| r3.o.lencr.org/ |  95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashdca68db7aea32f6683ce8d542c078f04 19c495238df74fca680e21f18627ff94de5dd2e5 35cab3987fc0e4a41b305cb208c1e33fa38ce8bdfd9f386c3dc0411dd4d5ac61
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "35CAB3987FC0E4A41B305CB208C1E33FA38CE8BDFD9F386C3DC0411DD4D5AC61"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18602
Expires: Wed, 08 Feb 2023 21:43:17 GMT
Date: Wed, 08 Feb 2023 16:33:15 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ |  93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashab88b8165d39c17802adcfb408ea10fa fc931d76c575e6d449a0ee0fc3f149436fab526a c82028ee7859d2c74998ab9385a8146f61e51918687edee3e6feb0f25bed294c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6411
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 16:33:15 GMT
Last-Modified: Wed, 08 Feb 2023 14:46:24 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D"
Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7403
Expires: Wed, 08 Feb 2023 18:36:38 GMT
Date: Wed, 08 Feb 2023 16:33:15 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ |  35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashbf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 08 Feb 2023 15:36:40 GMT
content-type: application/json
age: 3395
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hashcc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD"
Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15194
Expires: Wed, 08 Feb 2023 20:46:29 GMT
Date: Wed, 08 Feb 2023 16:33:15 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hashe76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: mEtQY9KYksy5vDZgkXfZ03rlY+TcN350/GsKFo9//kkq5YjNfZBEH/TcBLu8NFF0BEp+T0jKLyM=
x-amz-request-id: CE2SCRS88AA744YT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 08 Feb 2023 15:35:59 GMT
age: 3436
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 08 Feb 2023 16:33:15 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| www.paypal.com/us/webapps/mpp/security/suspicious-activity?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000238&utm_unptid=58849622-a7c9-11ed-b0d6-3cecef47c1de&ppid=RT000238&cnac=US&rsta=en_US(en-US)&cust=&unptid=58849622-a7c9-11ed-b0d6-3cecef47c1de&calc=c9e73d4393d50&unp_tpcid=invoice-buyer-notification&page=main:email:RT000238&pgrp=main:email&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.144.0&xt=104038,124817 | 151.101.65.21 | 301 Moved Permanently | 300 B |
URL HTTP/2www.paypal.com/us/webapps/mpp/security/suspicious-activity?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000238&utm_unptid=58849622-a7c9-11ed-b0d6-3cecef47c1de&ppid=RT000238&cnac=US&rsta=en_US(en-US)&cust=&unptid=58849622-a7c9-11ed-b0d6-3cecef47c1de&calc=c9e73d4393d50&unp_tpcid=invoice-buyer-notification&page=main:email:RT000238&pgrp=main:email&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.144.0&xt=104038,124817 IP151.101.65.21:0
File typeHTML document, ASCII text, with no line terminators Hashfa7c40b8ff299fb9e85344333175913b 119f7de78475814c4ff41dd3a97b9332b0997a25 118e164be242d0b12bfb6decf1c76d777dfe916400299989e03d66f7391229af
GET /us/webapps/mpp/security/suspicious-activity?v=1&utm_source=unp&utm_medium=email&utm_campaign=RT000238&utm_unptid=58849622-a7c9-11ed-b0d6-3cecef47c1de&ppid=RT000238&cnac=US&rsta=en_US(en-US)&cust=&unptid=58849622-a7c9-11ed-b0d6-3cecef47c1de&calc=c9e73d4393d50&unp_tpcid=invoice-buyer-notification&page=main:email:RT000238&pgrp=main:email&e=cl&mchn=em&s=ci&mail=sys&appVersion=1.144.0&xt=104038,124817 HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; frame-src 'self' https://*.brighttalk.com https://*.paypal.com https://*.paypalobjects.com https://www.youtube-nocookie.com https://www.xoom.com https://*.qualtrics.com https://*.paypal-mktg.com https://6386697.fls.doubleclick.net; script-src 'nonce-aW9rAf0r9fPaQGT8p9xqI/QAS0W3jkt8BLmsSqujmf1ZTlpO' 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com https://pypd.paypal-mktg.com 'unsafe-inline' 'unsafe-eval'; connect-src 'self' https://nominatim.openstreetmap.org https://*.paypal.com https://*.paypalobjects.com https://*.google-analytics.com https://*.salesforce.com https://*.force.com https://nexus.ensighten.com https://api.paypal-retaillocator.com https://*.brighttalk.com https://*.qualtrics.com https://paypal.us-4.evergage.com; style-src 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com data:; img-src 'self' https: data:; form-action 'self' https://*.paypal.com https://*.salesforce.com https://secure.opinionlab.com https://*.paypal-mktg.com https://*.paypal-corp.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-ancestors 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: text/html; charset=utf-8
location: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
paypal-debug-id: f5436740c2b8a
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Thu, 09 Feb 2023 01:19:11 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Thu, 08 Feb 2024 16:33:15 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NTI2MCIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=mppnodeweb; Domain=.paypal.com; Path=/; Expires=Sat, 11 Feb 2023 16:33:15 GMT; HttpOnly; Secure; SameSite=None
nsid=s%3AnbLAbRlr-uQDcShW6B9VykTlw_6XFWI1.4X1X3sm1c6He1umS3t%2FeTjWHX1P55Od6qOFOxU5Ghfo; Path=/; HttpOnly; Secure
ts=vreXpYrS%3D1770568395%26vteXpYrS%3D1675875795%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:15 GMT; HttpOnly; Secure
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:15 GMT; Secure
traceparent: 00-0000000000000000000f5436740c2b8a-fdbb574f4565785b-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 08 Feb 2023 16:33:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220035-HHN, cache-bma1672-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675873995.072486,VS0,VE287
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
content-length: 300
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Content-Type, Expires, Pragma, Retry-After, Last-Modified, ETag, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 08 Feb 2023 15:51:20 GMT
age: 2515
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash9b88bae61bca33aba8aa99f6128db8d9 a07b61fb2458917699613fcae68710941b595416 54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA"
Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4402
Expires: Wed, 08 Feb 2023 17:46:37 GMT
Date: Wed, 08 Feb 2023 16:33:15 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 54.189.35.180 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP54.189.35.180:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6Ec2xo6Ytv+KKeKE1BnGFQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 99TfyaKtaiPXlX7H8dyJ5WXUepI=
|
|
| www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/personal-app.svg | 192.229.221.25 | 200 OK | 582 B |
URL HTTP/2www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/personal-app.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (492) Hash0573c93748ff1fdb6efdf8ea427240d9 323dd3e7027c5bc4a7af2a6a259d1b280d52d94c 63b949fffbb49b35b237b917d6a0b2faef8b0cba89556380aac3cbf28d70c7e2
GET /marketing/web/US/en/rebrand/pictograms/personal-app.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6358fae2-5d4"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 26 Oct 2022 09:16:18 GMT
paypal-debug-id: 9e7dcd7a44f6d
server: ECAcc (ska/F747)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000009e7dcd7a44f6d-e0e46d6efd12b491-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 582
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/js/min/pa.js | 192.229.221.25 | 200 OK | 22 kB |
URL HTTP/2www.paypalobjects.com/pa/js/min/pa.js IP192.229.221.25:0
File typeASCII text, with very long lines (56607) Hashe1b71f6f213609d91bd05f7282d7d1e8 73bdc86b3c62e9da1e9f12b98822e0686667d33c ab3771660b9d40a78cbbf284b9481a2ea9095c40e72e251e767f9e00347d740b
GET /pa/js/min/pa.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "63c865b0-dd3b"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 18 Jan 2023 21:33:36 GMT
paypal-debug-id: 9729bfdc7039d
server: ECAcc (ska/F77F)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000009729bfdc7039d-9fb8ba14b10fba2e-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 21563
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/business-start.svg | 192.229.221.25 | 200 OK | 587 B |
URL HTTP/2www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/business-start.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text Hash48564338350b6db0e9abc4f702d0ce81 d1d59bbc0000133fd1246440129906be77007359 690cfee633be8ec99a34ade0059537b4c51c9f6961958fa19376b626d68d3db8
GET /marketing/web/US/en/rebrand/pictograms/business-start.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6358fae2-564"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 26 Oct 2022 09:16:18 GMT
paypal-debug-id: 67eff8860c0f
server: ECAcc (ska/F73D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000067eff8860c0f-a93f380dafa1360c-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 587
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/business-pricing.svg | 192.229.221.25 | 200 OK | 683 B |
URL HTTP/2www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/business-pricing.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (422) Hasha173a5c944b608b398a7d0cdccf08951 6b8c9ecd3c92deb64f326b7712afe89784d7be3b 02701eace33d35db96b06068a6231fe77f8b621d254a6f40b9991d4ec1d294ed
GET /marketing/web/US/en/rebrand/pictograms/business-pricing.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6358fae2-6a6"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 26 Oct 2022 09:16:18 GMT
paypal-debug-id: e75ef3a483720
server: ECAcc (ska/F77C)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000e75ef3a483720-bdbf9e17c267e980-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 683
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/helpcenter/smartchat/sales/v1/open-chat.js | 192.229.221.25 | 200 OK | 779 B |
URL HTTP/2www.paypalobjects.com/helpcenter/smartchat/sales/v1/open-chat.js IP192.229.221.25:0
File typeASCII text, with very long lines (1387) Hash852d331ed6897c5edbe14d5d7ceef0ad 6d0441bd7eed5dac7feab975be4ed1fd2af1501a 1e011b258aa5e0a203c9473b4c77dcc5c4c1db820465abf78260fd63705c96c8
GET /helpcenter/smartchat/sales/v1/open-chat.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"60271b1c-5bf"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Sat, 13 Feb 2021 00:19:40 GMT
paypal-debug-id: dc2f6735f88da
server: ECAcc (ska/F777)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000dc2f6735f88da-6e9353f0844a256a-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 779
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/personal-how-it-works.svg | 192.229.221.25 | 200 OK | 1.0 kB |
URL HTTP/2www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/personal-how-it-works.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (762) Hash91ef91e8b5e91e10e3c240265786c505 b32ceb05d0a0505740a7a904ee71265c14af1131 be780317722b3558ab0b37e90e520458da7bc722b2716632d0dc70070ce298c5
GET /marketing/web/US/en/rebrand/pictograms/personal-how-it-works.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6358fae2-943"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 26 Oct 2022 09:16:18 GMT
paypal-debug-id: a05343421d661
server: ECAcc (ska/F6A6)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000a05343421d661-e0daaca25a1f1f4f-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1019
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 | 192.229.221.25 | 200 OK | 18 kB |
URL HTTP/2www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), CFF, length 18320, version 1.6553\012- data Hash8a41b4550d23b462af63fc46fabb46a4 50359b7126ed92c33efcbf673c286f105d9ae5e7 af93d1d952b2dc42c029871cbbb92988835b31c86d4f0cb6a9674b1d1714a20f
GET /digitalassets/c/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66ae4b-4790"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 23 Jan 2018 03:38:51 GMT
paypal-debug-id: 1e010e575673
server: ECAcc (ska/F737)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000001e010e575673-58afd072ede52f6c-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18320
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2 | 192.229.221.25 | 200 OK | 18 kB |
URL HTTP/2www.paypalobjects.com/digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), CFF, length 18360, version 1.6553\012- data Hash687b74c9a69af269c66b34ba18d6abd0 2bc090adc07a731f3c13da7969ca0a4409cee081 0d4d4b0ee4bdbbbfdf2fa8cc4c0ba0332a3798c2629cb806d249712f6a7063e3
GET /digitalassets/c/paypal-ui/fonts/PayPalSansBig-Light.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5a66a30d-47b8"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 23 Jan 2018 02:50:53 GMT
paypal-debug-id: 31940cfcca88e
server: ECAcc (ska/F74D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000031940cfcca88e-6a78c0bb25fad90d-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18360
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing/web/us/en/security-center/L3-Fakes/hero-identify-fakes.png | 192.229.221.25 | 200 OK | 29 kB |
URL HTTP/2www.paypalobjects.com/marketing/web/us/en/security-center/L3-Fakes/hero-identify-fakes.png IP192.229.221.25:0
File typePNG image data, 1692 x 960, 8-bit/color RGBA, non-interlaced\012- data Hash4137db019dcde4b8bf0cc2babddec44e 6111558c6cc0a2ebf98f9d0c4d925defe240747c 768bb561e932addfeb5a89cba84a83e8803e59605ce6c5e269863cc2d85310f2
GET /marketing/web/us/en/security-center/L3-Fakes/hero-identify-fakes.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61e2f1bd-6f91"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Sat, 15 Jan 2022 16:09:33 GMT
paypal-debug-id: 7030f9a602a81
server: ECAcc (ska/F6D5)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000007030f9a602a81-7dada8a8fa40bbea-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 28561
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/activation/js/marketingIntentsV2.js | 192.229.221.25 | 200 OK | 365 B |
URL HTTP/2www.paypalobjects.com/activation/js/marketingIntentsV2.js IP192.229.221.25:0
File typeASCII text, with very long lines (469) Hash305c10d8cc14893fa7f3788f6b26d3b5 4c27a5f9dde9617912bb044e3eeee83607fdf6c8 91ad899e2fdac039958d4790085004f9c45e76f102ba52df10f16d8c672d73bb
GET /activation/js/marketingIntentsV2.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271561-22a"
expires: Thu, 09 Feb 2023 16:33:16 GMT
last-modified: Fri, 12 Feb 2021 23:55:13 GMT
paypal-debug-id: a18044771bc0f
server: ECAcc (ska/F6F1)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000a18044771bc0f-1677c8deec644079-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 365
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js | 192.229.221.25 | 200 OK | 6.7 kB |
URL HTTP/2www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js IP192.229.221.25:0
File typeASCII text, with very long lines (22876), with no line terminators Hash071e619850c8b89795e7ec942a262ec0 2331291db26931472ccb3d99c8b37329f8d7e4d1 5d42349de577dc151ed225fe3e70a5b56644fb0d42d9240faed00530ace9d147
GET /webcaptcha/ngrlCaptcha.min.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "63a012f1-595c"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Mon, 19 Dec 2022 07:29:53 GMT
paypal-debug-id: 886af33eb6e53
server: ECAcc (ska/F69F)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000886af33eb6e53-11d5f98160898fc5-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 6717
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/enterprise-contact.svg | 192.229.221.25 | 200 OK | 493 B |
URL HTTP/2www.paypalobjects.com/marketing/web/US/en/rebrand/pictograms/enterprise-contact.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text Hash8294757addfc16c95a935e2da6076b16 352f644900c7dda6333d298d4c46237c94b63f34 c5f4af0f63a7e32f6c840b605836b38585896589e7106a9dc0ee7bc869c8a900
GET /marketing/web/US/en/rebrand/pictograms/enterprise-contact.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"6358fae2-44f"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 26 Oct 2022 09:16:18 GMT
paypal-debug-id: cf2e064c825e0
server: ECAcc (ska/F775)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000cf2e064c825e0-3671427e96031c5a-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 493
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing-resources/vendors/react-17_0_1-bundle.js | 192.229.221.25 | 200 OK | 44 kB |
URL HTTP/2www.paypalobjects.com/marketing-resources/vendors/react-17_0_1-bundle.js IP192.229.221.25:0
File typeASCII text, with very long lines (655) Hash7d15ba03b68b9e59d9c31c7f102c6030 10846bd743b584aef38247fe250e2d3563dad060 bef2c7cf7197a403833688bf5fbe1406255a40a8c6755a716c0b7af92988a671
GET /marketing-resources/vendors/react-17_0_1-bundle.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "603428fb-20ee8"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Mon, 22 Feb 2021 21:58:19 GMT
paypal-debug-id: c72d2d76a8459
server: ECAcc (ska/F761)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000c72d2d76a8459-6429637bbeef984a-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 44545
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing-resources/css/33/96ebd52b7bac22b7352362612bb7ff3c09e350.css | 192.229.221.25 | 200 OK | 89 kB |
URL HTTP/2www.paypalobjects.com/marketing-resources/css/33/96ebd52b7bac22b7352362612bb7ff3c09e350.css IP192.229.221.25:0
File typeASCII text, with very long lines (65536), with no line terminators Hash8c7da9ea242cae413ab174e6f3368ca5 8dafdd8d0eec0372b677bbb1e43f534cc4487d46 0faa295cf3436211d72051a0188aceac61267081eb1ef2c4c601807faf7c994c
GET /marketing-resources/css/33/96ebd52b7bac22b7352362612bb7ff3c09e350.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: text/css
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "63e2070a-cf2ca+gzip"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 07 Feb 2023 08:08:42 GMT
paypal-debug-id: 359552f6896f2
server: ECAcc (ska/F772)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000359552f6896f2-6220f4e47ae8e2fe-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 89104
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/marketing-resources/js/3e/446316e6568e9588193cb18938c15a081a9c27.js | 192.229.221.25 | 200 OK | 356 kB |
URL HTTP/2www.paypalobjects.com/marketing-resources/js/3e/446316e6568e9588193cb18938c15a081a9c27.js IP192.229.221.25:0
File typeUnicode text, UTF-8 text, with very long lines (65399) Size356 kB (355777 bytes) Hash73825a6825a3930e7d67f25b1457686d c87c167dbf96d33469fe3261e3f20c30896211c0 836bb434ba48f8ce9b1fb50240094fc74cb609c1b4b97f0911d3adbeb47b7b5e
GET /marketing-resources/js/3e/446316e6568e9588193cb18938c15a081a9c27.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=31536000
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "63e2070a-145db4+gzip"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 07 Feb 2023 08:08:42 GMT
paypal-debug-id: d7648c6a63559
server: ECAcc (ska/F791)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000d7648c6a63559-5dde0ec0448ac3bd-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 355777
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/logos/svg/paypal-mark-color.svg | 192.229.221.25 | 200 OK | 548 B |
URL HTTP/2www.paypalobjects.com/paypal-ui/logos/svg/paypal-mark-color.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (394) Hash9a451a05d399cecf455828f58d934871 f5e16eb87feafaf0b84e6c2484e44c48f794c3d7 7e21d087c5f6d427a95fc16a717000634f22ab55a83188e004785e07cb3a2cfd
GET /paypal-ui/logos/svg/paypal-mark-color.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypalobjects.com/marketing-resources/css/33/96ebd52b7bac22b7352362612bb7ff3c09e350.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "62aa5e30-436"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 15 Jun 2022 22:33:20 GMT
paypal-debug-id: d7ad9464b4dfc
server: ECAcc (ska/F686)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 548
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/logos/svg/paypal-color.svg | 192.229.221.25 | 200 OK | 1.5 kB |
URL HTTP/2www.paypalobjects.com/paypal-ui/logos/svg/paypal-color.svg IP192.229.221.25:0
File typeSVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3493), with no line terminators Hash9a984a8f1febdbec205ab98271d6deb7 b6863abb53418225e0b23cca4dd8bbb5c15e0031 0fa97de1425cc11ae612a23dc8805f0e84e5fd674262e082317bc974684de2a7
GET /paypal-ui/logos/svg/paypal-color.svg HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypalobjects.com/marketing-resources/css/33/96ebd52b7bac22b7352362612bb7ff3c09e350.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/svg+xml
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "628e72b6-da5"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 25 May 2022 18:17:26 GMT
paypal-debug-id: 900cf2d076594
server: ECAcc (ska/F6C0)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1453
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Regular.woff2 | 192.229.221.25 | 200 OK | 25 kB |
URL HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Regular.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), CFF, length 25368, version 1.6553\012- data Hash186b9e5be0671c3c941a2a4966beb47a 0255bf2f48460eb212c93242740f5bef01e858c4 1f70ff447ed799a34f4c3ae37ef1f49ed4af71123ba2c2aefe354565354284be
GET /paypal-ui/fonts/PayPalSansBig-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-6318"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: 308109b4950df
server: ECAcc (ska/F744)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 25368
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Medium.woff2 | 192.229.221.25 | 200 OK | 18 kB |
URL HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Medium.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), TrueType, length 18508, version 1.6553\012- data Hash57518c06c06d691bd2def8d51db1f1c2 dab349042885997d8d08db8dc38d0b4907635e2e 2ae6779c6c3579643ab6deb5cfb822e843bf637d006a4ec25d9857ec7fb6d8c1
GET /paypal-ui/fonts/PayPalSansBig-Medium.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-484c"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: 7280f01f794f9
server: ECAcc (ska/F74B)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 18508
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 | 192.229.221.25 | 200 OK | 18 kB |
URL HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalSansSmall-Regular.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), CFF, length 18320, version 1.6553\012- data Hash8a41b4550d23b462af63fc46fabb46a4 50359b7126ed92c33efcbf673c286f105d9ae5e7 af93d1d952b2dc42c029871cbbb92988835b31c86d4f0cb6a9674b1d1714a20f
GET /paypal-ui/fonts/PayPalSansSmall-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-4790"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: f69d989fb83e7
server: ECAcc (ska/F6A0)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000f69d989fb83e7-196fb7028b136e53-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 18320
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Bold.woff2 | 192.229.221.25 | 200 OK | 27 kB |
URL HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Bold.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), TrueType, length 26700, version 1.0\012- data Hash964301d9e02c35e15d2bba56f7275b05 162fb35f734384821c2c02f7a5d5c0d319cf3d2a 9ed6dcb699f10e85624a4579731f929b5d8b91f0c73b9fc01b8893021c83f4a0
GET /paypal-ui/fonts/PayPalOpen-Bold.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "6298f2c0-684c"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Thu, 02 Jun 2022 17:26:24 GMT
paypal-debug-id: a2a6515ad6c3b
server: ECAcc (ska/F6C0)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 26700
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Regular.woff2 | 192.229.221.25 | 200 OK | 28 kB |
URL HTTP/2www.paypalobjects.com/paypal-ui/fonts/PayPalOpen-Regular.woff2 IP192.229.221.25:0
File typeWeb Open Font Format (Version 2), TrueType, length 27457, version 1.0\012- data Hash49d49974386dc725656bc1a2bf32ed44 26139d3425422f233dfccb09fca2edb36f01e390 9ae7b95f034d76b21aaf8fcc0cdd39f4ba7ba59dd9751348a32c7e5cfdfdb6df
GET /paypal-ui/fonts/PayPalOpen-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "6298f2c0-6b41"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Thu, 02 Jun 2022 17:26:24 GMT
paypal-debug-id: 2bb306bddffa0
server: ECAcc (ska/F742)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 27457
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/mi/paypal/latmconf.js | 192.229.221.25 | 200 OK | 35 kB |
URL HTTP/2www.paypalobjects.com/pa/mi/paypal/latmconf.js IP192.229.221.25:0
File typeUnicode text, UTF-8 text, with very long lines (65406) Hashad4bafc9dc2323b5d9effd2042370095 e2fa3c60705830105ae3570c4974bb8060aac5e1 d8a8a5375325c9e6df29b29c3f22a0cf7f7d3977e27244a849c25bef3c430f9a
GET /pa/mi/paypal/latmconf.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "63e28fb5-488fc"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 07 Feb 2023 17:51:49 GMT
paypal-debug-id: e9cae00ceadc1
server: ECAcc (ska/F75D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000e9cae00ceadc1-ebb7b974d6f44c8a-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 34694
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/webstatic/icon/pp32.png | 192.229.221.25 | 200 OK | 4.0 kB |
URL HTTP/2www.paypalobjects.com/webstatic/icon/pp32.png IP192.229.221.25:0
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data Hash8f4dd9ccb66a6485107e80b6e86063f9 fc5220270099d7079a068e5fd3ac5ad248f2e15d 9e208d404c81e5fc7170c13b8564b1368100d668b2071b16ee14600d08519ac4
GET /webstatic/icon/pp32.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "53611ccb-f84"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Wed, 30 Apr 2014 15:54:51 GMT
paypal-debug-id: fad9686aa8e74
server: ECAcc (ska/F76D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 3972
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/webstatic/icon/pp258.png | 192.229.221.25 | 200 OK | 11 kB |
URL HTTP/2www.paypalobjects.com/webstatic/icon/pp258.png IP192.229.221.25:0
File typePNG image data, 259 x 259, 8-bit/color RGBA, non-interlaced\012- data Hashe7cbcaa14ba5db0160c268042e02db3c 6bac98f15adfab6401322b17b026d3371e5a77a5 6d8050cc8b33b9fdca434c4a66bde15cb8540db2a4bc29f7bb9ede78753477df
GET /webstatic/icon/pp258.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "54cff20c-2c09"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Mon, 02 Feb 2015 21:54:20 GMT
paypal-debug-id: b32d1a57156a0
server: ECAcc (ska/F739)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000b32d1a57156a0-d117e94722987094-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 11273
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/OrchestratorMain.js | 192.229.221.25 | 200 OK | 3.3 kB |
URL HTTP/2www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/OrchestratorMain.js IP192.229.221.25:0
File typeASCII text, with very long lines (6634) Hash390667e5ee9d664f84d4e95a57bc0e6c dc1ddfccc45f27889df9cca04f1e67fd8bf8288d df20d35b4f816c1d2ac8ea2fe2213a95be96afcd2b750da848386f2adee927b9
GET /pa/3pjs/qualtrics/1.64.1/OrchestratorMain.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61dccd14-1d47"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 11 Jan 2022 00:19:32 GMT
paypal-debug-id: 2c4c5d8c72009
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000002c4c5d8c72009-fd885f4e0d8b963b-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 3329
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/12.2e4d3453d92fa382c1f6.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm | 192.229.221.25 | 200 OK | 16 kB |
URL HTTP/2www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/12.2e4d3453d92fa382c1f6.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm IP192.229.221.25:0
File typeASCII text, with very long lines (56506) Hash3f62719f14544a6fa7086ecdf8b0235c 61b91f411669bd18a1c32a9a2ab44b2665a5854d cf4b36f9dba4efa468855937f6a5659913cb6f38b613bd3305f6a0f2e91513f9
GET /pa/3pjs/qualtrics/1.64.1/12.2e4d3453d92fa382c1f6.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61dccd14-e017"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 11 Jan 2022 00:19:32 GMT
paypal-debug-id: 120980189b070
server: ECAcc (ska/F6C9)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000120980189b070-c3a91ae0d0026965-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 16285
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash231152b08210ddf564fc595b641c7c6a ee864c225e565a86dc16b11dde581a303bcf6d98 3d11b98220b9c30545d1562124a10bce56e0ac035f7203cb56d57dc5a52b648b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3415
Cache-Control: max-age=158094
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 16:33:16 GMT
Etag: "63e38803-1d7"
Expires: Fri, 10 Feb 2023 12:28:10 GMT
Last-Modified: Wed, 08 Feb 2023 11:31:15 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
|
|
| t.paypal.com/ts?v=1.7.6&t=1675874051614&g=0&pgrp=main%3Aprivacy%3Apolicy&page=main%3Aprivacy%3Apolicy%3Accpa&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=US&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105410%2C105409%2C104759%2C104406%2C104407&xt=123956%2C123954%2C120840%2C119037%2C119038&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&displaypage=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&ppage=privacy_banner&bannertype=cookiebanner&flag=ccpa&bannerversion=v3a&bannersource=ConsentNodeServ&eligibility_reason=false&is_native=false&cookie_disabled=false&e=ac | 192.229.221.25 | 200 OK | 42 B |
URL HTTP/2t.paypal.com/ts?v=1.7.6&t=1675874051614&g=0&pgrp=main%3Aprivacy%3Apolicy&page=main%3Aprivacy%3Apolicy%3Accpa&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=US&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105410%2C105409%2C104759%2C104406%2C104407&xt=123956%2C123954%2C120840%2C119037%2C119038&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&displaypage=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&ppage=privacy_banner&bannertype=cookiebanner&flag=ccpa&bannerversion=v3a&bannersource=ConsentNodeServ&eligibility_reason=false&is_native=false&cookie_disabled=false&e=ac IP192.229.221.25:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4682377ddfbe4e7dabfddb2e543e842 328e472721a93345801ed5533240eac2d1f8498c 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?v=1.7.6&t=1675874051614&g=0&pgrp=main%3Aprivacy%3Apolicy&page=main%3Aprivacy%3Apolicy%3Accpa&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=US&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105410%2C105409%2C104759%2C104406%2C104407&xt=123956%2C123954%2C120840%2C119037%2C119038&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&displaypage=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&ppage=privacy_banner&bannertype=cookiebanner&flag=ccpa&bannerversion=v3a&bannersource=ConsentNodeServ&eligibility_reason=false&is_native=false&cookie_disabled=false&e=ac HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Connection: keep-alive
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjE3MSIsImwiOiIwIiwibSI6IjAifQ; tsrce=authchallengenodeweb; ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes; l7_az=dcg01.phx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 08 Feb 2023 16:33:16 GMT
expires: Wed, 08 Feb 2023 16:33:16 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 4baaa47b595ad
pragma: no-cache
server: ECAcc (frc/4C9D)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Expires=Sun, 08 Feb 2026 16:33:16 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Expires=Sun, 08 Feb 2026 16:33:16 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000004baaa47b595ad-f679942d515d1759-01
content-length: 42
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash207457de2bafb018790bc7c8ee1efce8 b2af4a4c0068f81ced26608bc457db8167fc2545 049b10884a649d5424b94322722caf3ce221dc137a4789b1056e664346d10d9e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 16:33:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.recaptcha.net/recaptcha/enterprise.js?render=6LdCCOUUAAAAAHTE-Snr6hi4HJGtJk_d1_ce-gWB&hl=en | 142.250.74.3 | 200 OK | 616 B |
URL HTTP/2www.recaptcha.net/recaptcha/enterprise.js?render=6LdCCOUUAAAAAHTE-Snr6hi4HJGtJk_d1_ce-gWB&hl=en IP142.250.74.3:0
File typeASCII text, with very long lines (977), with no line terminators Hashd086774f6f116175b3a54a9554c50cc5 7ab21ae851efff16b07b19f89fc1a286ea77a928 160c83e042a43d077eb70ca421e5b50a186660f1b75f91a9bd50af4d6ba6b17e
GET /recaptcha/enterprise.js?render=6LdCCOUUAAAAAHTE-Snr6hi4HJGtJk_d1_ce-gWB&hl=en HTTP/1.1
Host: www.recaptcha.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Wed, 08 Feb 2023 16:33:16 GMT
date: Wed, 08 Feb 2023 16:33:16 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 616
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/CoreModule.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm | 192.229.221.25 | 200 OK | 30 kB |
URL HTTP/2www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/CoreModule.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm IP192.229.221.25:0
File typeASCII text, with very long lines (64772) Hash3d2fc04b2e2fdf6d5dbf43ea98f54c27 4c2ce9814608948d3c36879ee3010c6f560f8953 f260de29d90737b8d4739b12e1ec76a98470cf1ff399fcb218242d2031060949
GET /pa/3pjs/qualtrics/1.64.1/CoreModule.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61dccd14-190b6"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 11 Jan 2022 00:19:32 GMT
paypal-debug-id: 3efed48232b9e
server: ECAcc (ska/F758)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000003efed48232b9e-fefae6c1577aa0e7-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 30223
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash4d1dca32e3545ac56e41b5b595ad3dd1 72a19cb29c537f3fe7167ef285eb1f5211e3c08a f875e38df46822a20c6d5aab4eea973c86e7a253d724e73c94dd485e14b474fc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 16:33:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash3f3962ef574ee0069c41f7cbcabd1ef3 c4b6aefa8563432c5e5901488c38ae7da3c83fd7 9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 16:33:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/4.bee7caf079144a7b9980.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm | 192.229.221.25 | 200 OK | 1.2 kB |
URL HTTP/2www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/4.bee7caf079144a7b9980.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm IP192.229.221.25:0
File typeASCII text, with very long lines (1680) Hash1803fdb9c7b273d19d13adcf92aa285d b88182ce8887df0ea48c51ac79bfe520a37cb44d 343b313bd3a48de565d90c4d1191eb9f5027586f7843cb9a254ebea7ac295b19
GET /pa/3pjs/qualtrics/1.64.1/4.bee7caf079144a7b9980.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61dccd14-9ed"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 11 Jan 2022 00:19:32 GMT
paypal-debug-id: cb004a55cd794
server: ECAcc (ska/F75D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000cb004a55cd794-54b14e6f9a9065c3-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1231
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/1.1303dc17a61da0f506d3.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm | 192.229.221.25 | 200 OK | 6.6 kB |
URL HTTP/2www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/1.1303dc17a61da0f506d3.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm IP192.229.221.25:0
File typeASCII text, with very long lines (28410) Hash2786ba02aac70f0c2b4a5befa64249bf b78badb9d384d60747a9df7e9f2d890b25092947 26b520e3599233a0249ca5ba21e06281310fe0c5be088a556c379a7f2c5c924d
GET /pa/3pjs/qualtrics/1.64.1/1.1303dc17a61da0f506d3.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61dccd14-7257"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 11 Jan 2022 00:19:32 GMT
paypal-debug-id: b21ce9b0862ea
server: ECAcc (ska/F6C8)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000b21ce9b0862ea-23707dd02aea36a3-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 6602
X-Firefox-Spdy: h2
|
|
| www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/17.0e47ac923c1fa85e46cf.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm | 192.229.221.25 | 200 OK | 7.8 kB |
URL HTTP/2www.paypalobjects.com/pa/3pjs/qualtrics/1.64.1/17.0e47ac923c1fa85e46cf.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm IP192.229.221.25:0
File typeASCII text, with very long lines (17910) Hashde0da1f6f46f2414861b5291dadfcabe 26d55694bf7c0427fc5720e9e13bf56a237c5aae d42f8c0f84ecc47d75c66194d27d3f7f1bcedd172266c43c0e3fca535c38e180
GET /pa/3pjs/qualtrics/1.64.1/17.0e47ac923c1fa85e46cf.chunk.js?Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs&Q_BRANDID=paypalxm HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Wed, 08 Feb 2023 16:33:16 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61dccd14-4a99"
expires: Wed, 08 Feb 2023 17:33:16 GMT
last-modified: Tue, 11 Jan 2022 00:19:32 GMT
paypal-debug-id: 3f538f1e1e04c
server: ECAcc (ska/F73C)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000003f538f1e1e04c-475b644b02424cd2-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 7762
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js | 142.250.74.35 | 200 OK | 164 kB |
URL HTTP/2www.gstatic.com/recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js IP142.250.74.35:0
File typeASCII text, with very long lines (633) Size164 kB (163841 bytes) Hashfe98364486b3206867b17008f995646f 35a5e9aa210970f7abd718d99e629c6982a3cc02 1fd703cb16e3f6f3f7192109d19c69d6e5ac1cfa0feb5b105a86564b7970d28a
GET /recaptcha/releases/gEr-ODersURoIfof1hiDm7R5/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163841
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 Feb 2023 08:53:11 GMT
expires: Wed, 07 Feb 2024 08:53:11 GMT
cache-control: public, max-age=31536000
age: 114005
last-modified: Tue, 31 Jan 2023 02:51:47 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.131 | 200 OK | 471 B |
IP142.250.74.131:0
Hash3f3962ef574ee0069c41f7cbcabd1ef3 c4b6aefa8563432c5e5901488c38ae7da3c83fd7 9518b917cc6f0b1724d687d6aac4d8c1851d46949eeb4926acdb26a84728fdc0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 08 Feb 2023 16:33:16 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| www.paypalobjects.com/marketing/web/us/en/security-center/L3-Fakes/how-to-spot-phishing.png | 192.229.221.25 | 200 OK | 32 kB |
URL HTTP/2www.paypalobjects.com/marketing/web/us/en/security-center/L3-Fakes/how-to-spot-phishing.png IP192.229.221.25:0
File typePNG image data, 1692 x 1200, 8-bit/color RGBA, non-interlaced\012- data Hash8aeb51535138641ad6aea1b7f751ae37 e8fa99c0f7757cd1bc8ed3b1a728c971641f2392 9418567eb3e2c0988ed9adc91db2d16eebf5a44b307af1396b672aa1c9b73c72
GET /marketing/web/us/en/security-center/L3-Fakes/how-to-spot-phishing.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Wed, 08 Feb 2023 16:33:17 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "61e2f1be-7c72"
expires: Wed, 08 Feb 2023 17:33:17 GMT
last-modified: Sat, 15 Jan 2022 16:09:34 GMT
paypal-debug-id: 7f90867944ca9
server: ECAcc (ska/F68D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000007f90867944ca9-4b2c433f9a38d2f4-01
x-cache: HIT
x-content-type-options: nosniff
content-length: 31858
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Wed, 08 Feb 2023 17:28:27 GMT
Date: Wed, 08 Feb 2023 16:33:17 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Wed, 08 Feb 2023 17:28:27 GMT
Date: Wed, 08 Feb 2023 16:33:17 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Wed, 08 Feb 2023 17:28:27 GMT
Date: Wed, 08 Feb 2023 16:33:17 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Wed, 08 Feb 2023 17:28:27 GMT
Date: Wed, 08 Feb 2023 16:33:17 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 95.101.11.115 | 200 OK | 503 B |
IP95.101.11.115:0 ASN#20940 Akamai International B.V.
Hash68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19"
Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3310
Expires: Wed, 08 Feb 2023 17:28:27 GMT
Date: Wed, 08 Feb 2023 16:33:17 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg | 34.120.237.76 | 200 OK | 4.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash33b061f03be149fea0df63b42a8ec226 e5e491c6ef8b6234450a34ee5df28b9a58a8ad43 a5970bbb40be173878cd2e920bd1a6ed27775fbdc222bb66ccbc5969984882f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8a8e532-be72-47cc-8389-e8f28ffc3c2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4269
x-amzn-requestid: df152b3a-fa15-4dac-96f9-41b9ea8e5136
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_OkQH5PoAMFl1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c481-63636a42419209fb0c17eceb;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:37:05 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 0hu3nATq26ngjS5942rJgt7AcT4wjG0mFfNrtsajSN2PpdAOYhTjFg==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:43:42 GMT
age: 67775
etag: "e5e491c6ef8b6234450a34ee5df28b9a58a8ad43"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg | 34.120.237.76 | 200 OK | 7.3 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash7543be9bef0afb8f61344286b7136dd7 e1537aa408cde39d2a314cc2a14f7f7a04a84eb1 162f0898f88d84c8d06542e48e8ff6a903e638f2a837f32681ae1f5e28ae40d7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F92b2ed55-154e-4ed7-a7ab-1418742cdf6e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7303
x-amzn-requestid: 081c79e9-2b23-47ad-8b7d-7197c5515c0c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f58kdHMvIAMFdzg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0a7b5-66fca524070e374310920915;Sampled=0
x-amzn-remapped-date: Mon, 06 Feb 2023 07:09:41 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: SU23ljJF5eIu0L9YNQOtZlwuMHs9Ri91iu2-YS9v2pNBA-pkJYU2SA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 08 Feb 2023 05:01:33 GMT
age: 41504
etag: "e1537aa408cde39d2a314cc2a14f7f7a04a84eb1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg | 34.120.237.76 | 200 OK | 8.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash02fde25be5ded120af759d19d8304f73 8d2a4d9ab5947113ce0737d4d4bed3e30a971026 7cdf26668cca22f28eee047d3fcf30cea8d97b1d8804fe2132728f26cd11558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F06b5f2a3-c53c-4690-b548-2c3d0f556f73.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8629
x-amzn-requestid: cc20d28e-3937-4826-97ef-100fb5dd2645
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFn3oAMF61A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-6e764236604212fa26dab38a;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0sEMzqETD-gbgXOXb_CJmLjYQmNGMN4-_ggiB7ifbifltHJYsTRRsQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:52:22 GMT
age: 67255
etag: "8d2a4d9ab5947113ce0737d4d4bed3e30a971026"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashbe9f475292d4b5b0502d4381ccdf455b ecb943b48c822b086ea699d802f8f1bb5ee26651 ed22a5102709dc7a067107a6c0cde26931f7781065de9cee49e22de6b9086e31
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce53bc9b-2505-4efd-9151-fa75ed70138a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8703
x-amzn-requestid: 6456aa7d-11f7-4066-a833-9ac5312c0c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7JGLTIAMFqdQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c513-0679a75676cdc19251c81bdd;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oDXgginig1GJvV9QIPvDGVumNDnOrBbrGRZSqyJ_NDRUX4XP5jxHxQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 22:03:47 GMT
age: 66570
etag: "ecb943b48c822b086ea699d802f8f1bb5ee26651"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashfe800d6af728cd622a6192ad5e7dda6a 3a301dd894fc428c7d1863c9d5eaf2652f5c2083 f4923c211ef24e933bbe73bd8d2033d6b6da4a9fa0c9d4699a1041a7bd8bf5a2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5416f10c-2a0c-46e5-a76b-853a2be4c374.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12216
x-amzn-requestid: cc61a63b-35fe-4bfa-ad20-1db3f4165446
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f_O7LFrCIAMFoYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e2c514-2b5e27c62218510b74ea0989;Sampled=0
x-amzn-remapped-date: Tue, 07 Feb 2023 21:39:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Cf13Lp2SFHQ4SSF6_KpC4zx339tZRkMmnmF-OKM_2hbWbIoR3OLJ_g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:50:49 GMT
age: 67348
etag: "3a301dd894fc428c7d1863c9d5eaf2652f5c2083"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashaa6c416b3a87ded887c9dcf7c51e5dd0 45f4ef9e68591c00669043abe96959bead8f17ae 9e10394b387916e40c44d4e02fbc1ea72214d870df189ce16d24015de00682bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe56753b9-ced9-4038-88f6-9ea3a7bc9f04.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11205
x-amzn-requestid: abdf9c40-a2b7-49ae-bea1-ff5abfcea781
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fvszZFOZoAMFkNg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dc8e7b-6e508da05ff6f33e691de130;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 04:33:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hLrbI5Acy2RBlg7VqGE2b83zuqgt-bx0kD0nlH8uYaJ8tii2FqMLfw==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 07 Feb 2023 21:55:58 GMT
age: 67039
etag: "45f4ef9e68591c00669043abe96959bead8f17ae"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| t.paypal.com/ts?v=1.7.6&t=1675874052428&g=0&pgrp=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&page=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages%3A%3A%3A&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105841%2C104449&xt=132158%2C119299&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&event_name=ppcom_page_viewed&e=im&imsrc=setup&view=%7B%22t10%22%3A4%2C%22t11%22%3A2294%2C%22tcp%22%3A1478%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A373%7D&pt=How%20to%20Detect%20Phishing%20Scams%20%7C%20PayPal%20US&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=939&ce=1&t1=4&t1c=0&t1d=0&t1s=0&t2=440&t3=2&t4d=0&t4=0&t4e=2&tt=1920&rdc=1&protocol=h2&cenc=gzip&cdn=fastly&res=%7B%7D&rtt=208 | 192.229.221.25 | 200 OK | 42 B |
URL HTTP/2t.paypal.com/ts?v=1.7.6&t=1675874052428&g=0&pgrp=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&page=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages%3A%3A%3A&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105841%2C104449&xt=132158%2C119299&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&event_name=ppcom_page_viewed&e=im&imsrc=setup&view=%7B%22t10%22%3A4%2C%22t11%22%3A2294%2C%22tcp%22%3A1478%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A373%7D&pt=How%20to%20Detect%20Phishing%20Scams%20%7C%20PayPal%20US&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=939&ce=1&t1=4&t1c=0&t1d=0&t1s=0&t2=440&t3=2&t4d=0&t4=0&t4e=2&tt=1920&rdc=1&protocol=h2&cenc=gzip&cdn=fastly&res=%7B%7D&rtt=208 IP192.229.221.25:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4682377ddfbe4e7dabfddb2e543e842 328e472721a93345801ed5533240eac2d1f8498c 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?v=1.7.6&t=1675874052428&g=0&pgrp=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&page=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages%3A%3A%3A&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105841%2C104449&xt=132158%2C119299&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&event_name=ppcom_page_viewed&e=im&imsrc=setup&view=%7B%22t10%22%3A4%2C%22t11%22%3A2294%2C%22tcp%22%3A1478%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A373%7D&pt=How%20to%20Detect%20Phishing%20Scams%20%7C%20PayPal%20US&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=939&ce=1&t1=4&t1c=0&t1d=0&t1s=0&t2=440&t3=2&t4d=0&t4=0&t4e=2&tt=1920&rdc=1&protocol=h2&cenc=gzip&cdn=fastly&res=%7B%7D&rtt=208 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Connection: keep-alive
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjQ3NyIsImwiOiIwIiwibSI6IjAifQ; tsrce=smartchatnodeweb; ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes; l7_az=dcg01.phx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 08 Feb 2023 16:33:17 GMT
expires: Wed, 08 Feb 2023 16:33:17 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 5f82a1bf21e99
pragma: no-cache
server: ECAcc (frc/4CC4)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1770568397%26vteXpYrS%3D1675875797%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Expires=Sun, 08 Feb 2026 16:33:17 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Expires=Sun, 08 Feb 2026 16:33:17 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000005f82a1bf21e99-31393114626154e1-01
content-length: 42
X-Firefox-Spdy: h2
|
|
| www.paypal.com/auth/verifygrcenterprise | 151.101.65.21 | 200 OK | 0 B |
URL HTTP/2www.paypal.com/auth/verifygrcenterprise IP151.101.65.21:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /auth/verifygrcenterprise HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
x-requested-with: XMLHttpRequest
Content-Length: 1545
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjQ3NyIsImwiOiIwIiwibSI6IjAifQ; tsrce=smartchatnodeweb; nsid=s%3AnbLAbRlr-uQDcShW6B9VykTlw_6XFWI1.4X1X3sm1c6He1umS3t%2FeTjWHX1P55Od6qOFOxU5Ghfo; ts=vreXpYrS%3D1770568397%26vteXpYrS%3D1675875797%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes; l7_az=dcg01.phx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn; script-src 'nonce-2cxyAKQdy5Nssn9FgReKh5ghVejrWuim1o9RWq6agWT8RrWW' 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://www.recaptcha.net https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com 'unsafe-inline' 'unsafe-eval'; img-src https://*.paypalobjects.com https://objects.paypal.cn https://*.paypal.com https://*.paypal.cn https://ak1s.abmr.net https://ak1.abmr.net https://ak1s.mathtag.com https://akamai.mathtag.com; object-src 'none'; media-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn; font-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn; frame-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://www.google.com https://www.recaptcha.net https://paypal-api.arkoselabs.com https://paypal-api.arkose.com.cn https://hcaptcha.com https://*.hcaptcha.com https://*.qualtrics.com; style-src 'self' 'unsafe-inline' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://hcaptcha.com https://*.hcaptcha.com; form-action 'self' https://*.paypal.com https://*.paypal.cn https://*.zettle.com https://*.xoom.com; base-uri 'self' https://*.paypal.com https://*.paypal.cn; connect-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://hcaptcha.com https://*.hcaptcha.com https://*.qualtrics.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
paypal-debug-id: f652336a9d3d5
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Thu, 09 Feb 2023 01:19:13 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Thu, 08 Feb 2024 16:33:17 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTg3Mzk5Nzg1MyIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=authchallengenodeweb; Domain=.paypal.com; Path=/; Expires=Sat, 11 Feb 2023 16:33:17 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Wed, 08 Feb 2023 17:03:17 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1770568397%26vteXpYrS%3D1675875797%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:17 GMT; HttpOnly; Secure
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:17 GMT; Secure
traceparent: 00-0000000000000000000f652336a9d3d5-698b6ab17b8d70ff-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 08 Feb 2023 16:33:17 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220058-HHN, cache-bma1672-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675873998.643378,VS0,VE302
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
content-length: 0
X-Firefox-Spdy: h2
|
|
| t.paypal.com/ts?v=1.7.6&t=1675874053430&g=0&pgrp=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&page=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages%3A%3A%3A&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105841%2C104449&xt=132158%2C119299&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&event_name=t_paypal_cpl&t1=2&t1c=0&t1d=0&t1s=0&t2=184&t3=0&tt=186&protocol=h2&cdn=edgecast&tmpl=%2F%2Ft.paypal.&view=%7B%22t10%22%3A2%2C%22t11%22%3A186%2C%22nt%22%3A%22res%22%7D&e=pf | 192.229.221.25 | 200 OK | 42 B |
URL HTTP/2t.paypal.com/ts?v=1.7.6&t=1675874053430&g=0&pgrp=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&page=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages%3A%3A%3A&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105841%2C104449&xt=132158%2C119299&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&event_name=t_paypal_cpl&t1=2&t1c=0&t1d=0&t1s=0&t2=184&t3=0&tt=186&protocol=h2&cdn=edgecast&tmpl=%2F%2Ft.paypal.&view=%7B%22t10%22%3A2%2C%22t11%22%3A186%2C%22nt%22%3A%22res%22%7D&e=pf IP192.229.221.25:0
File typeGIF image data, version 89a, 1 x 1\012- data Hashb4682377ddfbe4e7dabfddb2e543e842 328e472721a93345801ed5533240eac2d1f8498c 6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?v=1.7.6&t=1675874053430&g=0&pgrp=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages&page=main%3Amktg%3Aboth%3Asecurity%3Asecurity-learn-about-fake-messages%3A%3A%3A&pgst=Unknown&calc=f5436747550de&nsid=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=us&csci=4a4a9be6b5c64e608e4ce498436b715a&comp=mppnodeweb&tsrce=mppnodeweb&cu=0&ef_policy=ccpa&xe=105841%2C104449&xt=132158%2C119299&pgld=Unknown&bzsr=main&bchn=mktg&pgsf=both&lgin=out&page_type=contentful&shir=main_mktg_both_security&pros=3&lgcook=0&utm_source=unp&utm_medium=email&utm_campaign=RT000238&event_props=cu%2Clgin%2Cpage%2Cxe%2Cxt&user_props=cu%2Cxe%2Cxt%2Cutm_source%2Cutm_medium%2Cutm_campaign&page_segment=ppcom&event_name=t_paypal_cpl&t1=2&t1c=0&t1d=0&t1s=0&t2=184&t3=0&tt=186&protocol=h2&cdn=edgecast&tmpl=%2F%2Ft.paypal.&view=%7B%22t10%22%3A2%2C%22t11%22%3A186%2C%22nt%22%3A%22res%22%7D&e=pf HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Connection: keep-alive
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5Nzg1MyIsImwiOiIwIiwibSI6IjAifQ; tsrce=authchallengenodeweb; ts=vreXpYrS%3D1770568397%26vteXpYrS%3D1675875797%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes; l7_az=dcg01.phx
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
date: Wed, 08 Feb 2023 16:33:18 GMT
expires: Wed, 08 Feb 2023 16:33:18 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: e9916b9a0ddb5
pragma: no-cache
server: ECAcc (frc/4CAB)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast"
set-cookie: ts=vreXpYrS%3D1770568398%26vteXpYrS%3D1675875798%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Expires=Sun, 08 Feb 2026 16:33:18 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Expires=Sun, 08 Feb 2026 16:33:18 GMT; Domain=.paypal.com; Path=/; Secure
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-0000000000000000000e9916b9a0ddb5-9d5de5a3ba57fd07-01
content-length: 42
X-Firefox-Spdy: h2
|
|
| www.paypal.com/auth/createchallenge/1f9341589875d0f5/recaptchav3.js?_sessionID=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1 | 151.101.65.21 | 200 OK | 0 B |
URL HTTP/2www.paypal.com/auth/createchallenge/1f9341589875d0f5/recaptchav3.js?_sessionID=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1 IP151.101.65.21:0
GET /auth/createchallenge/1f9341589875d0f5/recaptchav3.js?_sessionID=nbLAbRlr-uQDcShW6B9VykTlw_6XFWI1 HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NTcyNSIsImwiOiIwIiwibSI6IjAifQ; tsrce=mppnodeweb; nsid=s%3AnbLAbRlr-uQDcShW6B9VykTlw_6XFWI1.4X1X3sm1c6He1umS3t%2FeTjWHX1P55Od6qOFOxU5Ghfo; ts=vreXpYrS%3D1770568395%26vteXpYrS%3D1675875795%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn; script-src 'nonce-hGF5FkEWrNtMkFru3CB9jZaurAJYRhypQ3ZImf1IrfCsIXF+' 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://www.recaptcha.net https://www.gstatic.com https://hcaptcha.com https://*.hcaptcha.com 'unsafe-inline' 'unsafe-eval'; img-src https://*.paypalobjects.com https://objects.paypal.cn https://*.paypal.com https://*.paypal.cn https://ak1s.abmr.net https://ak1.abmr.net https://ak1s.mathtag.com https://akamai.mathtag.com; object-src 'none'; media-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn; font-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn; frame-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://www.google.com https://www.recaptcha.net https://paypal-api.arkoselabs.com https://paypal-api.arkose.com.cn https://hcaptcha.com https://*.hcaptcha.com https://*.qualtrics.com; style-src 'self' 'unsafe-inline' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://hcaptcha.com https://*.hcaptcha.com; form-action 'self' https://*.paypal.com https://*.paypal.cn https://*.zettle.com https://*.xoom.com; base-uri 'self' https://*.paypal.com https://*.paypal.cn; connect-src 'self' https://*.paypal.com https://*.paypal.cn https://*.paypalobjects.com https://objects.paypal.cn https://hcaptcha.com https://*.hcaptcha.com https://*.qualtrics.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: text/javascript; charset=utf-8
etag: W/W/"27b9-k3aNSD+QOi8hRgcDgXj1loS5gYo"
paypal-debug-id: f664164ff12e3
set-cookie: LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Thu, 09 Feb 2023 01:19:12 GMT; HttpOnly; Secure
enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Thu, 08 Feb 2024 16:33:16 GMT; Secure
x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjE3MSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
tsrce=authchallengenodeweb; Domain=.paypal.com; Path=/; Expires=Sat, 11 Feb 2023 16:33:16 GMT; HttpOnly; Secure; SameSite=None
l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Wed, 08 Feb 2023 17:03:16 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:16 GMT; HttpOnly; Secure
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:16 GMT; Secure
traceparent: 00-0000000000000000000f664164ff12e3-f4ad6381fd607ea3-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: gzip
date: Wed, 08 Feb 2023 16:33:16 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220074-HHN, cache-bma1672-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675873996.971112,VS0,VE293
vary: Accept-Encoding
server-timing: content-encoding;desc="gzip",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
|
|
| www.paypal.com/auth/recaptcha/grcenterprise_v3.html | 151.101.65.21 | 200 OK | 0 B |
URL HTTP/2www.paypal.com/auth/recaptcha/grcenterprise_v3.html IP151.101.65.21:0
GET /auth/recaptcha/grcenterprise_v3.html HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjE3MSIsImwiOiIwIiwibSI6IjAifQ; tsrce=authchallengenodeweb; nsid=s%3AnbLAbRlr-uQDcShW6B9VykTlw_6XFWI1.4X1X3sm1c6He1umS3t%2FeTjWHX1P55Od6qOFOxU5Ghfo; ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes; l7_az=dcg01.phx
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: none
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: text/html; charset=UTF-8
etag: W/W/"fb3-1862d3528c0"
last-modified: Tue, 07 Feb 2023 18:48:24 GMT
paypal-debug-id: f664164eb9a42
set-cookie: l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Wed, 08 Feb 2023 17:03:16 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:16 GMT; HttpOnly; Secure
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:16 GMT; Secure
traceparent: 00-0000000000000000000f664164eb9a42-8c05842e92503be9-01
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Wed, 08 Feb 2023 16:33:16 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220088-HHN, cache-bma1672-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675873996.326438,VS0,VE207
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
|
|
| www.paypal.com/smartchat/open/eligibility?intent=SALESCHAT&page=/us/security/learn-about-fake-messages | 151.101.65.21 | 200 OK | 0 B |
URL HTTP/2www.paypal.com/smartchat/open/eligibility?intent=SALESCHAT&page=/us/security/learn-about-fake-messages IP151.101.65.21:0
GET /smartchat/open/eligibility?intent=SALESCHAT&page=/us/security/learn-about-fake-messages HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: https://www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjE3MSIsImwiOiIwIiwibSI6IjAifQ; tsrce=authchallengenodeweb; nsid=s%3AnbLAbRlr-uQDcShW6B9VykTlw_6XFWI1.4X1X3sm1c6He1umS3t%2FeTjWHX1P55Od6qOFOxU5Ghfo; ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; cookie_check=yes; l7_az=dcg01.phx
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypal.cn; script-src 'nonce-99zOKfQy7dkV5lVQvKFRG0wM/o5rBqz/t0SF0BXI36Saf0pX' 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypal.cn 'unsafe-inline' ; style-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypal.cn 'unsafe-inline' ; img-src 'self' https: data:; object-src 'none'; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypal.cn 'unsafe-inline' https://*.kampyle.com https://*.qualtrics.com; font-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypal.cn data:; base-uri 'self' https://*.paypal.com; form-action 'self' https://*.paypal.com; frame-ancestors 'self' https://help.venmo.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypal.cn https://*.qualtrics.com;
content-type: application/json; charset=utf-8
etag: W/W/"56d-WAVvYNqNWeIIR33HKIGXlpQkwu0"
paypal-debug-id: f66416413995d
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Thu, 08 Feb 2024 16:33:16 GMT; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Thu, 09 Feb 2023 01:19:12 GMT; HttpOnly; Secure
tsrce=smartchatnodeweb; Max-Age=259199; Domain=.paypal.com; Path=/; Expires=Sat, 11 Feb 2023 16:33:15 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NjQ3NyIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
l7_az=dcg01.phx; Path=/; Domain=paypal.com; Expires=Wed, 08 Feb 2023 17:03:16 GMT; HttpOnly; Secure
ts=vreXpYrS%3D1770568396%26vteXpYrS%3D1675875796%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:16 GMT; HttpOnly; Secure
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:16 GMT; Secure
traceparent: 00-0000000000000000000f66416413995d-d0f2c1e6a699724f-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Wed, 08 Feb 2023 16:33:16 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220057-HHN, cache-bma1672-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675873996.306299,VS0,VE264
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
|
|
| zn1ynnliufrct75cb-paypalxm.siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_1yNnlIufRcT75CB&Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs |  104.17.209.240 | 200 OK | 0 B |
URL HTTP/2zn1ynnliufrct75cb-paypalxm.siteintercept.qualtrics.com/WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_1yNnlIufRcT75CB&Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs IP104.17.209.240:0
POST /WRSiteInterceptEngine/Targeting.php?Q_ZoneID=ZN_1yNnlIufRcT75CB&Q_CLIENTVERSION=1.64.1&Q_CLIENTTYPE=hostedjs HTTP/1.1
Host: zn1ynnliufrct75cb-paypalxm.siteintercept.qualtrics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 152
Origin: https://www.paypal.com
Connection: keep-alive
Referer: https://www.paypal.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Wed, 08 Feb 2023 16:33:16 GMT
content-type: application/json
cf-ray: 7965c41ebdfab50f-OSL
access-control-allow-origin: https://www.paypal.com
cache-control: no-store, no-cache, must-revalidate, max-age=0
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
permissions-policy: camera=(), geolocation=(), microphone=()
referrer-policy: strict-origin-when-cross-origin
timing-allow-origin: *
trace-id: d95a2768b7fdf301
x-content-type-options: nosniff
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238 | 151.101.65.21 | 200 OK | 0 B |
URL HTTP/2www.paypal.com/us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238 IP151.101.65.21:0
GET /us/security/learn-about-fake-messages?utm_source=unp&utm_medium=email&utm_campaign=RT000238 HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: LANG=en_US%3BUS; enforce_policy=ccpa; x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NTI2MCIsImwiOiIwIiwibSI6IjAifQ; tsrce=mppnodeweb; nsid=s%3AnbLAbRlr-uQDcShW6B9VykTlw_6XFWI1.4X1X3sm1c6He1umS3t%2FeTjWHX1P55Od6qOFOxU5Ghfo; ts=vreXpYrS%3D1770568395%26vteXpYrS%3D1675875795%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-encoding: gzip
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; frame-src 'self' https://*.brighttalk.com https://*.paypal.com https://*.paypalobjects.com https://www.youtube-nocookie.com https://www.xoom.com https://*.qualtrics.com https://*.paypal-mktg.com https://6386697.fls.doubleclick.net; script-src 'nonce-cN8V0Uv+ZZx4OWKu+LkhmAjAqR+0zLrr93V2snDobfzTDqoE' 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com https://pypd.paypal-mktg.com 'unsafe-inline' 'unsafe-eval'; connect-src 'self' https://nominatim.openstreetmap.org https://*.paypal.com https://*.paypalobjects.com https://*.google-analytics.com https://*.salesforce.com https://*.force.com https://nexus.ensighten.com https://api.paypal-retaillocator.com https://*.brighttalk.com https://*.qualtrics.com https://paypal.us-4.evergage.com; style-src 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com https://assets-cdn.s-xoom.com data:; img-src 'self' https: data:; form-action 'self' https://*.paypal.com https://*.salesforce.com https://secure.opinionlab.com https://*.paypal-mktg.com https://*.paypal-corp.com; base-uri 'self' https://*.paypal.com; object-src 'none'; frame-ancestors 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: text/html; charset=utf-8
etag: W/"26933-CaK1ruSY8Nw6/B5MC3QC+0dKLKI"
paypal-debug-id: f5436747550de
set-cookie: enforce_policy=ccpa; Max-Age=31536000; Domain=.paypal.com; Path=/; Expires=Thu, 08 Feb 2024 16:33:15 GMT; Secure
cookie_check=yes; Max-Age=315619199; Domain=.paypal.com; Path=/; Expires=Tue, 08 Feb 2033 16:33:14 GMT; HttpOnly; Secure
LANG=en_US%3BUS; Max-Age=31556; Domain=.paypal.com; Path=/; Expires=Thu, 09 Feb 2023 01:19:11 GMT; HttpOnly; Secure
x-pp-s=eyJ0IjoiMTY3NTg3Mzk5NTcyNSIsImwiOiIwIiwibSI6IjAifQ; Domain=.paypal.com; Path=/; HttpOnly; Secure
ts=vreXpYrS%3D1770568395%26vteXpYrS%3D1675875795%26vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4%26vtyp%3Dnew; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:15 GMT; HttpOnly; Secure
ts_c=vr%3D31dfc9971860a7a0a3d94533fd802fc5%26vt%3D31dfc9971860a7a0a3d94533fd802fc4; Path=/; Domain=paypal.com; Expires=Sat, 07 Feb 2026 16:33:15 GMT; Secure
traceparent: 00-0000000000000000000f5436747550de-abf7fe7004fc8195-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Wed, 08 Feb 2023 16:33:15 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn-etou8220063-HHN, cache-bma1672-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1675873995.389289,VS0,VE431
vary: Accept-Encoding
server-timing: content-encoding;desc="gzip",x-cdn;desc="fastly"
X-Firefox-Spdy: h2
|
|