firefox.settings.services.mozilla.com/v1/
18.165.201.83200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 17:03:12 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 5059e7bd12388ef6673ed156d17eb756.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: 8LU4veEGC5xlOifvqKUYA3J6BCVtKlMtUuWwejfLPYdtwyDKFXTSDw==
Age: 2780
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13624
Expires: Sun, 02 Oct 2022 21:36:37 GMT
Date: Sun, 02 Oct 2022 17:49:33 GMT
Connection: keep-alive
bel4.com/x5z9r1e7/Home/Package/
166.88.62.202302 Moved Temporarily 0 B URL HTTP/1.1 bel4.com/x5z9r1e7/Home/Package/
IP 166.88.62.202:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /x5z9r1e7/Home/Package/ HTTP/1.1
Host: bel4.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Moved Temporarily
Date: Sun, 02 Oct 2022 17:49:32 GMT
Connection: Keep-Alive
Content-Length: 0
X-Frame-Options: SAMEORIGIN
Cache-Control: private, no-cache, no-store, max-age=0
Expires: Mon, 01 Jan 1990 0:00:00 GMT
Location: https://www.dynadot.com/forsale/bel4.com?drefid=2071
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.95200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.95:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9fedc4d43d76bf30a3fb8278d99d39aa.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: DjNz28fxOiZ6ma9Iua6_JZ2J-uTETj_SY_NmDtIiRpagKgdrJ7gEEA==
age: 51377
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 671d8ad00e07bf41e7be5e06fdb22380
eb2dd8f9b1ec4beaa75c1a6b7c03e248b8dfbfd8
000e8b282d3aaa96d3df0f9d6fc80cd798d86dfbe9edb682d85cec2c2cbe5b1c
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:33 GMT
Server: ECS (amb/6B95)
Content-Length: 278
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.dynadot.com/favicon.ico
104.18.29.19200 OK 721 B URL HTTP/2 www.dynadot.com/favicon.ico
IP 104.18.29.19:0
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Hash ab307efbdcdd2e4f671636784ab6f3d2
7fdc7a15cb3ed35515565d44128e7d5b9f30cfeb
4a9b9159917a365827d2ef79e639d70d1d27ff8c6cb489b96f6645c193e06825
GET /favicon.ico HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: image/x-icon
content-length: 721
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209600
expires: Fri, 14 Oct 2022 6:05:02 GMT
etag: 1664517869449
cf-cache-status: HIT
age: 211540
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f467b3a88b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/cdn-cgi/images/trace/jsch/js/transparent.gif?ray=753f467a99a6b4f9
104.18.29.19200 OK 42 B URL HTTP/2 www.dynadot.com/cdn-cgi/images/trace/jsch/js/transparent.gif?ray=753f467a99a6b4f9
IP 104.18.29.19:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /cdn-cgi/images/trace/jsch/js/transparent.gif?ray=753f467a99a6b4f9 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: image/gif
content-length: 42
last-modified: Mon, 26 Sep 2022 11:11:32 GMT
etag: "633188e4-2a"
server: cloudflare
cf-ray: 753f467bdb5ab4f9-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Sun, 02 Oct 2022 19:49:33 GMT
cache-control: max-age=7200, public
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.83200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.83:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Cache-Control, Alert, Last-Modified, Backoff, Retry-After, Expires, Content-Length, Pragma, ETag
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Sun, 02 Oct 2022 17:32:53 GMT
Expires: Sun, 02 Oct 2022 17:43:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 4c52c2a46d6ce20208b2160aa3b35a5a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: u8bDskbrd2lARnj2bOxWKhEDyD9EjNTNwmDGHiwpr1Xj1g9r2YGR6Q==
Age: 1000
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3025
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:33 GMT
Last-Modified: Sun, 02 Oct 2022 16:59:09 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.39.175.179101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.175.179:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: hdT5+WnEZVoT7aFbdvStXg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VMbLWj5tQUdtQjote9NIhSA0NTc=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2692
Expires: Sun, 02 Oct 2022 18:34:27 GMT
Date: Sun, 02 Oct 2022 17:49:35 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 8d59ee7b197f347e30ac793231158927
3316937f84c08ad1857d2f663dca353e250815f0
c17a343ceb786a421f8c3abfffae350e12c92271a69fc88eb8e8bab568877d6b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C17A343CEB786A421F8C3ABFFFAE350E12C92271A69FC88EB8E8BAB568877D6B"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2692
Expires: Sun, 02 Oct 2022 18:34:27 GMT
Date: Sun, 02 Oct 2022 17:49:35 GMT
Connection: keep-alive
www.dynadot.com/cdn-cgi/challenge-platform/h/b/img/753f467a99a6b4f9/1664732973611/I_PM2u7cg4P5VsK
104.18.29.19200 OK 11 kB URL HTTP/2 www.dynadot.com/cdn-cgi/challenge-platform/h/b/img/753f467a99a6b4f9/1664732973611/I_PM2u7cg4P5VsK
IP 104.18.29.19:0
File type PNG image data, 19 x 2, 8-bit/color RGB, non-interlaced\012- data
Hash 9ecdecd1ac89ba8faef06ba8f3ec5f67
ecf947857a35250f4c3091b346a3e96722a6417c
26781f5008bd311226cf8bf12f0d9064444c60e3668db4ce34d0c16358efa008
GET /cdn-cgi/challenge-platform/h/b/img/753f467a99a6b4f9/1664732973611/I_PM2u7cg4P5VsK HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=e
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:34 GMT
content-type: image/png
server: cloudflare
cf-ray: 753f46816c2eb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=753f467a99a6b4f9
104.18.29.19200 OK 29 kB URL HTTP/2 www.dynadot.com/cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=753f467a99a6b4f9
IP 104.18.29.19:0
Hash e45748720b19762a224be3d57b823b6b
520899adf77e986e7f08635e111a42ea42514bac
c42567ab63d20d314643aa7b8d47b92fcb0c4164018da4acfed7ad246cca9b07
GET /cdn-cgi/challenge-platform/h/b/orchestrate/jsch/v1?ray=753f467a99a6b4f9 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071&__cf_chl_rt_tk=14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=0, must-revalidate
server: cloudflare
cf-ray: 753f467beb84b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:45 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 71690
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6047192460abf4afd600948abb5e6ee1
6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4
d1fd21a5913f6831d2128c8e9e84767d9730bf9e779da5395dc31b82a10e32e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: e892265e-836d-4638-871f-0548eda57745
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8FCEoAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-7f39bb92066a75a90868dd03;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Sk1Dahp1gliiBIghSCZselE7-Fy45svrCk7TdmunOwNefSNqY1P1jA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:47:23 GMT
age: 72132
etag: "6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11f2e40823827b62bca89d18ee279cb2
fa7e61b4f2864b8e51acb2cc887c15d5cb41ef38
c7811cb947483a033f31ff1e93b813f1bbc49b03ed78fcedab2090c71e5c4d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: e83a86d3-f5ab-4645-92df-4b2da3d4afa3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDgmFdlIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2d0-48c3fa150800475c790b95bd;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: f1aqkuvCub_vq9gBDgA4VL8hNf16FXzXhQjSHC1yDLISm85uOqJF9w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:50 GMT
etag: "fa7e61b4f2864b8e51acb2cc887c15d5cb41ef38"
content-type: image/jpeg
age: 71685
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 47276
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.dynadot.com/forsale/bel4.com?drefid=2071
104.18.29.19200 OK 22 kB URL HTTP/2 www.dynadot.com/forsale/bel4.com?drefid=2071
IP 104.18.29.19:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (57549)
Hash dfebd0ed25d62e5fb552221ab6b6ab7a
c22fb0f316c3b76ef1f2198960c003a6081cac5e
0c6497f5dfe177fd07a0bebea3721cf4b5019476ebffa7d0a76be7847e5a0529
POST /forsale/bel4.com?drefid=2071 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Content-Length: 3030
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071&__cf_chl_tk=14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/html; charset=utf-8
set-cookie: cf_chl_2=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.dynadot.com; Secure
cf_chl_prog=; path=/; expires=Thu, Jan 01 1970 00:00:00 UTC; domain=.dynadot.com; Secure
cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; path=/; expires=Mon, 02-Oct-23 18:49:34 GMT; domain=.dynadot.com; HttpOnly; Secure; SameSite=None
session_id=67860445;Path=/;Expires=Sun, 02 Oct 2022 18:19:35 GMT;Secure;HttpOnly
new_ref=2071-1664732975306;Path=/;Expires=Fri, 01 Oct 2027 17:49:35 GMT;Secure;HttpOnly
welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E;Path=/;Expires=Sun, 27 Nov 2022 17:49:35 GMT;Secure;HttpOnly
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: private, no-cache, no-store, max-age=0
expires: Mon, 01 Jan 1990 0:00:00 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 753f46829e7ab4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.dynadot.com/tr/1664517875273main.css
104.18.29.19200 OK 1.5 kB URL HTTP/2 www.dynadot.com/tr/1664517875273main.css
IP 104.18.29.19:0
Hash 281acf842e0903af7b015313bcbcdb1b
07e13f2d618454bbcd1f58521cf8a93dab6ef805
688381f4496b4b1d6910295a4a03023cce45f99ae5696bb088bd2a1a032b4fff
GET /tr/1664517875273main.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 1494
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209591
expires: Fri, 14 Oct 2022 6:05:05 GMT
etag: 1664517875273
cf-cache-status: HIT
age: 210480
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f4689f965b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/tr/1664517875274responsive.css
104.18.29.19200 OK 996 B URL HTTP/2 www.dynadot.com/tr/1664517875274responsive.css
IP 104.18.29.19:0
File type assembler source, ASCII text
Hash 379850517f1fec4f2c8773351a3f015c
2fc117ef2fa5d760158086b8102f9f1dcbcd6b75
ad840d27bda3d906257d10d65ea6903d224dafa41d4d7bd9f60d3069cb3467b5
GET /tr/1664517875274responsive.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 996
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209591
expires: Fri, 14 Oct 2022 6:05:05 GMT
etag: 1664517875274
cf-cache-status: HIT
age: 210480
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f4689f96db4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/fontawesome6/css/all.min.css
104.18.29.19200 OK 83 kB URL HTTP/2 www.dynadot.com/fontawesome6/css/all.min.css
IP 104.18.29.19:0
File type ASCII text, with very long lines (65360)
Hash 07edf92895ae5461d512465919fac404
7b2de1cbcdf31921bf9ed8ff1d66a0e461b3818f
0a58a9e4d074c95c0aaa50507754f395152827d3d50ed30503db8bdb7fe8ee62
GET /fontawesome6/css/all.min.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 83001
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209598
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517869359
cf-cache-status: HIT
age: 210818
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f4689f978b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/fontawesome6/css/v4-shims.min.css
104.18.29.19200 OK 4.2 kB URL HTTP/2 www.dynadot.com/fontawesome6/css/v4-shims.min.css
IP 104.18.29.19:0
File type ASCII text, with very long lines (25889)
Hash 1264a43e39e587ce7a063917b62f5b1e
fbeb018feb3d7bf9c331f918fcf34ef777e49834
28a7e6d0fb0e59493c2e859617eb28ba4a5ddb7f76bc84de4d5a456bcfbc4656
GET /fontawesome6/css/v4-shims.min.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 4188
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209598
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517869333
cf-cache-status: HIT
age: 210818
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f4689f97cb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/tr/1664517875280cropper.css
104.18.29.19200 OK 1.5 kB URL HTTP/2 www.dynadot.com/tr/1664517875280cropper.css
IP 104.18.29.19:0
Hash 2e0b47108a7bf2c95f22c14c4abf88ab
4020241782f9d973d0fd1ce008baf67d8e103344
7f4ba3f95e629a1b35928aa22737b3b02baae94e225f57c3e95871209e00b1cb
GET /tr/1664517875280cropper.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 1467
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209597
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517875280
cf-cache-status: HIT
age: 211414
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a0986b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/tr/bootstrap.min.js
104.18.29.19200 OK 9.5 kB URL HTTP/2 www.dynadot.com/tr/bootstrap.min.js
IP 104.18.29.19:0
File type ASCII text, with very long lines (32025)
Hash e3c8458f792a363c3efdea9db280aabb
5211cbc23a3686bd9d202502f2ea1b0813a4953a
7e13b5a52e07a32e4f991682ac9ca8738e9c29e878d8f60aad0cfb5379e6cee7
GET /tr/bootstrap.min.js HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: application/x-javascript
content-length: 9538
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209595
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517875238
cf-cache-status: HIT
age: 210818
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a098fb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/tr/jquery.min.js
104.18.29.19200 OK 33 kB URL HTTP/2 www.dynadot.com/tr/jquery.min.js
IP 104.18.29.19:0
File type ASCII text, with very long lines (32047)
Hash 3fe8235897b96dd42d36ee5f9ea2882b
1f74c5f4da7440e09e0d1fd9970c77b8d1afecdd
afc71408b0c0b10e70101a7e40766d7b125ef17ded4fd79524fc1d0fe05b0002
GET /tr/jquery.min.js HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: application/x-javascript
content-length: 33318
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209595
expires: Fri, 14 Oct 2022 6:05:03 GMT
etag: 1664517875235
cf-cache-status: HIT
age: 210818
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a098cb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/1664517871450forsale-buynow-landing-page.js
104.18.29.19200 OK 527 B URL HTTP/2 www.dynadot.com/1664517871450forsale-buynow-landing-page.js
IP 104.18.29.19:0
Hash 530193bf1f629bfaffb6e63db9ae981b
804508fe2f5ca0ddc6af0aec26fdfc4c458211c0
327f3bc6718eac9fa1174aad6524ff770a35a88cb6258f430ad7e4401843f7c9
GET /1664517871450forsale-buynow-landing-page.js HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: application/x-javascript
content-length: 527
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1206346
expires: Fri, 14 Oct 2022 6:05:08 GMT
etag: 1664517871450
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a29c1b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/tr/lazysizes.min.js
104.18.29.19200 OK 3.5 kB URL HTTP/2 www.dynadot.com/tr/lazysizes.min.js
IP 104.18.29.19:0
File type ASCII text, with very long lines (7862)
Hash 85e998e98b79e1caa4fd12f79c7750ab
21b5559406acba84867b6bec05606469a5e6a9ea
0ac64f32729e19571811f1baa8745389bacaef3accdfe45e6e003e31e7bd4618
GET /tr/lazysizes.min.js HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: application/x-javascript
content-length: 3494
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209591
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517875244
cf-cache-status: HIT
age: 210818
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a29bcb4f9-OSL
X-Firefox-Spdy: h2
use.typekit.net/eyi5ire.css
23.36.76.122200 OK 892 B URL HTTP/2 use.typekit.net/eyi5ire.css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash 767d0efc6eab4569b031258a8c470899
3bb592714c1b412af66c20aa71ed4146a837a55a
7e824afd30d06ddb4e0e2bf67c64a73fde6403e66a53d1793687e7c2bae15768
GET /eyi5ire.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 892
date: Sun, 02 Oct 2022 17:49:35 GMT
X-Firefox-Spdy: h2
www.dynadot.com/1664517871449forsale-common.css
104.18.29.19200 OK 493 B URL HTTP/2 www.dynadot.com/1664517871449forsale-common.css
IP 104.18.29.19:0
Hash e1bc704b62f60f005b53235186d4da46
59f86697049f9394b64c0a386f9706367bb8d149
ef2f5b7b15e979fe5a6535033f0c50758ef79644ff014484e316b1f95667f147
GET /1664517871449forsale-common.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 493
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1207999
expires: Fri, 14 Oct 2022 6:05:10 GMT
etag: 1664517871449
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a29bfb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/sr/1664517867321popup.css
104.18.29.19200 OK 247 B URL HTTP/2 www.dynadot.com/sr/1664517867321popup.css
IP 104.18.29.19:0
Hash 640ffb779bf81a7906a310aa8ee6827a
d339f5c61a9e5f1c04b2664b98a20d4535a86220
31ff8981eaaa7338c1a3da12b471bb0f5844c652a88567585b0bdfb9cce4a966
GET /sr/1664517867321popup.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: text/css
content-length: 247
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1207998
expires: Fri, 14 Oct 2022 6:05:09 GMT
etag: 1664517867321
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a29bdb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/hp_script.js
104.18.29.19200 OK 1.7 kB URL HTTP/2 www.dynadot.com/hp_script.js
IP 104.18.29.19:0
File type ASCII text, with very long lines (4289), with no line terminators
Hash e34449c658b03e8a3c79fd9e1f3c2ceb
2f391d7b60e8ea82736a89540f8644925567c753
b34342bfc8819e0b1097172a192277d88f157543bfac447dd0bfefc76ae22b34
GET /hp_script.js HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: application/x-javascript
content-length: 1689
content-encoding: gzip
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209591
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517904114
cf-cache-status: HIT
age: 210818
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468a29c5b4f9-OSL
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=eyi5ire&ht=tk&f=139.140.173.174.175.176.25136.25137&a=699613&app=typekit&e=css
23.36.76.122200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=eyi5ire&ht=tk&f=139.140.173.174.175.176.25136.25137&a=699613&app=typekit&e=css
IP 23.36.76.122:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=eyi5ire&ht=tk&f=139.140.173.174.175.176.25136.25137&a=699613&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Sun, 02 Oct 2022 17:49:35 GMT
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2d3925dad8ae1248c7b5d96220bd00a
8b6326da45860d5f480504e23864de0c28523b61
421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-S0L3BZSLYB
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-S0L3BZSLYB
IP 142.250.74.168:0
File type ASCII text, with very long lines (21348)
Hash 6d94e203ac51fb2ea25632581deb1a6e
31abdc6befd0144295ce1dc692f3abb8c08451b4
e935a49baa231cd877e49e1d2f7da227a7e9c5183d682ac7b669a222c9e5f769
GET /gtag/js?id=G-S0L3BZSLYB HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Sun, 02 Oct 2022 17:49:35 GMT
expires: Sun, 02 Oct 2022 17:49:35 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75659
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.dynadot.com/for-sale-background.jpg
104.18.29.19200 OK 50 kB URL HTTP/2 www.dynadot.com/for-sale-background.jpg
IP 104.18.29.19:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1440x1065, components 3\012- data
Hash e5d448729254b2c3e6004c1a032294b3
eff428b054a75ff48de0e1d1540af4d048f13424
d227846f6b1dd0166bed6dbef4f86625f0ca4e28956f3de3c61790e5e6805b21
GET /for-sale-background.jpg HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: image/jpeg
content-length: 50022
cache-control: max-age=1208010
cf-bgj: h2pri
etag: 1664517871447
expires: Fri, 14 Oct 2022 6:05:23 GMT
strict-transport-security: max-age=2592000
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468b1ae6b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/fontawesome6/webfonts/fa-brands-400.woff2
104.18.29.19200 OK 106 kB URL HTTP/2 www.dynadot.com/fontawesome6/webfonts/fa-brands-400.woff2
IP 104.18.29.19:0
File type Web Open Font Format (Version 2), TrueType, length 105768, version 769.768\012- data
Size 106 kB (105768 bytes)
Hash ea24446014ea86d85129883a9511629f
90fe0513c6a0ff1d8f564ec782fa54b559e7d3f8
3701cbff3acccd80b1f2eede4311050514f7a64c2039eb77a77368fcd6e3de28
GET /fontawesome6/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://www.dynadot.com/fontawesome6/css/all.min.css
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: application/octet-stream
content-length: 105768
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1209099
expires: Fri, 14 Oct 2022 6:05:04 GMT
etag: 1664517869094
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468b2af9b4f9-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash a2d3925dad8ae1248c7b5d96220bd00a
8b6326da45860d5f480504e23864de0c28523b61
421d30a538dc347afc7fc8eee0fa6502aa65d789eb2353eb9c9f8bd0c5f3b3d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.dynadot.com/alipay.png
104.18.29.19200 OK 8.1 kB URL HTTP/2 www.dynadot.com/alipay.png
IP 104.18.29.19:0
File type PNG image data, 306 x 306, 8-bit/color RGBA, non-interlaced\012- data
Hash acb5474212e1ad5d27a2f0d8c571c684
9c258342fa720dcb08287f9eef492cfd907a2a22
aabc8440836955a53bda81631f589ea72aebd930081e2cc818fbde76f1285a42
GET /alipay.png HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: image/png
content-length: 8117
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1206853
expires: Fri, 14 Oct 2022 6:06:06 GMT
etag: 1664517871449
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468b8b83b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/logo-dark-blue273x90.png
104.18.29.19200 OK 4.9 kB URL HTTP/2 www.dynadot.com/logo-dark-blue273x90.png
IP 104.18.29.19:0
File type PNG image data, 273 x 90, 8-bit/color RGBA, non-interlaced\012- data
Hash 8820a24754e94b3e3a2a117635b87416
12ea0b727c8009ffcc78521444adf030e4754f6a
ed91e81f8ec57f6f2e5dce4d58e11d6b8df058ac7b2ae0ed78f81ae99e257822
GET /logo-dark-blue273x90.png HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: image/png
content-length: 4916
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1208010
expires: Fri, 14 Oct 2022 6:05:23 GMT
etag: 1664517871447
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468b8b7fb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/for-sale-phone.png
104.18.29.19200 OK 842 B URL HTTP/2 www.dynadot.com/for-sale-phone.png
IP 104.18.29.19:0
File type PNG image data, 23 x 23, 8-bit/color RGBA, non-interlaced\012- data
Hash 1b66d1be100d7036f15a36751cf360fe
7409c644380191e0ebdf16ac20be1745cdc19965
ada12557bc7ad69be093b1ad741f6dbd6d3007f9d6814eb8f5b54a29b115fc8a
GET /for-sale-phone.png HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: image/png
content-length: 842
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1206416
expires: Fri, 14 Oct 2022 6:06:21 GMT
etag: 1664517871445
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468b8b8fb4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/for-sale-tag.png
104.18.29.19200 OK 425 B URL HTTP/2 www.dynadot.com/for-sale-tag.png
IP 104.18.29.19:0
File type PNG image data, 25 x 25, 8-bit/color RGBA, non-interlaced\012- data
Hash c0b3dc6ef896c486166a4dd442dc5d2a
a8792f88d4036ad8c034c69d345f5bd86a556fff
7ea36112383b54b5b9c65b830221a99498d3fb81bbe4e6b155dbe304648135b7
GET /for-sale-tag.png HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:35 GMT
content-type: image/png
content-length: 425
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1206853
expires: Fri, 14 Oct 2022 6:06:06 GMT
etag: 1664517871445
cf-cache-status: HIT
age: 200138
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f468b8b8cb4f9-OSL
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 11631446a606facf8976b81e767ea13e
e495a772e0ab9ad544a1b7b27272fa1539e54d4e
56457e5dfb3404c6cb0fed0dcc72cc307dda93b8feb280daddf193c97ce207e6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56457E5DFB3404C6CB0FED0DCC72CC307DDA93B8FEB280DADDF193C97CE207E6"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4731
Expires: Sun, 02 Oct 2022 19:08:27 GMT
Date: Sun, 02 Oct 2022 17:49:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 2fc41e34b88c14331581a47d847df297
bea78fc84574954a78ea6517e457e538290323b3
aa330f6ed46bbbe734659af4da0d29ff9f29a93ee4a1dfb419400d72acca77d4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA330F6ED46BBBE734659AF4DA0D29FF9F29A93EE4A1DFB419400D72ACCA77D4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=547
Expires: Sun, 02 Oct 2022 17:58:43 GMT
Date: Sun, 02 Oct 2022 17:49:36 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 50366815306618737b22afb3327c4db9
d362647235cb883e1a58b6d4d6e6144813667119
8b8aa0dbd637f517324351c700f038a94fc87f5444576c337f2e7c6d860e2c50
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.dynadot.com/matomo.js
68.68.98.112200 OK 64 kB URL HTTP/2 stats.dynadot.com/matomo.js
IP 68.68.98.112:0
File type ASCII text, with very long lines (1601)
Hash 68e32650fea29cf0fbbfa1df6c13f6f9
143d3250f699f4f9ab3d1890cd791ff0f5d649d9
0ce713b6cef25179719f242dcfa4ed9e985f1443257722299df2768deeb5ab6e
GET /matomo.js HTTP/1.1
Host: stats.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/
Cookie: cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
server: nginx/1.20.1
date: Sun, 02 Oct 2022 17:49:36 GMT
content-type: application/javascript
content-length: 63675
last-modified: Thu, 04 Nov 2021 03:01:34 GMT
etag: "61834d0e-f8bb"
expires: Sun, 02 Oct 2022 18:49:36 GMT
pragma: public
cache-control: max-age=3600, public
accept-ranges: bytes
X-Firefox-Spdy: h2
region1.analytics.google.com/g/collect?v=2&tid=G-S0L3BZSLYB>m=2oe9s0&_p=520635550&_gaz=1&cid=1364646599.1664732976&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664732975&sct=1&seg=0&dl=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&dr=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&dt=For%20Sale%20Domain%3A%20bel4.com&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.analytics.google.com/g/collect?v=2&tid=G-S0L3BZSLYB>m=2oe9s0&_p=520635550&_gaz=1&cid=1364646599.1664732976&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664732975&sct=1&seg=0&dl=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&dr=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&dt=For%20Sale%20Domain%3A%20bel4.com&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-S0L3BZSLYB>m=2oe9s0&_p=520635550&_gaz=1&cid=1364646599.1664732976&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664732975&sct=1&seg=0&dl=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&dr=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&dt=For%20Sale%20Domain%3A%20bel4.com&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.analytics.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.dynadot.com
date: Sun, 02 Oct 2022 17:49:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c120ef4802f4eb64e93225496ba6944a
cdebb30349fa79f7ddb7d13aac47735565ac0ba2
1bcd7dc722018962f16783f0f888742a7926c0a7e466deef174f0f4fc5eb4a4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
stats.g.doubleclick.net/g/collect?v=2&tid=G-S0L3BZSLYB&cid=1364646599.1664732976>m=2oe9s0&aip=1
74.125.131.155204 No Content 0 B URL HTTP/2 stats.g.doubleclick.net/g/collect?v=2&tid=G-S0L3BZSLYB&cid=1364646599.1664732976>m=2oe9s0&aip=1
IP 74.125.131.155:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-S0L3BZSLYB&cid=1364646599.1664732976>m=2oe9s0&aip=1 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.dynadot.com
date: Sun, 02 Oct 2022 17:49:36 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c120ef4802f4eb64e93225496ba6944a
cdebb30349fa79f7ddb7d13aac47735565ac0ba2
1bcd7dc722018962f16783f0f888742a7926c0a7e466deef174f0f4fc5eb4a4e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mainstats.dynadot.com/matomo.js
68.68.98.49200 OK 69 kB URL HTTP/1.1 mainstats.dynadot.com/matomo.js
IP 68.68.98.49:0
File type ASCII text, with very long lines (1892)
Hash fdd9171daeb5d6c28325d5cddebbc786
1af7d60e4e89daca011eedfa97ecb2c963f03e12
ad2c5ecd660a0a5dff000926a75fe4b13cafa7849ad1e85c36676f1a120e013a
GET /matomo.js HTTP/1.1
Host: mainstats.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/
Cookie: cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 17:49:35 GMT
Server: Apache/2.2.15 (CentOS)
Last-Modified: Sat, 15 Feb 2020 01:34:10 GMT
ETag: "2145e-10d53-59e93519b7d1b"
Accept-Ranges: bytes
Content-Length: 68947
Connection: close
Content-Type: text/javascript
www.dynadot.com/for-sale-recommended.png
104.18.29.19200 OK 9.2 kB URL HTTP/2 www.dynadot.com/for-sale-recommended.png
IP 104.18.29.19:0
File type PNG image data, 218 x 35, 8-bit/color RGBA, non-interlaced\012- data
Hash 4980483ab0c4703bfbf244af96d7b76e
ff4f41165eb27ece8bfc89528143c44f40ce3538
319c0d2b0a61f02be5fd72837d87c82fc7cda2e9d67ef10ba96149ffa18b1b04
GET /for-sale-recommended.png HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=x14; cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; session_id=67860445; new_ref=2071-1664732975306; welcome_page=6J6A8B8Y7q7T7AD6X7U8m7IO8D7R8B8w7z9LB6L7e8OY6V59T8l6T75z8E; _ga_S0L3BZSLYB=GS1.1.1664732975.1.0.1664732975.60.0.0; _ga=GA1.1.1364646599.1664732976; _pk_id.1.1bae=bbf91f137ea56afe.1664732977.; _pk_ses.1.1bae=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:37 GMT
content-type: image/png
content-length: 9223
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=2592000
cache-control: max-age=1208010
expires: Fri, 14 Oct 2022 6:05:23 GMT
etag: 1664517871445
cf-cache-status: HIT
age: 169024
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f46927e0cb4f9-OSL
X-Firefox-Spdy: h2
mainstats.dynadot.com/matomo.php?action_name=For%20Sale%20Domain%3A%20bel4.com&idsite=1&rec=1&r=285994&h=17&m=49&s=36&url=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&urlref=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&_id=bbf91f137ea56afe&_idn=1&_refts=0&send_image=0&cookie=1&res=1280x1024&dimension1=for-sale&pv_id=H5EubP&pf_net=0&pf_srv=989&pf_tfr=176&pf_dm1=358
68.68.98.49204 No Response 0 B URL HTTP/1.1 mainstats.dynadot.com/matomo.php?action_name=For%20Sale%20Domain%3A%20bel4.com&idsite=1&rec=1&r=285994&h=17&m=49&s=36&url=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&urlref=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&_id=bbf91f137ea56afe&_idn=1&_refts=0&send_image=0&cookie=1&res=1280x1024&dimension1=for-sale&pv_id=H5EubP&pf_net=0&pf_srv=989&pf_tfr=176&pf_dm1=358
IP 68.68.98.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo.php?action_name=For%20Sale%20Domain%3A%20bel4.com&idsite=1&rec=1&r=285994&h=17&m=49&s=36&url=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&urlref=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&_id=bbf91f137ea56afe&_idn=1&_refts=0&send_image=0&cookie=1&res=1280x1024&dimension1=for-sale&pv_id=H5EubP&pf_net=0&pf_srv=989&pf_tfr=176&pf_dm1=358 HTTP/1.1
Host: mainstats.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/
Cookie: cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; _ga_S0L3BZSLYB=GS1.1.1664732975.1.0.1664732975.60.0.0; _ga=GA1.1.1364646599.1664732976
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Response
Date: Sun, 02 Oct 2022 17:49:36 GMT
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/7.3.13
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.dynadot.com
Connection: close
Content-Type: text/html; charset=UTF-8
www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-S0L3BZSLYB&cid=1364646599.1664732976>m=2oe9s0&aip=1&z=705718850
142.250.74.3200 OK 42 B URL HTTP/2 www.google.no/ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-S0L3BZSLYB&cid=1364646599.1664732976>m=2oe9s0&aip=1&z=705718850
IP 142.250.74.3:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /ads/ga-audiences?v=1&t=sr&slf_rd=1&_r=4&tid=G-S0L3BZSLYB&cid=1364646599.1664732976>m=2oe9s0&aip=1&z=705718850 HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 02 Oct 2022 17:49:37 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash e4f94a2722366412417efbb65aa368b8
f2942fbd2a6f0326f99c3a271de2dab12c881b15
97805013c570f1c9ad0158d99dfc6f521628bfb4b72a2a5d79526ec7b04df2f4
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 17:49:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
mainstats.dynadot.com/matomo.php?action_name=For%20Sale%20Domain%3A%20bel4.com&idsite=1&rec=1&r=659707&h=17&m=49&s=36&url=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&urlref=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&_id=bbf91f137ea56afe&_idn=0&_refts=0&send_image=0&cookie=1&res=1280x1024&dimension1=visitor&pv_id=Jjac4F&pf_net=0&pf_srv=989&pf_tfr=176&pf_dm1=358
68.68.98.49204 No Response 0 B URL HTTP/1.1 mainstats.dynadot.com/matomo.php?action_name=For%20Sale%20Domain%3A%20bel4.com&idsite=1&rec=1&r=659707&h=17&m=49&s=36&url=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&urlref=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&_id=bbf91f137ea56afe&_idn=0&_refts=0&send_image=0&cookie=1&res=1280x1024&dimension1=visitor&pv_id=Jjac4F&pf_net=0&pf_srv=989&pf_tfr=176&pf_dm1=358
IP 68.68.98.49:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /matomo.php?action_name=For%20Sale%20Domain%3A%20bel4.com&idsite=1&rec=1&r=659707&h=17&m=49&s=36&url=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071&urlref=https%3A%2F%2Fwww.dynadot.com%2Fforsale%2Fbel4.com%3Fdrefid%3D2071%26__cf_chl_tk%3D14xp_BFHqdhDeJ0kIR8Oi1Ksx0GyFbmXuETEnmt9R00-1664732973-0-gaNycGzNCCU&_id=bbf91f137ea56afe&_idn=0&_refts=0&send_image=0&cookie=1&res=1280x1024&dimension1=visitor&pv_id=Jjac4F&pf_net=0&pf_srv=989&pf_tfr=176&pf_dm1=358 HTTP/1.1
Host: mainstats.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=utf-8
Content-Length: 0
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/
Cookie: cf_clearance=m4Mmbbx8cZ4_DTpY.HmZbVuOSey4gJTvic0y6U__wvQ-1664732974-0-150; _ga_S0L3BZSLYB=GS1.1.1664732975.1.0.1664732975.60.0.0; _ga=GA1.1.1364646599.1664732976
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 204 No Response
Date: Sun, 02 Oct 2022 17:49:37 GMT
Server: Apache/2.2.15 (CentOS)
X-Powered-By: PHP/7.3.13
Vary: Origin
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.dynadot.com
Connection: close
Content-Type: text/html; charset=UTF-8
www.dynadot.com/cdn-cgi/challenge-platform/h/b/flow/ov1/0.9059661593366564:1664731252:jOwrPOkuHXtxEsRloSjfrIrzpQujWbSV_cc-KezlZsM/753f467a99a6b4f9/3f350b61f1f4028
104.18.29.19200 OK 0 B URL HTTP/2 www.dynadot.com/cdn-cgi/challenge-platform/h/b/flow/ov1/0.9059661593366564:1664731252:jOwrPOkuHXtxEsRloSjfrIrzpQujWbSV_cc-KezlZsM/753f467a99a6b4f9/3f350b61f1f4028
IP 104.18.29.19:0
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/0.9059661593366564:1664731252:jOwrPOkuHXtxEsRloSjfrIrzpQujWbSV_cc-KezlZsM/753f467a99a6b4f9/3f350b61f1f4028 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3f350b61f1f4028
Content-Length: 16347
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_seq_3f350b61f1f4028=1uy-KwxFXRCq0CS; cf_chl_2=3f350b61f1f4028; cf_chl_prog=e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:34 GMT
content-type: text/html; charset=UTF-8
set-cookie: cf_chl_rc_ni=;Expires=Sat, 01 Oct 2022 17:49:34 GMT;SameSite=Strict
cf_chl_out: FwFpU8ySSFRVu0XT4/3imzaAOFC4lSLXEg9AtWonKFJchSGicWKDlCNd8ytXSyvbLz1vnCpPReeSxmv8UgALyA==$n0et6ZixCmDq8Vtx5flusQ==
cf_chl_out_s: MyyKTgBat9j/eKNUnI3Rz7VdbiEZzvviWEdGVklVptVP3yk5/b2lOX0YO/RCpies2H9mQABkG84RlunvaSPqjw==$Z1INaVXQzC7eXQLxcC1lkA==
server: cloudflare
cf-ray: 753f4681dceab4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
www.dynadot.com/forsale/bel4.com?drefid=2071
104.18.29.19503 Service Unavailable 0 B URL HTTP/2 www.dynadot.com/forsale/bel4.com?drefid=2071
IP 104.18.29.19:0
GET /forsale/bel4.com?drefid=2071 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 503 Service Unavailable
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: text/html; charset=UTF-8
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(),autoplay=(),camera=(),clipboard-read=(),clipboard-write=(),fullscreen=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 753f467a99a6b4f9-OSL
X-Firefox-Spdy: h2
www.dynadot.com/cdn-cgi/styles/challenges.css
104.18.29.19200 OK 0 B URL HTTP/2 www.dynadot.com/cdn-cgi/styles/challenges.css
IP 104.18.29.19:0
GET /cdn-cgi/styles/challenges.css HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: text/css
last-modified: Mon, 26 Sep 2022 11:11:32 GMT
etag: W/"633188e4-1896"
server: cloudflare
cf-ray: 753f467b3a81b4f9-OSL
x-frame-options: DENY
x-content-type-options: nosniff
vary: Accept-Encoding
expires: Sun, 02 Oct 2022 19:49:33 GMT
cache-control: max-age=7200, public
content-encoding: gzip
X-Firefox-Spdy: h2
www.dynadot.com/cdn-cgi/challenge-platform/h/b/flow/ov1/0.9059661593366564:1664731252:jOwrPOkuHXtxEsRloSjfrIrzpQujWbSV_cc-KezlZsM/753f467a99a6b4f9/3f350b61f1f4028
104.18.29.19200 OK 0 B URL HTTP/2 www.dynadot.com/cdn-cgi/challenge-platform/h/b/flow/ov1/0.9059661593366564:1664731252:jOwrPOkuHXtxEsRloSjfrIrzpQujWbSV_cc-KezlZsM/753f467a99a6b4f9/3f350b61f1f4028
IP 104.18.29.19:0
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/0.9059661593366564:1664731252:jOwrPOkuHXtxEsRloSjfrIrzpQujWbSV_cc-KezlZsM/753f467a99a6b4f9/3f350b61f1f4028 HTTP/1.1
Host: www.dynadot.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
CF-Challenge: 3f350b61f1f4028
Content-Length: 1715
Origin: https://www.dynadot.com
Connection: keep-alive
Referer: https://www.dynadot.com/forsale/bel4.com?drefid=2071
Cookie: cf_chl_2=3f350b61f1f4028; cf_chl_prog=e
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 17:49:33 GMT
content-type: text/plain; charset=UTF-8
set-cookie: cf_chl_seq_3f350b61f1f4028=1uy-KwxFXRCq0CS;SameSite=Strict;HttpOnly
cf_chl_gen: Axt1/dnU0rWwM1un/USs9JBZh0raIiudDYg/slIvelCtJnO/fGhldH1afu1rza6SaEAVM7yD2WPCmRF4VSAelVXF6SjJKKy9eSQ43yWgILjen6KsprwiS5RaU0lWf00oC+6sy+CwwLRBtOn86nrfANAH79CDbOehsJ/E684L5d0NrP4H/2RHaTsS1KqD2Hg/Pn65S0vavxpFebrWo37qSDxzQ7XnCjDHcOOykNB4yZMi92RqUgd+/9Yd8jnbK0O6N+JVR7IaImcJ4h8VIoU9S8oLv6eb7Qwdkrq9RCUKeHTWzJ5L9+/vMyPeFiAF6rDI/7B8RhaoV7wfQgsOErlh3AyMSU29qI7qYH/ilzx+O6yrwrYu9rVir7OtBWVieuEz$XMlMt0udaYgHmpyvGjyOKA==
server: cloudflare
cf-ray: 753f467cfd30b4f9-OSL
content-encoding: gzip
X-Firefox-Spdy: h2