owamailooo.byethost15.com/ss.html
200 OK 190 B URL HTTP/1.1 owamailooo.byethost15.com/ss.html
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document, ASCII text, with no line terminators
Hash cf9a68c31e57e92911957ef7e58f953d
69dfdd615b3f0a5de011ed09bdba31bcf329144f
70ede2d6bc5e3c5ef067b14a417504df4932ed96f0db920db2e1ff6e8ac2a219
GET /ss.html HTTP/1.1
Host: owamailooo.byethost15.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 28 Nov 2022 13:00:49 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cdbad2434b7d127a4fc769807a9dc3e7
fa98cd9fc2309ab4423f33f683d17bdb17d76713
560cbbb751ab2884024da3b93fba6bc45c6434797dba72a98c05e7fc2bb94bc1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "560CBBB751AB2884024DA3B93FBA6BC45C6434797DBA72A98C05E7FC2BB94BC1"
Last-Modified: Sat, 26 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15198
Expires: Mon, 28 Nov 2022 17:14:08 GMT
Date: Mon, 28 Nov 2022 13:00:50 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1611
Cache-Control: max-age=165442
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:50 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 10:58:12 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 28 Nov 2022 12:17:46 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2584
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3b56944f0e5716fd4fad2ec18994d4be
61cafa4de31ba960d1145ec37272f6f6b6944e0c
4fd46b0b6a2ea24f5ce175985a3933c04b4c01bd3e32bee2e50a61a65eef7af4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4FD46B0B6A2EA24F5CE175985A3933C04B4C01BD3E32BEE2E50A61A65EEF7AF4"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13168
Expires: Mon, 28 Nov 2022 16:40:18 GMT
Date: Mon, 28 Nov 2022 13:00:50 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: F9E8kN9oJ5we+9tr/BDLBG07LciyYBgi+JyuET3Zbg7asIOzZ9mk6e7KMA1OgFcV8KijCl4OXIc=
x-amz-request-id: DGZ16GYSG01N7KFG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 28 Nov 2022 12:45:02 GMT
age: 948
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
owamailooo.byethost15.com/ss.html?i=1
302 Found 253 B URL HTTP/1.1 owamailooo.byethost15.com/ss.html?i=1
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 93296c2ae8f6e9036e575b2bcdaaa5ec
c143caed5270a60971c48ff766b4646fd16a7196
e38f55ebb91a4c10128756921e83e1446196b84c146b2a28336d91b6cd400aca
Analyzer Verdict Alert openphish Outlook
fortinet Phishing
GET /ss.html?i=1 HTTP/1.1
Host: owamailooo.byethost15.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://owamailooo.byethost15.com/ss.html
Cookie: _test=7da11f1c3aec6fedc537eb0a7f6e670d
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 28 Nov 2022 13:00:49 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 253
Connection: keep-alive
Location: http://suspended-website.com/index.php?host=owamailooo.byethost15.com
Cache-Control: max-age=0
Expires: Mon, 28 Nov 2022 13:00:49 GMT
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 28 Nov 2022 13:00:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
suspended-website.com/index.php?host=owamailooo.byethost15.com
302 Found 2 B URL HTTP/1.1 suspended-website.com/index.php?host=owamailooo.byethost15.com
IP
Hash e1c06d85ae7b8b032bef47e42e4c08f9
71853c6197a6a7f222db0f1978c7cb232b87c5ee
75a11da44c802486bc6f65640aa48a730f0f684c5c07a42ba3cd1735eb3fb070
GET /index.php?host=owamailooo.byethost15.com HTTP/1.1
Host: suspended-website.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://owamailooo.byethost15.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Date: Mon, 28 Nov 2022 13:00:50 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.3.18
Location: http://cdn.byethost2.com/index.html
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5sjf%2F0ILIwQu%2FsY19k3G3Z8DjgTWHYIqn%2Bwo%2BZwsT9uB0IOk%2BC5%2BBZ4I9MwfF58H2uPASZbsiQMGau8j0K2JUh586pAanv0zt0eIKTRavLnXyZq%2BOa4kdjwlf5MI8f6YaMqUrtgQQzM%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 771349ef7822b50b-OSL
alt-svc: h2=":443"; ma=60
owamailooo.byethost15.com/favicon.ico
302 Found 253 B URL HTTP/1.1 owamailooo.byethost15.com/favicon.ico
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 93296c2ae8f6e9036e575b2bcdaaa5ec
c143caed5270a60971c48ff766b4646fd16a7196
e38f55ebb91a4c10128756921e83e1446196b84c146b2a28336d91b6cd400aca
GET /favicon.ico HTTP/1.1
Host: owamailooo.byethost15.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://owamailooo.byethost15.com/ss.html
Cookie: _test=7da11f1c3aec6fedc537eb0a7f6e670d
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 28 Nov 2022 13:00:49 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 253
Connection: keep-alive
Location: http://suspended-website.com/index.php?host=owamailooo.byethost15.com
Cache-Control: max-age=0
Expires: Mon, 28 Nov 2022 13:00:49 GMT
cdn.byethost2.com/index.html
200 OK 23 kB URL HTTP/1.1 cdn.byethost2.com/index.html
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (595)
Hash 887f5bf64989a33322c8a70bb9f40db9
895f6cbee52cdc41e1f47f2da892f3077245f527
0bd33f7d77dd6ff287e46017b1e7c57b1b884d17b5a2060453058c01ddc18704
GET /index.html HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://owamailooo.byethost15.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Sun, 20 Dec 2015 15:08:14 GMT
ETag: "24205a9-5979-52755bdd35380"
Accept-Ranges: bytes
Content-Length: 22905
Connection: close
Content-Type: text/html; charset=UTF-8
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
301 Moved Permanently 0 B URL HTTP/1.1 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 301 Moved Permanently
Content-Type: application/binary
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 28 Nov 2022 13:00:50 GMT
Location: https://translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
Cross-Origin-Opener-Policy: same-origin-allow-popups
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
pagead2.googlesyndication.com/pagead/show_ads.js
200 OK 36 kB URL HTTP/1.1 pagead2.googlesyndication.com/pagead/show_ads.js
IP
File type ASCII text, with very long lines (3577)
Hash fd6280e95acbf1e5afa79a007acfac78
23da13305d5ed2e49dbe44f45055a8b26938097c
d9d9d4549ea18067110afeae8d9f185d7cf509d5f773e149d24a001cd2968480
GET /pagead/show_ads.js HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 200 OK
P3P: policyref="http://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
Timing-Allow-Origin: *
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Date: Mon, 28 Nov 2022 13:00:50 GMT
Expires: Mon, 28 Nov 2022 13:00:50 GMT
Cache-Control: private, max-age=3600
Content-Type: text/javascript; charset=UTF-8
ETag: 8832567845874726222
X-Content-Type-Options: nosniff
Content-Disposition: attachment; filename="f.txt"
Content-Encoding: gzip
Server: cafe
Content-Length: 36252
X-XSS-Protection: 0
cdn.byethost2.com/modules/mod_janewslight/ja_newslight/ja-newslight.css
404 Not Found 333 B URL HTTP/1.1 cdn.byethost2.com/modules/mod_janewslight/ja_newslight/ja-newslight.css
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash dd5f3d488136f86e067ad6b164161370
bcca283c7532ee09571639213961a79da083c1a9
d9a04aace8d6fe28adb50527f22f6eb02cee76dd4934cdfd72fac09574d4a5c3
GET /modules/mod_janewslight/ja_newslight/ja-newslight.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 333
Connection: close
Content-Type: text/html; charset=iso-8859-1
cdn.byethost2.com/media/system/js/mootools.js
404 Not Found 307 B URL HTTP/1.1 cdn.byethost2.com/media/system/js/mootools.js
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash f2b28942adbf79ad63f5c75b454f607f
a0313251e7328bf42ac9cf83c02ca0c602c3ebba
ef21c1b7a356a1e0935c11d5dd76cba7536c5b67097adebc0f51b10d443fe96c
GET /media/system/js/mootools.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 307
Connection: close
Content-Type: text/html; charset=iso-8859-1
cdn.byethost2.com/media/system/js/caption.js
404 Not Found 306 B URL HTTP/1.1 cdn.byethost2.com/media/system/js/caption.js
IP
ASN #34119 Wildcard UK Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 4e1bf16d9c2beedaaaf6c44865ffa87f
aee2848ab2c751431f21efa4d0f09c47191a34f7
0de02d3c8345a5c7af49b85ce7ab3a29a1f766203633eeb2d6a421c1c55ba25b
GET /media/system/js/caption.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 404 Not Found
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Content-Length: 306
Connection: close
Content-Type: text/html; charset=iso-8859-1
cdn.byethost2.com/templates/ja_erica/scripts/ja.script.js
200 OK 11 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/scripts/ja.script.js
IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 25a145ca86eada6f97cd4b3fd16ef367
dfefef93e47de97fdad38ef4ac099bf50fa40f12
26f90b2b586ac5078b3b1416c2b32e950a0b362065fe3211560b41c00cb432bd
GET /templates/ja_erica/scripts/ja.script.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 14 Oct 2015 14:55:06 GMT
ETag: "2420bd0-2b63-52211bf7d4680"
Accept-Ranges: bytes
Content-Length: 11107
Connection: close
Content-Type: application/x-javascript
cdn.byethost2.com/templates/ja_erica/scripts/ja.hiddenpanel.js
200 OK 3.3 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/scripts/ja.hiddenpanel.js
IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 8648162a69a138d8898bcae0e9d37dc0
5207816426e88949bdaa3dbd810fa006f3ce86a0
f012ebf03d5b11d71ce5852dfa92e38cbf60b45cf4a0c5a281dac3fb40fcadb7
GET /templates/ja_erica/scripts/ja.hiddenpanel.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420bcf-cb4-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 3252
Connection: close
Content-Type: application/x-javascript
cdn.byethost2.com/templates/ja_erica/css/template.css
200 OK 33 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/css/template.css
IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 22092dbdc93b11e09039cb2970391b73
2469caee1d1061efe5e9d49f12c7685b3093c32c
95a4a24afa991a9754e2ddc3648949bb6a6a1010067572b755f878e726a8b618
GET /templates/ja_erica/css/template.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:44 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420aab-7fad-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 32685
Connection: close
Content-Type: text/css
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Alert, Content-Type, ETag, Retry-After, Last-Modified, Content-Length, Cache-Control, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 28 Nov 2022 12:08:55 GMT
cache-control: public,max-age=3600
age: 3115
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
cdn.byethost2.com/templates/ja_erica/css/colors/style1.css
200 OK 485 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/css/colors/style1.css
IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 3a1561e6124663329d82b1f4cbb01c71
f569f7430178418bf76d23d342cec28844a7eea9
34dcaec6149141abdb3c7c96effab6537e81ace9ea812f3bf1eecc9b90588386
GET /templates/ja_erica/css/colors/style1.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420aad-1e5-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 485
Connection: close
Content-Type: text/css
cdn.byethost2.com/lightbox.js
200 OK 13 kB URL HTTP/1.1 cdn.byethost2.com/lightbox.js
IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF, LF line terminators
Hash a4bc8e013dd63bd857fd6447acbefc57
6755b738f382300877cea452357ae5d4b5761858
7943a62dd92c6c9a6a165fc47bd2dc06563f3b33010c072cd93de48184686f37
GET /lightbox.js HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 14 Oct 2015 14:55:06 GMT
ETag: "24205ab-3176-52211bf7d4680"
Accept-Ranges: bytes
Content-Length: 12662
Connection: close
Content-Type: application/x-javascript
cdn.byethost2.com/templates/ja_erica/ja_menus/ja_splitmenu/ja-splitmenu.css
200 OK 3.6 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/ja_menus/ja_splitmenu/ja-splitmenu.css
IP
ASN #34119 Wildcard UK Limited
File type ASCII text, with CRLF line terminators
Hash 776beb63fce1ab0cdbd3177c28f4f300
c18e7f8e49f74300d6f9635668b0b47d2738d3bc
9dd5e4a69a32944715e5112a06833c3b46e4847809a516e0e589b5c10b5ed2f5
GET /templates/ja_erica/ja_menus/ja_splitmenu/ja-splitmenu.css HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 14 Oct 2015 14:55:06 GMT
ETag: "2420bcb-e21-52211bf7d4680"
Accept-Ranges: bytes
Content-Length: 3617
Connection: close
Content-Type: text/css
ocsp.digicert.com/
200 OK 471 B IP
Hash 7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5426
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Last-Modified: Mon, 28 Nov 2022 11:30:25 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/templates/ja_erica/images/style1-hilite.gif
200 OK 1.1 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style1-hilite.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 0f68a71e837fa9739d0e41ad06e1496c
5e9aa8c30dd70cd7508fdef12b676dd225a93c39
d8bd0b9c2ee1cdbdb1c1a0b1db44976df0369666baa07e1f2bb98ee7b586bd74
GET /templates/ja_erica/images/style1-hilite.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b26-45f-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 1119
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-screen3.gif
200 OK 732 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-screen3.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 0ba83d9793aff2f19bfd105df39ebfd7
14f4f0c40e44bb25ec96a1553b2c69fc2598910f
b00e140e136214780ce0738864b06c8773cbe6149b78d9e519cc3695ed47f2cd
GET /templates/ja_erica/images/user-screen3.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b38-2dc-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 732
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-increase.gif
200 OK 728 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-increase.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash fa7732d203ca4885f5f61c0494affdb2
880b013270bcbebdddd74b17b99c2e088956bd7a
a589e28a10ee8d7c966ad05b8eda92c51cfb89bd4897bb1be977e16f8f59276e
GET /templates/ja_erica/images/user-increase.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b31-2d8-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 728
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/indent1.png
200 OK 155 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/indent1.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 10 x 1, 8-bit colormap, non-interlaced\012- data
Hash 6179d11bd9c9f642e4d1f9df7f9c2981
13146a43597bb5f1cb9ac8a998297293e5a5eccf
1a76154f7cd0d75b3de3c905c696610f7c3d98e299131dfa22fc84a9d2602b75
GET /templates/ja_erica/images/indent1.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420afa-9b-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 155
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/user-screen2-hilite.gif
200 OK 730 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-screen2-hilite.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 53017cb0a4318ff160a18d4857fe798f
4c1326ee077413aabfe6576f8aa27f65fa90a75a
7efd088b6d533153cd6f6d9bb62fd0f3e84211c1331c940e8f1ac7ebcb3669e9
GET /templates/ja_erica/images/user-screen2-hilite.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b35-2da-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 730
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-screen1.gif
200 OK 727 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-screen1.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 2ad2e732b37da5b79a0bc974acf7c904
ca50ad7c0346fd16fa934a4b374e42aa348d904f
c7590d1f6917f21936096b50a41d9843c0347eef4bab40a95ea2f72d5c32c4ec
GET /templates/ja_erica/images/user-screen1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b34-2d7-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 727
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-decrease.gif
200 OK 726 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-decrease.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 8e444a52da96f1b10b442a885d66976c
958186f64c6dff6fb858af213a18ade499f1bf5f
d3efd960bd4d307be201da42129218201329856801c76286e1085883d50dd6fd
GET /templates/ja_erica/images/user-decrease.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b30-2d6-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 726
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/user-reset.gif
200 OK 726 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/user-reset.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 84366b07c1cda90236b048deee69d432
8188d7288ba7efeb02a7c61d7ce63ba1af3da0ba
671331f91cf02d58370591651fd89b6199d695e736ad4f5c9bad937ea91b1ed2
GET /templates/ja_erica/images/user-reset.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b32-2d6-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 726
Connection: close
Content-Type: image/gif
www.statcounter.com/counter/counter.js
200 OK 14 kB URL HTTP/1.1 www.statcounter.com/counter/counter.js
IP
File type ASCII text, with very long lines (43632), with no line terminators
Hash ec70672a2f4620ce69dbd93d41715fb2
68d559ba806e8aa338221616ba9a85ae582e03a3
f6cd20fa5ef3de2a6bd894efa434c1650f12cf6b3c9df03d45489aff18c44b7e
GET /counter/counter.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:51 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Last-Modified: Fri, 25 Nov 2022 14:36:48 GMT
ETag: W/"aa70-5ee4c73a81602"
Cache-Control: max-age=43200
Expires: Mon, 28 Nov 2022 23:24:00 GMT
Access-Control-Allow-Origin: *
P3P: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
User-Cache-Control: max-age=43200
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 5811
Server: cloudflare
CF-RAY: 771349f3ddcc1bfe-OSL
cdn.byethost2.com/templates/ja_erica/images/grad1.gif
200 OK 347 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/grad1.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 3 x 60\012- data
Hash b888be8dae328282d9e96bf4b7147972
898b36e152eb4dba32e4647f9fac5fcdd60f4179
9bd01e2874c97c5f2da14dc4844948af06e2c4980d59806f393acea581ecf174
GET /templates/ja_erica/images/grad1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420aed-15b-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 347
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style2.gif
200 OK 676 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style2.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 114a1d726ee6c764cad5912fc29741a9
bb32bdf3e4f88e2bb5798e6b20b39827f8555715
fffb07440f84d05f14bb1964fbf2122da3d75783b43385dcbc3b021eb204aec0
GET /templates/ja_erica/images/style2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b29-2a4-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 676
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/logo.png
200 OK 15 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/logo.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 270 x 54, 8-bit/color RGBA, non-interlaced\012- data
Hash 256732956b0bb55fd088aee1850fbcfa
7e32be328dbad7bb6439db98bbfa8beadc080b51
899519b1847a7a38f5b38a263314a2f1cb8932abe14573836925ee29ea773f98
GET /templates/ja_erica/images/logo.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b04-39d4-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 14804
Connection: close
Content-Type: image/png
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 7207a5076b63fb5f39b9436ced9fb18f
cdd84ecfe85882601e81f11783d9f63b30084de3
6d4543402df8135d5860ecd47dd52d96d66d2e1ac6feec11accb5f43f2da7d0d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
translate.googleapis.com/translate_static/css/translateelement.css
200 OK 3.6 kB URL HTTP/2 translate.googleapis.com/translate_static/css/translateelement.css
IP
File type ASCII text, with very long lines (18670)
Hash 897ba9a21d9625286674da769dacc2e2
84b4923ab7dee562395160824d53496314499b77
696cbf5c2f3f1efae555562b72abbbb22bed02eff03d62074555cab241190ae0
GET /translate_static/css/translateelement.css HTTP/1.1
Host: translate.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/rosetta
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="rosetta"
report-to: {"group":"rosetta","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/rosetta"}]}
content-length: 3619
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 12:41:13 GMT
expires: Mon, 28 Nov 2022 13:41:13 GMT
cache-control: public, max-age=3600
age: 1178
last-modified: Wed, 17 Aug 2022 23:38:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.byethost2.com/templates/ja_erica/images/bullet-list.gif
200 OK 69 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/bullet-list.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 5 x 5\012- data
Hash 49441b2ec2284bcfc63515eac2aa6e95
91791a8833caa668725e45c51660c7097278ef93
8f1035e7bdeaf0bd845820efd30950640af6018f444f3d54f0561be73d4070de
GET /templates/ja_erica/images/bullet-list.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ad5-45-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 69
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash dfc6d93c89faf83ac654cd676c02764d
ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d
83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/templates/ja_erica/images/topsl-bg.gif
200 OK 335 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/topsl-bg.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 4 x 290\012- data
Hash 890b9187047d7561f62bed958e0489fb
c2de2e44bbab04298d47e358d24d4e19d33988ef
9ce576f7aeb0088e299f468d0ecb6a89ed7b9382fddcbaa67faa6072495b34be
GET /templates/ja_erica/images/topsl-bg.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2e-14f-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 335
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/big-readon.png
200 OK 12 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/big-readon.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 203 x 61, 8-bit/color RGBA, non-interlaced\012- data
Hash c11e4732ae88151857c65c2a3500f2bb
0d8f914b7912f5b25932bb57b2f52602104ac58e
337714e4afd7f68d9fe880ce6d55a9bcb6b1bbe021289d1f19fcfe1af32d831d
GET /templates/ja_erica/images/big-readon.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ab8-2e28-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 11816
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/v-divider-bot.gif
200 OK 771 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/v-divider-bot.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 15 x 165\012- data
Hash 01df0ecaca48f07d90fa66ee6093b238
c120a29f58d2e5e003856c6949d0c1b086c73639
c174fcc5e7af0a8a5baa5e8c70ed67a3360c2c90e539844c11f2598c806752b6
GET /templates/ja_erica/images/v-divider-bot.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420b39-303-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 771
Connection: close
Content-Type: image/gif
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: wysAquH/EBXngU9lS0gOPg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5yacLFyPpDUlmEUSpKG+JWLs7gE=
cdn.byethost2.com/images/php_mysql_logo.png
200 OK 28 kB URL HTTP/1.1 cdn.byethost2.com/images/php_mysql_logo.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 220 x 127, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f74c45f0f3b064bf5039dddd6bcb13d
8c06b758a4375be1b6a50b89248befe88b426476
3c885fd208d070cb13c918e29dcce63a823d8a5da01ede81f2824e83b3c2e463
GET /images/php_mysql_logo.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:40:26 GMT
ETag: "2420785-6da4-52053a038ba80"
Accept-Ranges: bytes
Content-Length: 28068
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/grad2.gif
200 OK 197 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/grad2.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 3 x 70\012- data
Hash a72578730d849f01bb135ec936146eb9
41ff6f96027b72e74816e681259ef04872828e7c
263b60148f52330cd4ca0f8dc8611afb2971d687fe30b957ba8e75388c19ba4b
GET /templates/ja_erica/images/grad2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420aee-c5-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 197
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/topimg.png
200 OK 46 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/topimg.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 328 x 176, 8-bit/color RGBA, non-interlaced\012- data
Hash 59f5e0282078ca7402b42291243ea797
a808f6dfe9c5ac9f4b8948832344c7fbfb1354cb
dcf77a6150a7b61f64e90d1e5975cc830beb202f4d0b11095a3ac6bf059dfc4f
GET /templates/ja_erica/images/topimg.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2d-b2db-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 45787
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/star-bg.gif
200 OK 578 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/star-bg.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash df63cda96ec074d1bf19920b4ce1c82a
c997da29b9df462a1c14604303519556bd7bdc57
56fb33a6437dc757d02be8c1d0f9d01478f67b8f91c58c5f52514e528124be88
GET /templates/ja_erica/images/star-bg.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b24-242-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 578
Connection: close
Content-Type: image/gif
translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
200 OK 27 kB URL HTTP/2 translate.google.com/translate_a/element.js?cb=googleTranslateElementInit
IP
Hash 7f0008f0309651af694749350bb689b7
cf96a3821c179b715dcb213907e4036f8ca16418
dd905fc56aa95860c5ab0b43b050dcff498508d6e1be18798d416a128c6794a0
GET /translate_a/element.js?cb=googleTranslateElementInit HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://cdn.byethost2.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Mon, 28 Nov 2022 13:00:51 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
set-cookie: CONSENT=PENDING+781; expires=Wed, 27-Nov-2024 13:00:51 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.byethost2.com/templates/ja_erica/images/topsl.gif
200 OK 9.1 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/topsl.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 500 x 190\012- data
Hash 0458608f644ed434a9c717dafc7c968f
e29366cfb54c0af8a3f18bba8b9fc263f64a23a4
eb6ba8f5e21548c0b56623aaee78dc53845b953be902a1f006e63e66c74b2ee4
GET /templates/ja_erica/images/topsl.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2f-236a-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 9066
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/hdot.gif
200 OK 43 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/hdot.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 3 x 1\012- data
Hash 480b38fde1e78b48e0c3cb6fb7ed7218
d592c2e2cff6582b116c9925affb812d3e126fc8
790911d818943a4cad1c38421fd6e93805334a83122d31d985cb1030b0797221
GET /templates/ja_erica/images/hdot.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
Cookie: sc_is_visitor_unique=rx9327126.1669640451.AA2A3DB7E5294F6BF69BBF61B86EFA05.1.1.1.1.1.1.1.1.1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420af4-2b-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 43
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/icon-search.gif
200 OK 65 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/icon-search.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 11 x 11\012- data
Hash f8a4b67432c413ea84a9eca04d1adb98
164bb6ee1ce6f7a9affd8eea367bd56b7c827b4e
65326a89428a7fa94fb64828208743470071de5517b3c857ff7dbf6a6593c2b5
GET /templates/ja_erica/images/icon-search.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
Cookie: sc_is_visitor_unique=rx9327126.1669640451.AA2A3DB7E5294F6BF69BBF61B86EFA05.1.1.1.1.1.1.1.1.1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420af8-41-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 65
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/vline.gif
200 OK 46 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/vline.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 2 x 10\012- data
Hash 6141ae485f7bdfe34ce395385c8ec9bc
488f9fb80812074a7fa5226a9124b45e82f8a11c
a9dffa833667782ca6406ca6ed05ae78e08072d0f34f03292578295ab35f7ad4
GET /templates/ja_erica/images/vline.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
Cookie: sc_is_visitor_unique=rx9327126.1669640451.AA2A3DB7E5294F6BF69BBF61B86EFA05.1.1.1.1.1.1.1.1.1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b3d-2e-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 46
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/v-divider-center.gif
200 OK 255 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/v-divider-center.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 15 x 31\012- data
Hash 1e8b1844846a0d1ef74601862cd1933e
5cdf106a68e4cf87d028f9892370a36db0458f06
d1bcfade7a51f02544da5c0404abc219d6b40cfb6e0be7893d62515f716424fb
GET /templates/ja_erica/images/v-divider-center.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b3a-ff-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 255
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style3.gif
200 OK 671 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style3.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 19 x 19\012- data
Hash 686a33890b9e69da76ca0dd75979b857
072efe8af5accd61f769503beea44423f25eca02
497c3952262705fbe6f390124ebd5fce9d706f70aa09d5afcf7a4a71f938d6b6
GET /templates/ja_erica/images/style3.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b2b-29f-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 671
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/but-bg.gif
200 OK 155 B URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/but-bg.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 1 x 30\012- data
Hash 7be0da0242ac6b9946146c0db51988a2
78b8ee403afe2baa4e2a3d19cf60c02a8c16b800
d1cff97b96ed70ef48662a94ff4f5d0ec52898edb7961dc9efd39e8c1cde9317
GET /templates/ja_erica/images/but-bg.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420ad7-9b-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 155
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/hpswitch-on.png
200 OK 4.5 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/hpswitch-on.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 107 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash e3dc442d274f96a33acc82ab2e8bc8c4
1063e1e8cbd152b432e9998edd0ac99dabdcbd7c
9c7116cc80c97f38e1f1bbdb10876bbb2a42dc4f736c518b42e93ba1db51048f
GET /templates/ja_erica/images/hpswitch-on.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:11 GMT
ETag: "2420af7-1167-520532ce2f8c0"
Accept-Ranges: bytes
Content-Length: 4455
Connection: close
Content-Type: image/png
cdn.byethost2.com/templates/ja_erica/images/readon1.gif
200 OK 2.9 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/readon1.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash 9861fea4d13ffa0ca98706766b92b7f4
fa2ae3b31932ac9f4e4bbb4e5eb9852839dbe1e0
d4dbbbd1c50269ee0f8150b49a2af9b0661e158c23927c50839bed80a99e13e0
GET /templates/ja_erica/images/readon1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b1d-b64-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2916
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/readon2.gif
200 OK 2.8 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/readon2.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash c880467a2d92395e0737c6036fa75a72
3222955777c6acac666df416f4700d9fd4e6cdfd
cb1bd497dcebdc440edc89656538c55f170eb2645862c24d882b63b9c5105c34
GET /templates/ja_erica/images/readon2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420b1e-b0e-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2830
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style3/readon2.gif
200 OK 2.8 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style3/readon2.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash c880467a2d92395e0737c6036fa75a72
3222955777c6acac666df416f4700d9fd4e6cdfd
cb1bd497dcebdc440edc89656538c55f170eb2645862c24d882b63b9c5105c34
GET /templates/ja_erica/images/style3/readon2.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ba9-b0e-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2830
Connection: close
Content-Type: image/gif
cdn.byethost2.com/templates/ja_erica/images/style3/readon1.gif
200 OK 2.9 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/style3/readon1.gif
IP
ASN #34119 Wildcard UK Limited
File type GIF image data, version 89a, 115 x 29\012- data
Hash 9861fea4d13ffa0ca98706766b92b7f4
fa2ae3b31932ac9f4e4bbb4e5eb9852839dbe1e0
d4dbbbd1c50269ee0f8150b49a2af9b0661e158c23927c50839bed80a99e13e0
GET /templates/ja_erica/images/style3/readon1.gif HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420ba8-b64-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 2916
Connection: close
Content-Type: image/gif
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.byethost2.com/favicon.ico
200 OK 1.2 kB URL HTTP/1.1 cdn.byethost2.com/favicon.ico
IP
ASN #34119 Wildcard UK Limited
File type MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel\012- data
Hash 78e7f36bc147d6022321149ba2149331
d4cddb950f7e5f6f541e09c338b848f67badc0fc
7023d407806c0a2d729c0a32f60312f39b107f4f13ae50065791e9c82187112a
GET /favicon.ico HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/index.html
Cookie: sc_is_visitor_unique=rx9327126.1669640451.AA2A3DB7E5294F6BF69BBF61B86EFA05.1.1.1.1.1.1.1.1.1
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:45 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Wed, 09 Apr 2008 14:16:54 GMT
ETag: "24205a6-47e-44a715a532180"
Accept-Ranges: bytes
Content-Length: 1150
Connection: close
Content-Type: text/plain; charset=UTF-8
pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=pub-4951685689297156&plah=cdn.byethost2.com&bust=31070969
200 OK 119 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=pub-4951685689297156&plah=cdn.byethost2.com&bust=31070969
IP
File type ASCII text, with very long lines (6148)
Size 119 kB (119174 bytes)
Hash ebfba46fbec584e60104a85b282d902e
4805386d6e1639e54d39540f42804276e0685242
393e18ed1984c728e31e5ada866ffb0ff4d6997a78a15920ea7ebf040e53de39
GET /pagead/managed/js/adsense/m202211150101/show_ads_impl_with_ama_fy2021.js?client=pub-4951685689297156&plah=cdn.byethost2.com&bust=31070969 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 28 Nov 2022 13:00:51 GMT
expires: Mon, 28 Nov 2022 13:00:51 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: text/javascript; charset=UTF-8
etag: 12350122865156925252
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 119174
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/1x/translate_24dp.png
200 OK 846 B URL HTTP/2 www.gstatic.com/images/branding/product/1x/translate_24dp.png
IP
File type PNG image data, 24 x 24, 8-bit/color RGBA, non-interlaced\012- data
Hash e9cd262114358f26b7608b56905185dc
6dbde0a96deaab2b529723ce26c62043cf9180ab
5a861509b658aa24fc3aed2867ac3c061e7d818d90b9990959afc6d1b5d4ff99
GET /images/branding/product/1x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 846
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 12:47:17 GMT
expires: Tue, 28 Nov 2023 12:47:17 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 814
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.gstatic.com/images/branding/product/2x/translate_24dp.png
200 OK 1.8 kB URL HTTP/2 www.gstatic.com/images/branding/product/2x/translate_24dp.png
IP
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash c69c796362406f9e11c7f4bf5bb628da
e489ce95ab56208090868882113d7416abf46775
4dac0026fbfa2615dce30c0af12830863fe885f84387a0147b9e338f548d5d82
GET /images/branding/product/2x/translate_24dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://translate.googleapis.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 1842
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 12:56:32 GMT
expires: Tue, 28 Nov 2023 12:56:32 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Oct 2021 09:08:00 GMT
content-type: image/png
age: 259
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash fb9963af5b3c525d68d5c87f0da8025b
c8d1f50313dddb0cea04745d762dac01718a026f
231ef2bc126d4f0cf0910147608f65ec32ee15f3cfdb6981f5fae66f33cfc519
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
200 OK 910 B URL HTTP/2 www.gstatic.com/images/branding/googlelogo/1x/googlelogo_color_42x16dp.png
IP
File type PNG image data, 42 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash efa6bb2bfe459bc6f4bdafa3db0383f6
52d15ce52fe50643e542c17812de43f4ed1b6ee0
6318394f737c66f0e2ccfcd88e3935c6667633a1b95fa29fba2b75431d55eef2
GET /images/branding/googlelogo/1x/googlelogo_color_42x16dp.png HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 910
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 27 Nov 2022 19:29:15 GMT
expires: Mon, 27 Nov 2023 19:29:15 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 22 Oct 2019 18:15:00 GMT
content-type: image/png
age: 63096
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash cd0a5be4865b85e858cfcaafa90f8dca
122569d314b0900b1f5e5f58cdad0d9fc16b7e1b
624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash cfbcb12817712d4f8f816c208590444a
9999caeedbb1a95ae4236a5b962c233633df6799
b5a41ab77d5ff4ba1a17ff074eb91bc18824d56dfc4b6c3320e900bbd6f3a90a
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:51 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 27 Nov 2022 04:30:31 GMT
Expires: Sun, 04 Dec 2022 04:30:30 GMT
Etag: "9999caeedbb1a95ae4236a5b962c233633df6799"
Cache-Control: max-age=487178,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 771349f699c01c06-OSL
translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20221115
204 No Content 0 B URL HTTP/1.1 translate.google.com/gen204?sl=en&nca=te_ap&client=te&logld=vTE_20221115
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /gen204?sl=en&nca=te_ap&client=te&logld=vTE_20221115 HTTP/1.1
Host: translate.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/
HTTP/1.1 204 No Content
Content-Type: image/gif; charset=us-ascii
Cache-Control: no-cache, no-store, max-age=0, must-revalidate
Pragma: no-cache
Expires: Mon, 01 Jan 1990 00:00:00 GMT
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cross-Origin-Resource-Policy: cross-origin
Permissions-Policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
Report-To: {"group":"TranslateApiHttp","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/TranslateApiHttp/external"}]}
Content-Security-Policy: require-trusted-types-for 'script';report-uri /_/TranslateApiHttp/cspreport, script-src 'nonce-EMxf5x9aNS3_NH3nJxKvCQ' 'unsafe-inline';object-src 'none';base-uri 'self';report-uri /_/TranslateApiHttp/cspreport;worker-src 'self'
Cross-Origin-Opener-Policy: same-origin; report-to="TranslateApiHttp"
Accept-CH: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-WoW64, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
Server: ESF
Content-Length: 0
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 03ad9fc0b00b5df3165dc2fb1e3b0a3e
f8243335a8bc24d989bddd346048a055e1d0bdeb
366b28d491f7fd632e31c1ce97f939555f7dcee14bb6875737ed2d3e96fa32ec
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/images/cleardot.gif
200 OK 43 B URL HTTP/2 www.google.com/images/cleardot.gif
IP
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /images/cleardot.gif HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/gif
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="static-on-bigtable"
report-to: {"group":"static-on-bigtable","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/static-on-bigtable"}]}
content-length: 43
date: Mon, 28 Nov 2022 13:00:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Tue, 22 Oct 2019 18:30:00 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
adservice.google.com/adsid/integrator.js?domain=cdn.byethost2.com
200 OK 100 B URL HTTP/2 adservice.google.com/adsid/integrator.js?domain=cdn.byethost2.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cdn.byethost2.com HTTP/1.1
Host: adservice.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 13:00:51 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
partner.googleadservices.com/gampad/cookie.js?domain=cdn.byethost2.com&callback=_gfp_s_&client=ca-pub-4951685689297156&gpid_exp=1
200 OK 256 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=cdn.byethost2.com&callback=_gfp_s_&client=ca-pub-4951685689297156&gpid_exp=1
IP
File type ASCII text, with very long lines (393), with no line terminators
Hash 23df7e4d07dc141d81ac6985e05b170e
bbaf5b54ebda771b4521933a62a9a3eb8b5e212e
1572010da61d137109308bb6d32bb5c45b76786a0985bd8b84be8b0956e89716
GET /gampad/cookie.js?domain=cdn.byethost2.com&callback=_gfp_s_&client=ca-pub-4951685689297156&gpid_exp=1 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 13:00:51 GMT
server: cafe
cache-control: private
content-length: 256
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=cdn.byethost2.com
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=cdn.byethost2.com
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=cdn.byethost2.com HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 28 Nov 2022 13:00:51 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043="googleads.g.doubleclick.net:443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic="googleads.g.doubleclick.net:443"; ma=2592000; v="46,43",quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a857eec26a095f97806facc4251f4048
21bcf238687fd5f4fbefaf9704786f7c498f305e
b44b50b7e234fd05080699152a9bc0055a703a93ec2642ecb6b1f717effe7933
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:51 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 879cba431d8b6f2717a750acd5ca7156
1d4eb23583d48dd6801a104aa20046b34acd0efe
31223aada310e8d8e3fa41e22ee23019a07b362b3b062ccdc10600c22071bd78
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4951685689297156&output=html&h=250&adk=3327512900&adf=2811768130&w=300&lmt=1450624094&channel=1815593665%2B2888622927&ad_type=text_image&format=300x250_as&color_bg=ffffff&color_border=ffffff&color_link=820b0b&color_text=000000&color_url=000000&url=http%3A%2F%2Fcdn.byethost2.com%2Findex.html&wgl=1&dt=1669640450465&bpp=53&bdt=266&idt=819&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&cookie=ID%3D9d5b976d30cc0f6e-22589f15e4d7009f%3AT%3D1669640451%3ART%3D1669640451%3AS%3DALNI_MYQEEv1q-iuzApZMTc8fUtL2HwQCQ&gpic=UID%3D00000b894fa66110%3AT%3D1669640451%3ART%3D1669640451%3AS%3DALNI_MYwHH_sKBntGkJgkEeQe7sYj5VlYw&correlator=6923804763607&rume=1&frm=20&pv=2&ga_vid=515447926.1669640451&ga_sid=1669640451&ga_hid=210338269&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=174&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531705%2C31070969%2C31061691%2C31070950%2C31061693&oid=2&pvsid=2862832066247194&nvt=1&ref=http%3A%2F%2Fowamailooo.byethost15.com%2F&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cle%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=XnJcMy4ShP&p=http%3A//cdn.byethost2.com&dtd=970
403 Forbidden 46 B URL HTTP/2 googleads.g.doubleclick.net/pagead/ads?client=ca-pub-4951685689297156&output=html&h=250&adk=3327512900&adf=2811768130&w=300&lmt=1450624094&channel=1815593665%2B2888622927&ad_type=text_image&format=300x250_as&color_bg=ffffff&color_border=ffffff&color_link=820b0b&color_text=000000&color_url=000000&url=http%3A%2F%2Fcdn.byethost2.com%2Findex.html&wgl=1&dt=1669640450465&bpp=53&bdt=266&idt=819&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&cookie=ID%3D9d5b976d30cc0f6e-22589f15e4d7009f%3AT%3D1669640451%3ART%3D1669640451%3AS%3DALNI_MYQEEv1q-iuzApZMTc8fUtL2HwQCQ&gpic=UID%3D00000b894fa66110%3AT%3D1669640451%3ART%3D1669640451%3AS%3DALNI_MYwHH_sKBntGkJgkEeQe7sYj5VlYw&correlator=6923804763607&rume=1&frm=20&pv=2&ga_vid=515447926.1669640451&ga_sid=1669640451&ga_hid=210338269&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=174&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531705%2C31070969%2C31061691%2C31070950%2C31061693&oid=2&pvsid=2862832066247194&nvt=1&ref=http%3A%2F%2Fowamailooo.byethost15.com%2F&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cle%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=XnJcMy4ShP&p=http%3A//cdn.byethost2.com&dtd=970
IP
File type HTML document, ASCII text, with very long lines (603), with no line terminators
Hash 0c80c3a2604d656b7e461160bf5eba0f
d4f5c720a2b94f5f13b2e569035a7b14a513630d
470b81d27902c371ec202ef835ecf76bf54c8e222dab8b77eb8d2fd45652c955
GET /pagead/ads?client=ca-pub-4951685689297156&output=html&h=250&adk=3327512900&adf=2811768130&w=300&lmt=1450624094&channel=1815593665%2B2888622927&ad_type=text_image&format=300x250_as&color_bg=ffffff&color_border=ffffff&color_link=820b0b&color_text=000000&color_url=000000&url=http%3A%2F%2Fcdn.byethost2.com%2Findex.html&wgl=1&dt=1669640450465&bpp=53&bdt=266&idt=819&shv=r20221110&mjsv=m202211150101&ptt=5&saldr=sa&abxe=1&cookie=ID%3D9d5b976d30cc0f6e-22589f15e4d7009f%3AT%3D1669640451%3ART%3D1669640451%3AS%3DALNI_MYQEEv1q-iuzApZMTc8fUtL2HwQCQ&gpic=UID%3D00000b894fa66110%3AT%3D1669640451%3ART%3D1669640451%3AS%3DALNI_MYwHH_sKBntGkJgkEeQe7sYj5VlYw&correlator=6923804763607&rume=1&frm=20&pv=2&ga_vid=515447926.1669640451&ga_sid=1669640451&ga_hid=210338269&ga_fc=0&u_tz=0&u_his=1&u_h=1024&u_w=1280&u_ah=1002&u_aw=1280&u_cd=24&u_sd=1&adx=174&ady=834&biw=1268&bih=939&scr_x=0&scr_y=0&eid=44759875%2C44759926%2C44759837%2C42531705%2C31070969%2C31061691%2C31070950%2C31061693&oid=2&pvsid=2862832066247194&nvt=1&ref=http%3A%2F%2Fowamailooo.byethost15.com%2F&eae=0&fc=640&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C1280%2C939&vis=1&rsz=%7C%7Cle%7C&abl=CS&pfx=0&fu=0&bc=23&ifi=1&uci=a!1&fsb=1&xpc=XnJcMy4ShP&p=http%3A//cdn.byethost2.com&dtd=970 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 403 Forbidden
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
content-encoding: br
date: Mon, 28 Nov 2022 13:00:52 GMT
server: cafe
content-length: 46
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Mon, 28-Nov-2022 13:15:52 GMT; path=/; domain=.doubleclick.net; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.byethost2.com/templates/ja_erica/images/hpswitch-off.png
200 OK 4.1 kB URL HTTP/1.1 cdn.byethost2.com/templates/ja_erica/images/hpswitch-off.png
IP
ASN #34119 Wildcard UK Limited
File type PNG image data, 107 x 80, 8-bit/color RGBA, non-interlaced\012- data
Hash 4f2a0c70babd6bcb254342f63383f6bf
6ed93e5b3b2b39e3700c85759e3995df8792be99
8565d753daa448ddf6eacd97661dec5916c2225c42d5d1163481aaf22a75f805
GET /templates/ja_erica/images/hpswitch-off.png HTTP/1.1
Host: cdn.byethost2.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://cdn.byethost2.com/templates/ja_erica/css/template.css
Cookie: sc_is_visitor_unique=rx9327126.1669640451.AA2A3DB7E5294F6BF69BBF61B86EFA05.1.1.1.1.1.1.1.1.1; __gads=ID=9d5b976d30cc0f6e-22589f15e4d7009f:T=1669640451:RT=1669640451:S=ALNI_MYQEEv1q-iuzApZMTc8fUtL2HwQCQ; __gpi=UID=00000b894fa66110:T=1669640451:RT=1669640451:S=ALNI_MYwHH_sKBntGkJgkEeQe7sYj5VlYw
HTTP/1.1 200 OK
Date: Mon, 28 Nov 2022 13:00:46 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Tue, 22 Sep 2015 10:08:12 GMT
ETag: "2420af6-100c-520532cf23b00"
Accept-Ranges: bytes
Content-Length: 4108
Connection: close
Content-Type: image/png
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash be14104edf6bb4894add651e83e666bd
a0ce95dcdd39116602f8944f5a4be98ec4c09053
52d76af9b562e7270b18aa62a6cf0781ebde0caff85c9d88c862b5c5815e37f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "52D76AF9B562E7270B18AA62A6CF0781EBDE0CAFF85C9D88C862B5C5815E37F1"
Last-Modified: Sat, 26 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=680
Expires: Mon, 28 Nov 2022 13:12:12 GMT
Date: Mon, 28 Nov 2022 13:00:52 GMT
Connection: keep-alive
byet.host/loading.gif
404 Not Found 0 B IP
ASN #34119 Wildcard UK Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /loading.gif HTTP/1.1
Host: byet.host
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 404 Not Found
Date: Mon, 28 Nov 2022 13:00:52 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
byet.host/close.gif
404 Not Found 0 B IP
ASN #34119 Wildcard UK Limited
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /close.gif HTTP/1.1
Host: byet.host
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.0 404 Not Found
Date: Mon, 28 Nov 2022 13:00:52 GMT
Server: Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/5.4.16
X-Powered-By: PHP/5.4.16
Content-Length: 0
Connection: close
Content-Type: text/html; charset=UTF-8
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash afdcfc5f3bd741d114596300d607f4cc
e82ea5829078ad9268cdf9c576c780b1c40c3696
1c80e7d28c6303b65a17bfa822163c5af3d6d5c480ee9f2e404b23119520eeb5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 28 Nov 2022 13:00:52 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/sodar/sodar2.js
200 OK 6.4 kB URL HTTP/2 tpc.googlesyndication.com/sodar/sodar2.js
IP
File type ASCII text, with very long lines (1321)
Hash ac906814ed812c4ecdbb624a3bd2f6c3
8e4547eaffaa66a1ee61b36028dbcd7091d0e7de
8ab8cef6156022c4547455defd8252b48b6bcb8b734072849345bb99758705fe
GET /sodar/sodar2.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="adspam-signals-scs"
report-to: {"group":"adspam-signals-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/adspam-signals-scs"}]}
content-length: 6386
date: Mon, 28 Nov 2022 13:00:52 GMT
expires: Mon, 28 Nov 2022 13:00:52 GMT
cache-control: private, max-age=3000
etag: "1637097310169751"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5089
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 13:00:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5089
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 13:00:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5089
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 13:00:52 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash aebda342a81ad83f60d2523f54ccda67
e590d9326e4a283e0929a8ffccb13cc4308af0e6
bd123fe3fce93216e2635f9dbc356f081b7599784fb6b67984032f11d82bc7cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BD123FE3FCE93216E2635F9DBC356F081B7599784FB6B67984032F11D82BC7CB"
Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5089
Expires: Mon, 28 Nov 2022 14:25:41 GMT
Date: Mon, 28 Nov 2022 13:00:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AVwDLlKoy5pc9NNuR_OakMB0ONGAoO-k2AKwV--b2sjiaqYSKAWlZg==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:25:51 GMT
age: 52501
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3a1a4e00f1f15827cf651f373863c379
70c2a238f06ca7e56ef80c83738e081bf0de3330
3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8885
x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cGDTEFSeIAMF3rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 08:11:39 GMT
age: 17353
etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 577b69fd08ad8368ea5a94fe41476c1c
9442f111d329f721ddc55100cd246586d8204048
bdafc5068032dcf5e207cf2685a1b9350dbe8d990ba181520ff47889524532f2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff1f41832-bc78-4527-a3e7-8099266ecb52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8517
x-amzn-requestid: 12456791-0e7f-45d7-97ae-d663c8fa841d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMozvHHLoAMFVqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb4a-54ed1ec101789247052c9ec8;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:07:54 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: UzzTPZIBjoow9PK-oM9rfGh5HkrivyPDofbTXy-I-9e4_baQnyKVhQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 07:21:27 GMT
age: 20365
etag: "9442f111d329f721ddc55100cd246586d8204048"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 15bd53848c7082464273007e010c54e0
9a3ca698ca1aeae695923277ed2244465e01a1ea
36cfa29965173ea683992d4b436f393e92c978350347f869355d933613e2c005
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd56d2fad-ed89-4d96-831f-7f8467b7079b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10119
x-amzn-requestid: 20bfd6a6-2981-42ca-8997-9363676773c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR782HEZIAMFTKQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d9eb-552581a92a69d6cd322bf334;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:43:07 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: U_gitOWWMPO7M5Dd0WktaigfRERa93d86MhziLjZ2qnuON_K5NauyQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 21:54:37 GMT
age: 54375
etag: "9a3ca698ca1aeae695923277ed2244465e01a1ea"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
200 OK 9.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1f434933b5bd6377d299ada22d1ae7ef
075531f525e625b117b2497f31139c9824d0e9c5
b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9430
x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR7wyGCIIAMFhgw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ibLuLI6j9EWh0dgk51O7kiPBRyURZ0UdNtlgbBD-SXnDg_GT_tJm8Q==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:16 GMT
age: 53976
etag: "075531f525e625b117b2497f31139c9824d0e9c5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 78b1389f425425d0450c94d900404dc4
53b12a8702f7c5b7cc697e2a24da824d9434be65
0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6376
x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cR6_KGeaoAMFb_Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 27 Nov 2022 22:01:26 GMT
age: 53966
etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
csi.gstatic.com/csi?v=2&s=pagead&action=csi_pagead&top=1&puid=1~lb0stddt&c=2862832066247194&e=44759875%2C44759926%2C44759837%2C42531705%2C31070969%2C31061691%2C31070950%2C31061693&ctx=1&met.3=158.li_1f~1032.187~326.18g_1~832.18k~868.18k~216.187_d~215.187_d~843.186_e~779.18k~112.19g_1~629.1c1~889.1c3_7~639.1cm~113.1f8_1~1001.1ne_1__1~1032.1nh~326.1nh~832.1nj~868.1ni_1~164.1nf_4~165.1ne_5~166.1na_d~779.1nn_1~889.1p7~639.1pe&met.7=CBsQCMABso6Qmw8~CBsQByCBBDiLAcAB_o3r8Qs~CBsQCiCCBDiVAcABv6Xt5QU~CBsQByCCBDi8AcABuJKe2wc~CBsQByCCBDjuAcAB9--aIg~CBsQCiCCBDiRAcABy8ONdw~CBsQCiCCBDiVAcABwanyxwo~CBsQCiCCBDiMAcAB_rvc2Qo~CBsQCiCDBDjtAcAB7Imj7AU~CBsQBiCDBDi2AsAB3_bc1g4~CBsQBiCDBDi2AsAB3aL75Aw~CBsQBiCDBDjEAsABjNXB9gc~CBsQBiCDBDjFAsABncvL4ww~CBsQByCDBDjcAcAB4tHY8QM~CBsQBiCEBDi1AsABxJ7OgQg~CBsQBiCEBDj-AsABuYTv1g4~CBsQBiCEBDj-AsABg83hzwk~CBsQBiCEBDiKA8ABwaGXmAw~CBsQBiCEBDjCBMABu8zM_QI~CBsQBiCEBDjIBcAB94zfmQw~CAIQChgBIIQEKIQEMP4EOHpA0ARI0gRQ0gRY2gRo2gRw8gR4358CgAGcmwKIAbuWBrABAbgBA8AB0b6jjwk~CBsQBiCsBDiZAsABzsTRjg8~CBsQChgBIMsEKPoEMLIGOOcBwAHahs3PDA~CBsg9gTAAZvFz4kI~CBsQBiD8BTj8A8ABmtnnngI~CBsQBiD8BTiZBMAB6__VzQk~CBsQBiD9BTimBMABpoKFng4~CBsQBiD9BTiYBMABkO2aqgg~CBsQBiD9BTiZBMABvM6_lg4~CAMQChgBIJYGKJYGMK4LOJgFQMUGSM4GUKUKWNkKYLIKaNoKcJULeKOpB4ABhqMHiAGIkBawAQG4AQPAAcyKteYO~CBsQAiCbBjh7wAGT6ejXDA~CBsQAiCbBjjVA8ABvIu5vA8~CBsQAiCbBjhzwAHu47n_BQ~CBsQAiCcBjjPAcABibbRhQc~CBsQAiCdBjjuAcABzMSYuQo~CBsQAiCdBjj5AcAB8N-fvAo~CBsQAiCdBji1AsABpI6huwY~CBsQAiCdBjjCAsABi_38iw4~CBsQAiCdBjjXAsAB9e7KrQE~CBsQAiCdBjiCA8ABidC22wo~CBsQAiCdBjjsAcABmpOcMg~CBsQAiCeBji1AsABqIWggw4~CBsQAiC-BjiKAsAB3tj9_wU~CBsgxQY4qgTAAZvFz4kI~CBsQChgBIPMGKPMGML8KOMwDwAH-xP6DBQ~CBsQBxgBIPMGKPMGMMEHOE7AAZ-LzswO~CBsQCiD5BjgUwAGLvZTBCA~CBsQAiCuBzjjAcABlpGTqA4~CBsQAiCvBzjtAcAB-_LX_g4~CBsQAiCvBzjtAcAB9bePowg~CBsQBhgBIIILKIILMM8LOE3AAca4uZ4O~CBsQBhgBIIwLKIwLMPYLOGrAAZi5gsgM~CBsQBhgBIIMMKIMMMJ8MOBzAAdnpnYAB~CBwQChgBIMEMKMEMMNEMOBBoxAxwzgx4rawBgAG0pgGIAYa3A7ABAbgBA8ABo-GKbQ~CBsQChgBIMYMKMYMMJQNOE5AygxIywxQywxYgg1g2Qxogg1wlA14lgeAAYACiAGJA7ABAbgBA8AB5Krg8AI~CC8QBxgBIMkMKMkMMJ8NOFZA0gxI1AxQ2gxYjg1g5gxojg1wnw14zwiAAWSIAWuwAQG4AQPAAfOK3fwD~CC8QBxgBIMoMKMoMMI8NOEVA0wxI2QxQ2wxY_Axg4wxo_Axwjw14igaAAWSIAWuwAQG4AQPAAZv_iccH~CBsQDSChBzigBsABqr2nzAU~CAUQBRgBINMNKNMNMJoOOEdQ2A1Y9g1g4g1o9w1wmQ54twaAAS6IAdsEsAEBuAEDwAGQx7LwCA~CBsQCDiyDsABso6Qmw8~CBsQAiCtDjhYwAGSodD0BA~CBsQBiCuDjjGAcABw4jv4w0~CBsQBiCvDjjZAcAB48z7xwg~CCcQDRgBILEOKLEOMKYQOPUBaIwQcKUQeO1cgAHiV4gBpXSwAQG4AQPAAfPyy64L~CAEQChgBILAOKLAOMLQQOIQCaIsQcKoQePSFA4AB6v8CiAH29QiwAQG4AQPAAd6Ov5sB~CCcQChgBIKkQKKkQMP4QOFXAAeLBm9oF~CAwQBRgBIOIQKOIQMPQQOBJo6BBw8hB4gyeAAZIhiAGsTLABAbgBA8ABgqe73Q0~CBwQBhgBIOcQKOcQMIkROCJo9RBwhxF47ASwAQG4AQPAAZSE4rUO~CC8QBxgBIOkQKOkQMIkROCBo9hBwiRF4uwiAAWSIAWuwAQG4AQPAAfOK3fwD~CC8QBxgBIOoQKOoQMIsROCFo9hBwixF49gWAAWSIAWuwAQG4AQPAAZv_iccH~CCcQBRgBII4RKI4RMKUROBfAAZmVn6AL~CBsQBRgBIJMRKJMRMLgROCXAAc_G2uIB~CAUQBRgBIKERKKERMMAROB9orBFwwBF4lAawAQG4AQPAAZDHsvAI&met.1=1.lb0stc4c~6.8q~7.8w~8.bq~9.bq~10.cq~12.cq~13.dp~14.eq~15.e1~16.pu~17.pu~18.pv~19.1ez~20.1ez~21.1f5~23.nl
204 No Content 0 B URL HTTP/2 csi.gstatic.com/csi?v=2&s=pagead&action=csi_pagead&top=1&puid=1~lb0stddt&c=2862832066247194&e=44759875%2C44759926%2C44759837%2C42531705%2C31070969%2C31061691%2C31070950%2C31061693&ctx=1&met.3=158.li_1f~1032.187~326.18g_1~832.18k~868.18k~216.187_d~215.187_d~843.186_e~779.18k~112.19g_1~629.1c1~889.1c3_7~639.1cm~113.1f8_1~1001.1ne_1__1~1032.1nh~326.1nh~832.1nj~868.1ni_1~164.1nf_4~165.1ne_5~166.1na_d~779.1nn_1~889.1p7~639.1pe&met.7=CBsQCMABso6Qmw8~CBsQByCBBDiLAcAB_o3r8Qs~CBsQCiCCBDiVAcABv6Xt5QU~CBsQByCCBDi8AcABuJKe2wc~CBsQByCCBDjuAcAB9--aIg~CBsQCiCCBDiRAcABy8ONdw~CBsQCiCCBDiVAcABwanyxwo~CBsQCiCCBDiMAcAB_rvc2Qo~CBsQCiCDBDjtAcAB7Imj7AU~CBsQBiCDBDi2AsAB3_bc1g4~CBsQBiCDBDi2AsAB3aL75Aw~CBsQBiCDBDjEAsABjNXB9gc~CBsQBiCDBDjFAsABncvL4ww~CBsQByCDBDjcAcAB4tHY8QM~CBsQBiCEBDi1AsABxJ7OgQg~CBsQBiCEBDj-AsABuYTv1g4~CBsQBiCEBDj-AsABg83hzwk~CBsQBiCEBDiKA8ABwaGXmAw~CBsQBiCEBDjCBMABu8zM_QI~CBsQBiCEBDjIBcAB94zfmQw~CAIQChgBIIQEKIQEMP4EOHpA0ARI0gRQ0gRY2gRo2gRw8gR4358CgAGcmwKIAbuWBrABAbgBA8AB0b6jjwk~CBsQBiCsBDiZAsABzsTRjg8~CBsQChgBIMsEKPoEMLIGOOcBwAHahs3PDA~CBsg9gTAAZvFz4kI~CBsQBiD8BTj8A8ABmtnnngI~CBsQBiD8BTiZBMAB6__VzQk~CBsQBiD9BTimBMABpoKFng4~CBsQBiD9BTiYBMABkO2aqgg~CBsQBiD9BTiZBMABvM6_lg4~CAMQChgBIJYGKJYGMK4LOJgFQMUGSM4GUKUKWNkKYLIKaNoKcJULeKOpB4ABhqMHiAGIkBawAQG4AQPAAcyKteYO~CBsQAiCbBjh7wAGT6ejXDA~CBsQAiCbBjjVA8ABvIu5vA8~CBsQAiCbBjhzwAHu47n_BQ~CBsQAiCcBjjPAcABibbRhQc~CBsQAiCdBjjuAcABzMSYuQo~CBsQAiCdBjj5AcAB8N-fvAo~CBsQAiCdBji1AsABpI6huwY~CBsQAiCdBjjCAsABi_38iw4~CBsQAiCdBjjXAsAB9e7KrQE~CBsQAiCdBjiCA8ABidC22wo~CBsQAiCdBjjsAcABmpOcMg~CBsQAiCeBji1AsABqIWggw4~CBsQAiC-BjiKAsAB3tj9_wU~CBsgxQY4qgTAAZvFz4kI~CBsQChgBIPMGKPMGML8KOMwDwAH-xP6DBQ~CBsQBxgBIPMGKPMGMMEHOE7AAZ-LzswO~CBsQCiD5BjgUwAGLvZTBCA~CBsQAiCuBzjjAcABlpGTqA4~CBsQAiCvBzjtAcAB-_LX_g4~CBsQAiCvBzjtAcAB9bePowg~CBsQBhgBIIILKIILMM8LOE3AAca4uZ4O~CBsQBhgBIIwLKIwLMPYLOGrAAZi5gsgM~CBsQBhgBIIMMKIMMMJ8MOBzAAdnpnYAB~CBwQChgBIMEMKMEMMNEMOBBoxAxwzgx4rawBgAG0pgGIAYa3A7ABAbgBA8ABo-GKbQ~CBsQChgBIMYMKMYMMJQNOE5AygxIywxQywxYgg1g2Qxogg1wlA14lgeAAYACiAGJA7ABAbgBA8AB5Krg8AI~CC8QBxgBIMkMKMkMMJ8NOFZA0gxI1AxQ2gxYjg1g5gxojg1wnw14zwiAAWSIAWuwAQG4AQPAAfOK3fwD~CC8QBxgBIMoMKMoMMI8NOEVA0wxI2QxQ2wxY_Axg4wxo_Axwjw14igaAAWSIAWuwAQG4AQPAAZv_iccH~CBsQDSChBzigBsABqr2nzAU~CAUQBRgBINMNKNMNMJoOOEdQ2A1Y9g1g4g1o9w1wmQ54twaAAS6IAdsEsAEBuAEDwAGQx7LwCA~CBsQCDiyDsABso6Qmw8~CBsQAiCtDjhYwAGSodD0BA~CBsQBiCuDjjGAcABw4jv4w0~CBsQBiCvDjjZAcAB48z7xwg~CCcQDRgBILEOKLEOMKYQOPUBaIwQcKUQeO1cgAHiV4gBpXSwAQG4AQPAAfPyy64L~CAEQChgBILAOKLAOMLQQOIQCaIsQcKoQePSFA4AB6v8CiAH29QiwAQG4AQPAAd6Ov5sB~CCcQChgBIKkQKKkQMP4QOFXAAeLBm9oF~CAwQBRgBIOIQKOIQMPQQOBJo6BBw8hB4gyeAAZIhiAGsTLABAbgBA8ABgqe73Q0~CBwQBhgBIOcQKOcQMIkROCJo9RBwhxF47ASwAQG4AQPAAZSE4rUO~CC8QBxgBIOkQKOkQMIkROCBo9hBwiRF4uwiAAWSIAWuwAQG4AQPAAfOK3fwD~CC8QBxgBIOoQKOoQMIsROCFo9hBwixF49gWAAWSIAWuwAQG4AQPAAZv_iccH~CCcQBRgBII4RKI4RMKUROBfAAZmVn6AL~CBsQBRgBIJMRKJMRMLgROCXAAc_G2uIB~CAUQBRgBIKERKKERMMAROB9orBFwwBF4lAawAQG4AQPAAZDHsvAI&met.1=1.lb0stc4c~6.8q~7.8w~8.bq~9.bq~10.cq~12.cq~13.dp~14.eq~15.e1~16.pu~17.pu~18.pv~19.1ez~20.1ez~21.1f5~23.nl
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /csi?v=2&s=pagead&action=csi_pagead&top=1&puid=1~lb0stddt&c=2862832066247194&e=44759875%2C44759926%2C44759837%2C42531705%2C31070969%2C31061691%2C31070950%2C31061693&ctx=1&met.3=158.li_1f~1032.187~326.18g_1~832.18k~868.18k~216.187_d~215.187_d~843.186_e~779.18k~112.19g_1~629.1c1~889.1c3_7~639.1cm~113.1f8_1~1001.1ne_1__1~1032.1nh~326.1nh~832.1nj~868.1ni_1~164.1nf_4~165.1ne_5~166.1na_d~779.1nn_1~889.1p7~639.1pe&met.7=CBsQCMABso6Qmw8~CBsQByCBBDiLAcAB_o3r8Qs~CBsQCiCCBDiVAcABv6Xt5QU~CBsQByCCBDi8AcABuJKe2wc~CBsQByCCBDjuAcAB9--aIg~CBsQCiCCBDiRAcABy8ONdw~CBsQCiCCBDiVAcABwanyxwo~CBsQCiCCBDiMAcAB_rvc2Qo~CBsQCiCDBDjtAcAB7Imj7AU~CBsQBiCDBDi2AsAB3_bc1g4~CBsQBiCDBDi2AsAB3aL75Aw~CBsQBiCDBDjEAsABjNXB9gc~CBsQBiCDBDjFAsABncvL4ww~CBsQByCDBDjcAcAB4tHY8QM~CBsQBiCEBDi1AsABxJ7OgQg~CBsQBiCEBDj-AsABuYTv1g4~CBsQBiCEBDj-AsABg83hzwk~CBsQBiCEBDiKA8ABwaGXmAw~CBsQBiCEBDjCBMABu8zM_QI~CBsQBiCEBDjIBcAB94zfmQw~CAIQChgBIIQEKIQEMP4EOHpA0ARI0gRQ0gRY2gRo2gRw8gR4358CgAGcmwKIAbuWBrABAbgBA8AB0b6jjwk~CBsQBiCsBDiZAsABzsTRjg8~CBsQChgBIMsEKPoEMLIGOOcBwAHahs3PDA~CBsg9gTAAZvFz4kI~CBsQBiD8BTj8A8ABmtnnngI~CBsQBiD8BTiZBMAB6__VzQk~CBsQBiD9BTimBMABpoKFng4~CBsQBiD9BTiYBMABkO2aqgg~CBsQBiD9BTiZBMABvM6_lg4~CAMQChgBIJYGKJYGMK4LOJgFQMUGSM4GUKUKWNkKYLIKaNoKcJULeKOpB4ABhqMHiAGIkBawAQG4AQPAAcyKteYO~CBsQAiCbBjh7wAGT6ejXDA~CBsQAiCbBjjVA8ABvIu5vA8~CBsQAiCbBjhzwAHu47n_BQ~CBsQAiCcBjjPAcABibbRhQc~CBsQAiCdBjjuAcABzMSYuQo~CBsQAiCdBjj5AcAB8N-fvAo~CBsQAiCdBji1AsABpI6huwY~CBsQAiCdBjjCAsABi_38iw4~CBsQAiCdBjjXAsAB9e7KrQE~CBsQAiCdBjiCA8ABidC22wo~CBsQAiCdBjjsAcABmpOcMg~CBsQAiCeBji1AsABqIWggw4~CBsQAiC-BjiKAsAB3tj9_wU~CBsgxQY4qgTAAZvFz4kI~CBsQChgBIPMGKPMGML8KOMwDwAH-xP6DBQ~CBsQBxgBIPMGKPMGMMEHOE7AAZ-LzswO~CBsQCiD5BjgUwAGLvZTBCA~CBsQAiCuBzjjAcABlpGTqA4~CBsQAiCvBzjtAcAB-_LX_g4~CBsQAiCvBzjtAcAB9bePowg~CBsQBhgBIIILKIILMM8LOE3AAca4uZ4O~CBsQBhgBIIwLKIwLMPYLOGrAAZi5gsgM~CBsQBhgBIIMMKIMMMJ8MOBzAAdnpnYAB~CBwQChgBIMEMKMEMMNEMOBBoxAxwzgx4rawBgAG0pgGIAYa3A7ABAbgBA8ABo-GKbQ~CBsQChgBIMYMKMYMMJQNOE5AygxIywxQywxYgg1g2Qxogg1wlA14lgeAAYACiAGJA7ABAbgBA8AB5Krg8AI~CC8QBxgBIMkMKMkMMJ8NOFZA0gxI1AxQ2gxYjg1g5gxojg1wnw14zwiAAWSIAWuwAQG4AQPAAfOK3fwD~CC8QBxgBIMoMKMoMMI8NOEVA0wxI2QxQ2wxY_Axg4wxo_Axwjw14igaAAWSIAWuwAQG4AQPAAZv_iccH~CBsQDSChBzigBsABqr2nzAU~CAUQBRgBINMNKNMNMJoOOEdQ2A1Y9g1g4g1o9w1wmQ54twaAAS6IAdsEsAEBuAEDwAGQx7LwCA~CBsQCDiyDsABso6Qmw8~CBsQAiCtDjhYwAGSodD0BA~CBsQBiCuDjjGAcABw4jv4w0~CBsQBiCvDjjZAcAB48z7xwg~CCcQDRgBILEOKLEOMKYQOPUBaIwQcKUQeO1cgAHiV4gBpXSwAQG4AQPAAfPyy64L~CAEQChgBILAOKLAOMLQQOIQCaIsQcKoQePSFA4AB6v8CiAH29QiwAQG4AQPAAd6Ov5sB~CCcQChgBIKkQKKkQMP4QOFXAAeLBm9oF~CAwQBRgBIOIQKOIQMPQQOBJo6BBw8hB4gyeAAZIhiAGsTLABAbgBA8ABgqe73Q0~CBwQBhgBIOcQKOcQMIkROCJo9RBwhxF47ASwAQG4AQPAAZSE4rUO~CC8QBxgBIOkQKOkQMIkROCBo9hBwiRF4uwiAAWSIAWuwAQG4AQPAAfOK3fwD~CC8QBxgBIOoQKOoQMIsROCFo9hBwixF49gWAAWSIAWuwAQG4AQPAAZv_iccH~CCcQBRgBII4RKI4RMKUROBfAAZmVn6AL~CBsQBRgBIJMRKJMRMLgROCXAAc_G2uIB~CAUQBRgBIKERKKERMMAROB9orBFwwBF4lAawAQG4AQPAAZDHsvAI&met.1=1.lb0stc4c~6.8q~7.8w~8.bq~9.bq~10.cq~12.cq~13.dp~14.eq~15.e1~16.pu~17.pu~18.pv~19.1ez~20.1ez~21.1f5~23.nl HTTP/1.1
Host: csi.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cdn.byethost2.com
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: *
date: Mon, 28 Nov 2022 13:00:54 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Wed, 21 Jan 2004 19:51:30 GMT
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
c.statcounter.com/t.php?sc_project=9327126&u1=AA2A3DB7E5294F6BF69BBF61B86EFA05&java=1&security=6463e657&sc_snum=1&sess=a8f3c4&p=0&rcat=r&rdom=owamailooo.byethost15.com&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=http%3A//owamailooo.byethost15.com/&u=http%3A//cdn.byethost2.com/index.html&t=ByetHost%20Free%20Hosting%20Offer%20Landing%20Page&invisible=1&sc_rum_e_s=922&sc_rum_e_e=929&sc_rum_f_s=0&sc_rum_f_e=909&get_config=true
200 OK 0 B URL HTTP/2 c.statcounter.com/t.php?sc_project=9327126&u1=AA2A3DB7E5294F6BF69BBF61B86EFA05&java=1&security=6463e657&sc_snum=1&sess=a8f3c4&p=0&rcat=r&rdom=owamailooo.byethost15.com&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=http%3A//owamailooo.byethost15.com/&u=http%3A//cdn.byethost2.com/index.html&t=ByetHost%20Free%20Hosting%20Offer%20Landing%20Page&invisible=1&sc_rum_e_s=922&sc_rum_e_e=929&sc_rum_f_s=0&sc_rum_f_e=909&get_config=true
IP
GET /t.php?sc_project=9327126&u1=AA2A3DB7E5294F6BF69BBF61B86EFA05&java=1&security=6463e657&sc_snum=1&sess=a8f3c4&p=0&rcat=r&rdom=owamailooo.byethost15.com&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=http%3A//owamailooo.byethost15.com/&u=http%3A//cdn.byethost2.com/index.html&t=ByetHost%20Free%20Hosting%20Offer%20Landing%20Page&invisible=1&sc_rum_e_s=922&sc_rum_e_e=929&sc_rum_f_s=0&sc_rum_f_e=909&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://cdn.byethost2.com
Connection: keep-alive
Referer: http://cdn.byethost2.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 28 Nov 2022 13:00:52 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc9327126.1669640451.0; SameSite=None; Secure; Expires=Saturday, 27-Nov-2027 13:00:51 GMT; Path=/; Domain=.statcounter.com
access-control-allow-origin: http://cdn.byethost2.com
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 771349f7ffc70b4d-OSL
content-encoding: br
X-Firefox-Spdy: h2
185.27.134.217
104.20.228.67
142.250.74.164
23.36.76.226