r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 60e4edea7b5f4d19f3547a3bb2d5df57
3ee076bab4da3416c2c5808f730cb316c28baef7
763e2dadfdd286a51327cd2000ca335e30cd0b9b7267875d22ca33f7556ba200
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763E2DADFDD286A51327CD2000CA335E30CD0B9B7267875D22CA33F7556BA200"
Last-Modified: Fri, 30 Sep 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4818
Expires: Sun, 02 Oct 2022 18:07:01 GMT
Date: Sun, 02 Oct 2022 16:46:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
18.165.201.103200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 16:03:11 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 65cbd6c4094454b31bc32d6426b92cf2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: kLlqWkKG9HRYbcAd-_Z0TAK6KbbWwDUJK1dg0uKBso0fpxJRlwkTtg==
Age: 2612
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
108.156.28.39200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 108.156.28.39:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 0014cc5ed6f7d7422fe78da5a10aa120.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: nj2URP643QeqRBVD9Pa7nzQPTeRB5s-V4A5W3Y4zboLysoR2k5c4lg==
age: 47607
X-Firefox-Spdy: h2
sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
104.21.70.113200 OK 5.3 kB URL HTTP/1.1 sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
IP 104.21.70.113:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (13823)
Hash 32803e10fa17a04622c8cada9a58f1ae
52a76392215d37ebe29a428c55512ff0e937bc25
e865b6b28e1ef8e5100d18cbda1b547cf381ddf0600738f01d4387499765059c
GET /?utm_source=vDI08auqk0c8&utm_content=2avkhthu18 HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:43 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Cache-Control: max-age=0, private, must-revalidate
Cross-Origin-Window-Policy: deny
Set-Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g; path=/; expires=Mon, 02 Oct 2023 16:46:43 GMT; max-age=31536000
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 1; mode=block
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3VMEu7tR9wENQcIBsF8TKh2ghiqlPHr9Dl%2F9ZJfP4VMDMYzZaHthc0QgOK1f%2BpXV4qIZ%2FGUNHXrtDxgpJFwlDjj0yKtfS2rfNEOTBabSeu3FKy6B5EmTQvhMO828CB3SjAo%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 753eea71ac241c12-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 16:46:43 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js
151.101.85.229200 OK 1.7 kB URL HTTP/2 cdn.jsdelivr.net/npm/lazyload@2.0.0-rc.2/lazyload.js
IP 151.101.85.229:0
Hash 48e05ee1c6d3db1baea8f343aee0b56b
93e71cfe052a033e4c867f2503ca425030071df1
27d48ead6bf6af6882b21b01fdae090512499cf21f169d6a9675756b94e5f73e
GET /npm/lazyload@2.0.0-rc.2/lazyload.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sweetladi3s.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.0.0-rc.2
x-jsd-version-type: version
etag: W/"162a-+bHVRc9Mhd3adT/5YJ7eVp2Ssx8"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 02 Oct 2022 16:46:43 GMT
age: 14393541
x-served-by: cache-fra19132-FRA, cache-bma1657-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1652
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.3.1.min.js
69.16.175.10200 OK 30 kB URL HTTP/2 code.jquery.com/jquery-3.3.1.min.js
IP 69.16.175.10:0
File type ASCII text, with very long lines (65451)
Hash d549b312f7a7d228b4ec229a6547dfdc
0766794582ad530ec0f8c2595f741086afffa312
f6488b2915e0ceee723f4320492511d46c6ba1860d5975d085e6da8913f55f44
GET /jquery-3.3.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://sweetladi3s.com
Connection: keep-alive
Referer: http://sweetladi3s.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 16:46:43 GMT
content-encoding: gzip
content-length: 30288
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-1538f"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1664729203.dop022.sk1.t,1664729203.cds243.sk1.hn,1664729203.cds072.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 83f9407574c75ca600c57af0637cb200
4ebabbc1900b8f575e90186e2024e48097b0c8d2
1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:46:43 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.21.226:0
Hash 6ad4932c224640504facfcf7f7483f65
0e2f35737efe7f497f262555dff8d039d6896bc3
e4aff05242a709684f1b16b6072c1d2d318ae9529bc403e8d1a2d0f325892561
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "4BAB8B22C44D1511D4D63B611EC92360E6634467"
Expires: Mon, 03 Oct 2022 03:00:00 GMT
Last-Modified: Sun, 02 Oct 2022 15:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3270
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea750a77fab8-OSL
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 83f9407574c75ca600c57af0637cb200
4ebabbc1900b8f575e90186e2024e48097b0c8d2
1e166ac737e5c3c015e0dc0c68115ebc5eeb53958682a9b77928ddb647137ac1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:46:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sweetladi3s.com/lstatic/f.js
104.21.70.113200 OK 861 B URL HTTP/1.1 sweetladi3s.com/lstatic/f.js
IP 104.21.70.113:0
File type ASCII text, with very long lines (1665), with no line terminators
Hash ebe94193dc4d80c293881d1c6d510c03
db82b819bffedc33e9fcaeea80996068d487e9c1
fb525a1915ade44a0e8ff718fbf7d8e936e7b3979697995438447f6765c6e44b
Analyzer Verdict Alert fortinet Phishing
GET /lstatic/f.js HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding, Accept-Encoding
Last-Modified: Wed, 06 Apr 2022 12:56:50 GMT
ETag: W/"624d8e12-681"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Content-Encoding: gzip
Cache-Control: max-age=1800
CF-Cache-Status: REVALIDATED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u%2BDLK35OaknrUl0fyc%2BsM1VQCHhBIrW8f9fleiRs3BZX6nflkZcDI0fSXBWWpckYuYdpmh1UmPzCcCaByS7DatM6A%2B1QLCgM%2F3UBtIhrcRO5wOmwTGG8R95Jb8zZ2OfRLMw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 753eea746fd1b523-OSL
alt-svc: h2=":443"; ma=60
sweetladi3s.com/p.js?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
104.21.70.113200 OK 260 B URL HTTP/1.1 sweetladi3s.com/p.js?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
IP 104.21.70.113:0
Hash d6c91f9e01fa50abd9cae3081c67f1c1
fc4fcb492961e9dda8c4fbdded70211f1d5a4420
2f1505f95fa11a47a956acfe99d866e89a95d3c994fd96b35ab1b2687954fdda
GET /p.js?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=0, private, must-revalidate
Cross-Origin-Window-Policy: deny
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-Xss-Protection: 1; mode=block
CF-Cache-Status: BYPASS
Set-Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAACjJhdmtodGh1MThtAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMVkFob3FFeWxlRUZq.kBAeEZxNqD7L5LRwoYHQAxz_Y9828bTgCsaoBA9wRFc; path=/; expires=Mon, 02 Oct 2023 16:46:44 GMT; max-age=31536000
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LUUWS1HvoqRY4NR59lzK%2BgtvaFyPH8Cu0h%2BXBO7V1F%2F%2B1wGwNLOV1y1VifBJzP5G9qMEuqSfVC%2BvLKVeV6BTfdoB%2FNtnlSHYtPA7z%2BV4T%2FZtAuQTuj6tp6h0Zb642X37EZw%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea745f4a1c12-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-i.svg
104.21.70.113200 OK 459 B URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-i.svg
IP 104.21.70.113:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (828), with no line terminators
Hash 5a802c859b512731ae95c2fb0918bd42
129c91db84efb8b416e2133b707e862fe01deee4
e2d0a2e6ee3627eb3328ae436433e730bbada1ba08e79ccead098fae8971d807
Analyzer Verdict Alert fortinet Phishing
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-i.svg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: W/"619672c3-33c"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9t9oJylNzD0Xv%2B4Mep0iuL4sJ4Un9h8YLDpDAEOyvJzt2FiXDiZ%2B1UBiUzfxEDiiDR4g2US2WWAw16QKS54%2Fed5Ff6SegAMuElFQrLKwi%2BE96jA%2FnKoSOq%2BsWZ87OR6Wg5w%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea750998fac0-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-t.svg
104.21.70.113200 OK 456 B URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-t.svg
IP 104.21.70.113:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (785), with no line terminators
Hash 7fe03b15c8513b927e36a7568b8f2692
ea1f496dcf36f31cf80c4b4ce489c696449db3b8
07f5baef4ff08430c13f96181b5d1bc86d771acdb21cd001c666ff6f004d55bf
Analyzer Verdict Alert fortinet Phishing
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-t.svg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: W/"619672c3-311"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Gd9fL79MO0C1EFcqzree%2FLTaLmrwU91KeQQR3Q%2FwOA1AkEsiFQpfDLRzptgxgQUWaUearxl6ic6gFgV7VilEGUxBV8ujKSGMvfha6YO%2Bx3a62lGLmck5eJLGwPpOmicN6G0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea7508e2b51b-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-f.svg
104.21.70.113200 OK 263 B URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-f.svg
IP 104.21.70.113:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (356), with no line terminators
Hash 60f8ce0bdc85558f1f331a328626bc1d
53623399d45debffbaf87a589ce7be7e5c9d921d
24087b492bcc4c3bfff5312668fb8739f4c55f7fd3e7248240a5d37c36ccffd2
Analyzer Verdict Alert fortinet Phishing
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/icon-f.svg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/svg+xml
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: W/"619672c3-164"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1FSzBpREx5FDIubUCuF7JHMVRiLl22AydJztcYG%2FP862zOlZ0Xs5Cj8SU93iqWpVUOe7rNoZSokksRcInp7zMU2AIU2sRXyhsg%2FaO0NjY1nX5URV3EW3orb4tWn88R7AQMs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea750cb6b4f1-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb2de1a6c4c76b62bd9b5844ac8f0711
205f8666f86cf5f699ed5c8252c46004492fa88e
d0f5a54640474e3d0383d5302a9899e8060456287379906d2359925c6d36c46b
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:46:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
216.58.207.195200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2
IP 216.58.207.195:0
File type Web Open Font Format (Version 2), TrueType, length 12708, version 1.0\012- data
Hash b4a68b1e743ee317eaaf0bbadd131571
f24f7823d4e3830c7cfa5bcb33733d2897c00f13
ddc148b8a0a27b1449fda6033f4a0defac9bd43210117b50d5d7ad1eda09f394
GET /s/montserrat/v25/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://sweetladi3s.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12708
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 29 Sep 2022 06:06:20 GMT
expires: Fri, 29 Sep 2023 06:06:20 GMT
cache-control: public, max-age=31536000
age: 297624
last-modified: Mon, 11 Jul 2022 18:55:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 63ee7e605da25dbf1d62eea30a1ef246
c86b43b61afc5926ee7bc124cc30598d37ceb661
cb737283476421b6ce93b2909cf5277e82a7adbc3001f66946ff59ad6fabfdb2
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:46:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
sweetladi3s.com/featrepl?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
104.21.70.113200 OK 2 B URL HTTP/1.1 sweetladi3s.com/featrepl?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
IP 104.21.70.113:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /featrepl?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-type: application/x-www-form-urlencoded
Content-Length: 44
Origin: http://sweetladi3s.com
Connection: keep-alive
Referer: http://sweetladi3s.com/?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAACjJhdmtodGh1MThtAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMVkFob3FFeWxlRUZq.kBAeEZxNqD7L5LRwoYHQAxz_Y9828bTgCsaoBA9wRFc
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Set-Cookie: __fjs=1010101011100101110
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uVgJafEFYLNYt%2FoMtJq5PTCJ6whNRjABrnrzebpcYDrhzPJp5cvZbOAxkEHzLSSJomZ1GYn79w81K718%2FqAXzHBaUDpYLFqbfhCupbe6BzJyqpqg4ATAiP1puu7rKWy79CE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 753eea764a70fac0-OSL
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d2.jpg
104.21.70.113200 OK 81 kB URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d2.jpg
IP 104.21.70.113:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1180x752, components 3\012- data
Hash be84e4692b74105074b1612ce08e0148
0f0e44abbd9719774de944bbdba9137ce8bd9c18
a8ecef657e257442da1415953842d3c8d39e0f4455169b38c67143da3aa39cdb
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d2.jpg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/jpeg
Content-Length: 80725
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: "619672c3-13b55"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9VkJcWFuzv1TvXHq%2BHzS%2FYwL2XYvuxfxipV%2B0A4BI1yyJNsrL3Qp6dvUsDYdqAUFmoUbssfHwfpgdSxo%2F1P17rkRWSiTW34kBJ9HD6tpwCUz5E8iyJn6jHZtLAJ6dZKKBGk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea757970b523-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
18.165.201.103200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 18.165.201.103:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 16:32:56 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 16:54:57 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 543bd78e28d38334d97d31a1d7aded16.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: b4KNmJj3wnDE5ORlDrG6iVjiUCBvpl3TntMQri_Ox1RHcz0cEl9FZg==
Age: 831
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d1.jpg
104.21.70.113200 OK 122 kB URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d1.jpg
IP 104.21.70.113:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1180x754, components 3\012- data
Size 122 kB (121902 bytes)
Hash fb62310eebdcbb311d249c3f3bb1b003
1ec3d76be48b103254408bdb797a4f03872d32d3
4a5a917dfdea931bf75879db89c9e746f2d35489d65341a26f03ff142ec61d30
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d1.jpg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGQAA25pbG0AAAAFc3ViXzFkAANuaWxtAAAABXN1Yl8ybQAAAAoyYXZraHRodTE4bQAAAAd0cmFja2VybQAAAAdub3RyYWNrbQAAAAN1bnFtAAAADFZBaG9xRXlsZUVGag.GaLIxMvF5kkcMAufyVIZk21KajrZldroMYdIsl_LM9g
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/jpeg
Content-Length: 121902
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: "619672c3-1dc2e"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hz1lhEPLarLV26ewABaWWXtRnMGG9oo8srXJbRafz3k2BRfHCp8rubApBRJUQSZxEWjId%2BZv2l9QOQWFlE%2FjlbKwSgFYu4ggT5yzY%2B6nTLg9mwtFgqqteZLjmVXvAnuXEUM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea754f0fb4f3-OSL
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d4.jpg
104.21.70.113200 OK 92 kB URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d4.jpg
IP 104.21.70.113:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1180x761, components 3\012- data
Hash 970493a1c14a0ddc6c597412685b44c8
ea61cd9a5e529e1a5844a517f0b497be2420780b
204a132faacdf1caeeaa1f64e332f2356caa246faf66e10c9eedc347a5168f5e
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d4.jpg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAACjJhdmtodGh1MThtAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMVkFob3FFeWxlRUZq.kBAeEZxNqD7L5LRwoYHQAxz_Y9828bTgCsaoBA9wRFc
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/jpeg
Content-Length: 91690
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: "619672c3-1662a"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f5jqxfuSfbPliXkNOp5e%2FPfrSRh2wToYZemxfWdbV3gj7X%2B%2BPyGN9xMAqyi35WBcM%2BTU5OywZjeDa%2Bn%2F2z7kbIGX9pqwiM6eimdJp5pH0M4DQ3u%2FPirJmY4MIo7kJRK7x40%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea767edfb4f1-OSL
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d5.jpg
104.21.70.113200 OK 75 kB URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d5.jpg
IP 104.21.70.113:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1180x754, components 3\012- data
Hash 536d1b9ee053a11e8aade935d06240a1
7f458866d235cef394188ab0a67c8c67351e86b5
8793dbae6fb8dd01403d69bd094c7b0ce3211efb92bd697fc9b17ab62ed370fc
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d5.jpg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAACjJhdmtodGh1MThtAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMVkFob3FFeWxlRUZq.kBAeEZxNqD7L5LRwoYHQAxz_Y9828bTgCsaoBA9wRFc
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/jpeg
Content-Length: 75243
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: "619672c3-125eb"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0lBWk5h3zHEyGt2zk2jzY%2FXVodTtxq0X6iVvykosAN7s%2FkwooRyVJ0F0zaWvZZiIaKNK4r9NzVnQHWqsv9%2FaomLE7jJ%2FyGRgVgQUZHJebJiyoJqOa709EVjluDwG0vOwG0c%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea7679f91c12-OSL
alt-svc: h2=":443"; ma=60
sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d3.jpg
104.21.70.113200 OK 99 kB URL HTTP/1.1 sweetladi3s.com/lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d3.jpg
IP 104.21.70.113:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1180x773, components 3\012- data
Hash 1367b767199e1d39b6cbfb78c87775f2
4f587113ac684f329caf79acbd68d53e07c4d9eb
cb015a5ba1d13c34ce283a37fd37ac9822c838fa1790f6f7a172e284244845b3
GET /lstatic/fc5f1194ac2fb332f9bea30f3ce74b3d/images/d3.jpg HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?a=1069737&cr=57006&lid=17943&mh=UXlVenNFRVp3VU5MenZVV1JQdWd5S2xWV2RRUFJrcWNnRWtJQVItMzU4NzU%3D&mmid=2504&p=0&rf=uu&rn=zc4ZntqUys4WmdiVEhG&t=notrack
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAACjJhdmtodGh1MThtAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMVkFob3FFeWxlRUZq.kBAeEZxNqD7L5LRwoYHQAxz_Y9828bTgCsaoBA9wRFc
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/jpeg
Content-Length: 98821
Connection: keep-alive
Last-Modified: Thu, 18 Nov 2021 15:35:31 GMT
ETag: "619672c3-18205"
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Expose-Headers: Content-Length,Content-Range
Cache-Control: max-age=1800
CF-Cache-Status: MISS
Accept-Ranges: bytes
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5qHsVdH0AUtSlX5TuBIzvtzq13OW9U1Oo0BvoVQJF1ISCkdcwagd8Dlcplpl31OV%2FFhikVw%2FTUYrWSv3D3L5dGzad%2FgwwZ7HzqfZo%2BfcqDXTgnjx5kpVWubRTB0hLuWD8Os%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea767ad6b51b-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 16:46:44 GMT
Last-Modified: Sun, 02 Oct 2022 15:16:02 GMT
Server: ECS (ska/F706)
X-Cache: HIT
Content-Length: 471
example.org/media.ext
93.184.216.34404 Not Found 1.3 kB IP 93.184.216.34:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 84238dfc8092e5d9c0dac8ef93371a07
4a3ce8ee11e091dd7923f4d8c6e5b5e41ec7c047
ea8fac7c65fb589b0d53560f5251f74f9e9b243478dcb6b3ea79b5e36449c8d9
GET /media.ext HTTP/1.1
Host: example.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: http://sweetladi3s.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
accept-ranges: bytes
age: 448071
cache-control: max-age=604800
content-type: text/html; charset=UTF-8
date: Sun, 02 Oct 2022 16:46:44 GMT
expires: Sun, 09 Oct 2022 16:46:44 GMT
last-modified: Tue, 27 Sep 2022 12:18:53 GMT
server: ECS (nyb/1D25)
vary: Accept-Encoding
x-cache: 404-HIT
content-length: 1256
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.43.58.150101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.43.58.150:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: UkbjyMASo0FEtJibE2sgQA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: e0c4btLiN7FioRvMfpAlX5e9PZQ=
sweetladi3s.com/favicon.ico
104.21.70.113200 OK 19 kB URL HTTP/1.1 sweetladi3s.com/favicon.ico
IP 104.21.70.113:0
File type MS Windows icon resource - 1 icon, -128x-128, 32 bits/pixel\012- data
Hash f89a9d32e60067080ee0058d81de9159
f332f8f159f270dd39b6491d11d8ec2a839c5858
e90918169490e6fee2982731bac8dd98b97c0cb4e0487939c517d0487b13c4ac
GET /favicon.ico HTTP/1.1
Host: sweetladi3s.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://sweetladi3s.com/?utm_source=vDI08auqk0c8&utm_content=2avkhthu18
Cookie: k=SFMyNTY.g3QAAAAHbQAAAARhdW5xdAAAAAFtAAAABTgyMDQ4bQAAAApSallsYkpNUGJwbQAAAANoaWRtAAAAJlF5VXpzRUVad1VOTHp2VVdSUHVneUtsVldkUVBSa3FjZ0VrSUFSbQAAAAJobGEBbQAAAAVzdWJfMWQAA25pbG0AAAAFc3ViXzJtAAAACjJhdmtodGh1MThtAAAAB3RyYWNrZXJtAAAAB25vdHJhY2ttAAAAA3VucW0AAAAMVkFob3FFeWxlRUZq.kBAeEZxNqD7L5LRwoYHQAxz_Y9828bTgCsaoBA9wRFc; __fjs=1010101011100101110
HTTP/1.1 200 OK
Date: Sun, 02 Oct 2022 16:46:44 GMT
Content-Type: image/x-icon
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=1800
CF-Cache-Status: EXPIRED
Last-Modified: Sun, 02 Oct 2022 13:35:55 GMT
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=aJY%2BT0W3ApZRGXZWQmhXdjyuiJ9aBltPG%2FockSW9WF1DyskTycJyLXxRjAdDtvoxfkX%2Fez3NKVDIFHO9pWDJQYLjCmzScWQfp6NP%2Fd7uyPMtJT5D11cGNZMXJgJpy892lPY%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 753eea790ce5b4f3-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3960
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:46:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3960
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:46:45 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3960
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 16:46:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:00 GMT
age: 43545
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94d82ad8d70761f6ee1384b4183335f3
5d3389a965cfa45dab2202d89b40264368674e8a
ad495dc0ede3bfcbaebfd3bf2eb55fc5596cd7643a539e030ccce0b8a3bcf8dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7d657f8a-70bc-42c6-9aae-1127c4403047.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8602
x-amzn-requestid: 89329169-bc7a-46b1-85fc-20383a85cae8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf9GxzoAMFg0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-27952f8357fa25c956b1cd72;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: YDfn3Xd8m6jaBrj_M9hs4dePku_eEhJbYv3NJSHjCdAWifhBkiKUhw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 22:21:15 GMT
age: 66331
etag: "5d3389a965cfa45dab2202d89b40264368674e8a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 9dddb9d84a16a3004821d89836b83dc3
087521979efd5936416fd7f030779fa5725f0a8f
a6251ac43958031d765b5743d43e14bc04b1e465bed81f757c3609ee6f2bea66
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd4280e4-6b15-45b7-9469-d13ba14c37db.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6871
x-amzn-requestid: e1fdb2ee-c0e7-4a0c-ae26-d968aef00503
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEIOGp2IAMFxSQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ce-24b26a8048ffd84071a2ad57;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:30 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: -svKnYBuiMSdWObzJyNah9TDIi6IuPP6VMzEJWmn0zxoZbFmwpzkJw==
via: 1.1 c07670802688417c8b871124c547eb0a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:33 GMT
age: 68293
etag: "087521979efd5936416fd7f030779fa5725f0a8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6047192460abf4afd600948abb5e6ee1
6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4
d1fd21a5913f6831d2128c8e9e84767d9730bf9e779da5395dc31b82a10e32e9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F18b1ba6d-ca56-4474-afa8-cd3b53cce28e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9340
x-amzn-requestid: e892265e-836d-4638-871f-0548eda57745
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8FCEoAMFyow=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-7f39bb92066a75a90868dd03;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Sk1Dahp1gliiBIghSCZselE7-Fy45svrCk7TdmunOwNefSNqY1P1jA==
via: 1.1 9c60d6224ac0b44e908b5c9dcf70e9a4.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:34 GMT
etag: "6d6d52fb5024e7772dd45dd459bfe3ec90cb5ce4"
content-type: image/jpeg
age: 68292
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:37 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 68289
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:36 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 68290
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 91c43e8f8caa27091b10fc006c309e96
377251ce16059a304e1ada7e7bdade2eee86bfdb
81d98f635686a13e149a86149db28f794097b35fc0b7af82beb0199edfc82a38
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91d14136-4e81-4e18-80ca-f688f18110b7.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9073
x-amzn-requestid: 6337e85e-904c-4346-b11d-1cf213eba1a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDf8EyIIAMF_Vw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2cc-05c231ba25850508201eda0d;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:12 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2WCasBR9fFvqGZ61uURK1W4vhzCBO81FTvpSCs6eKH8HBClVUFybpQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:48:26 GMT
etag: "377251ce16059a304e1ada7e7bdade2eee86bfdb"
content-type: image/jpeg
age: 68306
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat&subset=latin-ext
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Montserrat&subset=latin-ext
IP 142.250.74.10:0
GET /css?family=Montserrat&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://sweetladi3s.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 02 Oct 2022 16:46:43 GMT
date: Sun, 02 Oct 2022 16:46:43 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2