWa8RO8xmYWFkBPq+irUXg/f4wUIM6NFA4JitAaHR0H8gogYNkrDwWczbS+/vcxAT/NyOMNnvhiMc1GgtMlDQNX3Hr9bRASWFaEizxU4gvfBKAKzNytT0edaurl0DRH5bz5gI15xPLOc5fZF8Fqhvb/xjOvT3BiKIeK/SG6OgaY+8usLcYxNRqvCfiDUT1wiLflJyARlF/DrEsUpclzTstEA+TF+b8wKu+oEORHxVF/qlHXMuBoanw9kd/zdTa5+HjzkCmVDCV8gCFYvlFeNUcZoBcIablb4GjynzPCg/27Z1tQjDR9JMqWxX5yxYBZe44YHPg9YjDRArWn1sEkbrzaJzNtERz2/gTV6/Ed/qmQN66gQN462lH2f7lr9J3HIQEABHaxzqdCOG8K74b402VqGnUgvnNWi783uclm0lDA5H70ngFSFb8HUVZO5OYFvbfaqcDF74UdpFJA5rjHFW5d6WZtOJWnooub7yO22zoqE7iSSLD5llqRlD0eeuGmzNRZNVSqWFxjqhfVmXXsSUScKSCY0IAyq0wqTvGKDjMvuqj606KgSm6tduCNFoqIDb0+JI7hNZRO680SQH2x7WtYhuXIsLdlyAkDJNKBQMNccEa4wewGvg6NwyaSC0dxENOZl9tHpQADFnltUNgqqxfwlTNsAtxOFmlTukFaD777Zued8p4syQ6ZSVgXvYlZiYw6Aelg0E584MOEzYAHpAdkuFpJX41yqUzeAK7gcOOD/uTWybaqZuvESbpNc9z/KPtwU5PyIVjbVlyOUiwXOKbafac86OF3MSrGHkvkqdQVYGWWHvBsOouuN1ZO+EZBAsyLz3gx++z+KQvCd6KsfBb1DdG+sWShXUaVGCxuxWVgArfvWWeHOqbGLiuXpuOUa1k1gROOaqwAEzACL2DbKM3iyo80ikVGiwvMfkWFttecjk4Loy6K7Nn1KKbLpIreXOJbo+0IhJuOI6cwnLwQqgyQgEmhQv0P6zSe6VogSgXlwLUcTH9u+hGAnhVTS79xVqmQFyJXEVmtTckMvNJQbi/kTVOKYDgE4J8K4YsC60dCr7KUDSNBUtpZpkAh06Trl0iwqhEPkUgCSt/+lIe5ViJL36uDfJxt58EvNNUjG3T2EiyUPJh0BuNaaUIWOBkdWiWbSECR4C2X5+z6F2+irTSvVl/IODABUFpGlsMsl0M9l2d3XH2no1EBnt40KFgR/Y3IqsXiXroWSko8VVEqcmbqStj0x/BfKzTL/uLh9DLNxZwPlCpb7kbIztxAHBRCGjMjjWu4a+L4XNCoZdCetTJ/+2+C/VDrXFHFKoxBWxZYIbWH/EB9dlKqdAX8w86suJI1bD/Q5AHJ0rCgnNGQkJtZg6NJR4j2O0w8DiKApI6k6LeK/2ZUTFJV1bKMo2SS1cpM0S8+lu4y6G1HQlhbnIs3YeTEE3vut9AdeWqlSd+iiK9ZV2/nVUQimVlCCAMYOKzs/jqXhjieXf9yf5H7nFJeJSCGxrZyPy4D1T01GBZJLIHj+skkuY2Oylt8f+LuVamxze6zt31XEoZceF/xRuHAfqLjatRLyLb1AOoHrtmDdSghyQx9BBl++Tb4UetXwcnVThSjo1WrbhFY5FnJ9t5bPB8uT0ZsgZJDVREQMOgOxzCEPDWC0eWwOKJ8sk/PYRGksLSXTKglYICkDsw7Rwh+Lu17eVStPz+MnyAINgvJK+L+WN8wqnXdAll+++7tmOba90yKu/p6lX2BYHOLBk1T2uBnWz2HhSoSnBMxvL5RcZ/WK7iT2keT++BWjfeWI8GX4eudHYTZATnMTWj710xJJtsaA9wf/i+rbzXoqidg8RCBPl2TUg1nGVKrBupmWrV/6PZlckU8dvUi2JoipOE1ZK7VZUcawrfoIxmqywhEXvA6b+FEEfPFT7wtKH6C4bLHoyljQVUeswqLuSdOTFr89Jytt8W2BEZtYx70I4RuW8J8OfXl9efei9KE9mSz07R8EnM4QcL55DHTrAzY5QIszCOt+PgALGDEYnzkZ7aDLNUfqDPkJQE2Vx0Oe6Z3fNqxSgyAWwraibRO8mZDZNbRmikBcAxvBmNGjO5LK4WMihLcaVtN4j1NY6pPVhVOGVhikq2gm1szMOHwyUcFdUT/B//XwtFa7sAfyqr/Lu71GsWIUivln99bSSfMKZTlPliro1HodmqzmqD2EK6aXfiqMhM4A2me/tsLeHCwGOEm6AUgLvCtHRbsGRJjyTvlIsY1FdyDxgPGy+FpiYWyI04wcBd0iMeNucEyTkJWkGmCAznImOU0AgF/VMTlIx7OsRu2pDysXSivxgcmp87yL2bZFY5ZmvSn9FQ2dDl+wz5hpMR415Ufrz1AGgIzvIo4dVSqjdm+XhZNnE83HY2jh8SGUZndwMT5m3cIvRNp78Ci63i40iAtVQGmdaHgNIdADyR+riZdEHrMNFohkE590IQPHgFCE/zWpMy1sdLJPc4hbVAi0RjLbnNjtTRGJMCK0vj8TvkqZjSHEOCQR1CbBAbjbSzKS6YoyxkaWdlc3Q9MTg1NDU1LHM9NjY2Nzg1Njk5OTY0NzJhMjdmOWQ5ZTc3OWQ3Zjk5YWU4YzlhNjU2ZjliODBhZjZiNjlhYThmNmRhY2FiN2Q5Mjg4N2U2OTZkN2I3OTcyNzE=
HTTP/1.1 403 Forbidden
Content-Type: text/html
Cache-Control: no-cache, no-store
Connection: close
Content-Length: 845
X-Iinfo: 10-68828856-0 0NNN RT(1673588208295 0) q(0 -1 -1 -1) r(0 -1) B16 U18
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 709dbdc77e1779e7c77865fa27f2573a
8781ced82c5109fbe49e8897844c7c1b89f4c340
8b02e05fc2de10b7aa4115870138f3b4e2a1f79a844924d7c50072b002405dc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 709dbdc77e1779e7c77865fa27f2573a
8781ced82c5109fbe49e8897844c7c1b89f4c340
8b02e05fc2de10b7aa4115870138f3b4e2a1f79a844924d7c50072b002405dc1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d85923836060d54f16bf5e089c6cce0a
c34e8934f12a46d107086e9889e564c36fba6a51
befa234085a447c89e241c03f110bff261b59bae1dfc02e885a5b1091791901a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d85923836060d54f16bf5e089c6cce0a
c34e8934f12a46d107086e9889e564c36fba6a51
befa234085a447c89e241c03f110bff261b59bae1dfc02e885a5b1091791901a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d85923836060d54f16bf5e089c6cce0a
c34e8934f12a46d107086e9889e564c36fba6a51
befa234085a447c89e241c03f110bff261b59bae1dfc02e885a5b1091791901a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d85923836060d54f16bf5e089c6cce0a
c34e8934f12a46d107086e9889e564c36fba6a51
befa234085a447c89e241c03f110bff261b59bae1dfc02e885a5b1091791901a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
216.58.207.227200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.lak3553.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 08 Jan 2023 01:47:02 GMT
expires: Mon, 08 Jan 2024 01:47:02 GMT
cache-control: public, max-age=31536000
age: 445786
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash d85923836060d54f16bf5e089c6cce0a
c34e8934f12a46d107086e9889e564c36fba6a51
befa234085a447c89e241c03f110bff261b59bae1dfc02e885a5b1091791901a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 13 Jan 2023 05:36:48 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;700&display=swap
216.58.207.202200 OK 0 B URL HTTP/2 fonts.googleapis.com/css2?family=Inter:wght@300;400;500;700&display=swap
IP 216.58.207.202:0
GET /css2?family=Inter:wght@300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.lak3553.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 13 Jan 2023 05:36:48 GMT
date: Fri, 13 Jan 2023 05:36:48 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2