rqtivxzumk.vf1y.art/hwdhz/ow/ZG1samEya3VkbUZ1WkdWbmNtbG1kRUJrZFhKaGJtZHZaMjkyTG05eVp3PT06dHB5enR1YWtuag==
139.59.181.158200 OK 813 B URL HTTP/1.1 rqtivxzumk.vf1y.art/hwdhz/ow/ZG1samEya3VkbUZ1WkdWbmNtbG1kRUJrZFhKaGJtZHZaMjkyTG05eVp3PT06dHB5enR1YWtuag==
IP 139.59.181.158:0
ASN #14061 DIGITALOCEAN-ASN
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (646)
Hash 705daa4d526a436fd846bf6e2e1e84f0
ee14942b4c98017589d5946de9b895eebdd8d31f
cd49d06d318577803f85bdae2fc952e85bd09090031d1d96f4ef600682e63851
GET /hwdhz/ow/ZG1samEya3VkbUZ1WkdWbmNtbG1kRUJrZFhKaGJtZHZaMjkyTG05eVp3PT06dHB5enR1YWtuag== HTTP/1.1
Host: rqtivxzumk.vf1y.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 20:23:06 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=60
Vary: Accept-Encoding
X-Powered-By: PHP/5.4.16
Set-Cookie: PHPSESSID=47dv3o6qisrgdguv3u4dfevsk3; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
refresh: 5
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash cfec3d7283a9b66d2be426ce54d210f3
808c1feb1ba918951d1928c1f6bfc0c253262774
1bad6c06aa3e88dcbc125fc98a6cb753eb2b18d2c8dd61da21d12209aeeda3f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1BAD6C06AA3E88DCBC125FC98A6CB753EB2B18D2C8DD61DA21D12209AEEDA3F9"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10698
Expires: Mon, 05 Dec 2022 23:21:24 GMT
Date: Mon, 05 Dec 2022 20:23:06 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ee088fab9b287e174cfd1f2c735a909f
25c3335b514a36ad1a24d00413d60c3d394f5161
494e96358ff12366213d7cc0f9197648c6c62ec14fa0d2c78732a683fa26b192
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1267
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:06 GMT
Last-Modified: Mon, 05 Dec 2022 20:01:59 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ea206ac3c440825741687351f8c6e4e
2f38dafd8c43dcce2411a0590bc5c02cd6286735
7d7232c8c91bcd18161ba2c9d23e3bff159604e058bd5b3fc1c7fcbcd03a7ee3
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "7D7232C8C91BCD18161BA2C9D23E3BFF159604E058BD5B3FC1C7FCBCD03A7EE3"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7053
Expires: Mon, 05 Dec 2022 22:20:39 GMT
Date: Mon, 05 Dec 2022 20:23:06 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 05 Dec 2022 20:18:30 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 276
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 53341dea33f4f3d9b4966f80589f429a
20f7b07c686c986d2ed1e3e9ad1bb2aef8edaf0d
651683e52cdbc96b289f8f123155f0b96d9f67432689e89156fa56f5a346c6a0
GET /chains/remote-settings.content-signature.mozilla.org-2023-01-19-10-06-33.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: bZlwbmwXuccBNDSMJgv5wGlbl+7LPeO/nLUcXRBdHPUUb0G4O7vk8TMZv0X1bvOKANZk30GGMj2Kz2+/l1Cdkw==
x-amz-request-id: 3YW9K12E7YVT9DXA
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 05 Dec 2022 19:46:48 GMT
age: 2178
last-modified: Wed, 30 Nov 2022 10:06:34 GMT
etag: "53341dea33f4f3d9b4966f80589f429a"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 05 Dec 2022 20:23:06 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.5.1.js
69.16.175.42200 OK 84 kB URL HTTP/2 code.jquery.com/jquery-3.5.1.js
IP 69.16.175.42:0
Hash ad571ea184084783080d0391add24d9f
5a94acbbe3c7dfeadbb5af44b4baf7920243c4b1
5bfb1df44242cef31542b5b193050538e90183b515ffe0b99037b97d1fc42e0f
GET /jquery-3.5.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rqtivxzumk.vf1y.art/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:06 GMT
content-encoding: gzip
content-length: 84374
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-4638e"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670271786.dop018.sk1.t,1670271786.cds260.sk1.hn,1670271786.cds207.sk1.c
X-Firefox-Spdy: h2
rqtivxzumk.vf1y.art/loader.gif
139.59.181.158200 OK 82 kB URL HTTP/1.1 rqtivxzumk.vf1y.art/loader.gif
IP 139.59.181.158:0
ASN #14061 DIGITALOCEAN-ASN
File type GIF image data, version 89a, 630 x 637\012- data
Hash 9e0373c2b4410c49439dfd822c5fd16e
427f86c03751b7e107fd282bbe32be18fc2e0898
05eb745176d79ec27d52d544582483fc4d0f6378c7ed2060be24dfc4e8990668
GET /loader.gif HTTP/1.1
Host: rqtivxzumk.vf1y.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rqtivxzumk.vf1y.art/hwdhz/ow/ZG1samEya3VkbUZ1WkdWbmNtbG1kRUJrZFhKaGJtZHZaMjkyTG05eVp3PT06dHB5enR1YWtuag==
Cookie: PHPSESSID=47dv3o6qisrgdguv3u4dfevsk3
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 20:23:06 GMT
Content-Type: image/gif
Content-Length: 81572
Connection: keep-alive
Keep-Alive: timeout=60
Last-Modified: Fri, 15 Jul 2022 00:50:33 GMT
ETag: "13ea4-5e3cd67cf6840"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Last-Modified, Retry-After, Cache-Control, Content-Type, Pragma, Backoff, ETag, Expires, Content-Length, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 05 Dec 2022 20:08:58 GMT
cache-control: public,max-age=3600
age: 849
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
rqtivxzumk.vf1y.art/api.php
139.59.181.158200 OK 222 B URL HTTP/1.1 rqtivxzumk.vf1y.art/api.php
IP 139.59.181.158:0
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with no line terminators
Hash 2bd90d01dfcf2ad2e29c150decedbdf7
7e2db2050ab6282f3a1c04ea85f92204a8b3e916
dd9b5498b77b4a3b8855a949a84bffde40a8c57c2fbe66cea7e419ee36d0bf9f
POST /api.php HTTP/1.1
Host: rqtivxzumk.vf1y.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 84
Origin: http://rqtivxzumk.vf1y.art
Connection: keep-alive
Referer: http://rqtivxzumk.vf1y.art/hwdhz/ow/ZG1samEya3VkbUZ1WkdWbmNtbG1kRUJrZFhKaGJtZHZaMjkyTG05eVp3PT06dHB5enR1YWtuag==
Cookie: PHPSESSID=47dv3o6qisrgdguv3u4dfevsk3
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 05 Dec 2022 20:23:07 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 222
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/5.4.16
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
rqtivxzumk.vf1y.art/favicon.ico
139.59.181.158302 Found 0 B URL HTTP/1.1 rqtivxzumk.vf1y.art/favicon.ico
IP 139.59.181.158:0
ASN #14061 DIGITALOCEAN-ASN
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: rqtivxzumk.vf1y.art
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://rqtivxzumk.vf1y.art/hwdhz/ow/ZG1samEya3VkbUZ1WkdWbmNtbG1kRUJrZFhKaGJtZHZaMjkyTG05eVp3PT06dHB5enR1YWtuag==
Cookie: PHPSESSID=47dv3o6qisrgdguv3u4dfevsk3
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 05 Dec 2022 20:23:07 GMT
Content-Type: text/html; charset=UTF-8
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=60
X-Powered-By: PHP/5.4.16
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
refresh: 5
Location: https://www.google.com#
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2b9d6a686aa3c4ea24568425e43a5221
d53bb4c9579bd1db78a0520619e888aec79f750f
c38734a8dbe51217d73896c0bf7f5c38c107fd79e0dee24b717f130377e9b5f7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1257
Cache-Control: max-age=133482
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638db4ac-1d7"
Expires: Wed, 07 Dec 2022 09:27:49 GMT
Last-Modified: Mon, 05 Dec 2022 09:06:52 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
199.36.158.100200 OK 56 kB URL HTTP/2 xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (60929), with no line terminators
Hash 4bf2d2802dddedf352ce235e26b197cb
88957a775fefe3475720254fed930491cc26e4da
4dfb2ca79de2c74ac5626301072f0cda559782a62267bf8e29c30d7863d42f14
GET /host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://rqtivxzumk.vf1y.art/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "7047172985cd11928c704d2a25c6be6d852631bed9c5b93f373c3ee197882201-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1670271787.320700,VS0,VE95
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 56293
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/8EklPeV1cd0
216.58.211.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/8EklPeV1cd0
IP 216.58.211.3:0
Hash 4bd4dde72d626e9957cd05ebd53d750c
9546920580ac5f1c9730915531ea2d3eaa10664b
250afcca9ba30b97acfb2afe4bb90263a4150ae8d6a316af85d38467123b8760
POST /s/gts1d4int/8EklPeV1cd0 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
xn--w1ai.web.app/css.css
199.36.158.100200 OK 16 B IP 199.36.158.100:0
File type ASCII text, with no line terminators
Hash 84dc6f6eb165e40e17bfcd25fe05772d
15193ea58dae366371bc3d93b0ea2ef692ec1654
a3248da8f3c61d39eab838800354a10ee1a7bf18c3a7e408aa4bd953f69837a0
GET /css.css HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: text/css; charset=utf-8
etag: "e929f6098de013ac08d8ffd64a567ea65def5c26e2e84aabc6163837953ec660"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.533781,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/logo3.png
199.36.158.100200 OK 18 kB URL HTTP/2 xn--w1ai.web.app/images/logo3.png
IP 199.36.158.100:0
File type PNG image data, 678 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 3d51f71de99e13e052506f0f689f598c
f67ab0dcc9c8ddbe2335fbde6905089f0c23a319
3fb933e5802aaf09445ccd8e754ddfdbac082dc94cd04825adcd01d0d8bf9c79
GET /images/logo3.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "0b35a3a2af14b518f2a494821e756b28af06d8d7be3081f3aa547cf344da0df8-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.535244,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17859
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/barsohu.png
199.36.158.100200 OK 28 kB URL HTTP/2 xn--w1ai.web.app/images/barsohu.png
IP 199.36.158.100:0
File type PNG image data, 352 x 100, 8-bit/color RGBA, non-interlaced\012- data
Hash 45c2b5c8215ab136c877c5a5238494ac
3b721e0659d6f9f6ba81f4761f2ead7641ddc6e1
21b97926c6e8cfb2988f5fbba77009a509a3c97531e29f6bcb1af3000956012a
GET /images/barsohu.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "4e96214e9aecda2a5ae471fcc4df6b5a0de9474605f2bd091cfb3c3df296608f-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.541767,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28254
X-Firefox-Spdy: h2
push.services.mozilla.com/
54.148.77.40101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.148.77.40:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VSprKr7xsU37b5A3YuWCWg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: P6kQm2q0kD4KdyKCkKylGHitYXk=
xn--w1ai.web.app/images/maxresdefault.jpg
199.36.158.100200 OK 58 kB URL HTTP/2 xn--w1ai.web.app/images/maxresdefault.jpg
IP 199.36.158.100:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Hash 676c5644c511e266e1aec2d97b403f7b
49c7712cafd6232f4cc7e9d547a7f3d8e5c4ab91
30b1bdabafb55216b0d6b5a467761e44246e0dd0b801f168cd846319363325b8
GET /images/maxresdefault.jpg HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/jpeg
etag: "6de1ca583125043a52d027c5059feecef470e47ff0b4c0adf95625dcec31ed33-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.542522,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 57992
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1087
Cache-Control: max-age=125776
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:19:23 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
xn--w1ai.web.app/images/OUT.png
199.36.158.100200 OK 11 kB URL HTTP/2 xn--w1ai.web.app/images/OUT.png
IP 199.36.158.100:0
File type PNG image data, 272 x 185, 8-bit colormap, non-interlaced\012- data
Hash a52b5891dc62789722d68460fecd74f1
6026c3d4f638c53d7eda7e6e205bbebd85dc3683
e75f07245dc6bd83d7682511b4707187d1fd0f9af7b27b1392c72e15dbeca3c3
GET /images/OUT.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "906e64556f82b3975f6376407fef0a3ebdd566e6074d89820c05c9eccda9b118-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.543869,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11405
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/11and1.png
199.36.158.100200 OK 13 kB URL HTTP/2 xn--w1ai.web.app/images/11and1.png
IP 199.36.158.100:0
File type PNG image data, 496 x 124, 8-bit/color RGBA, non-interlaced\012- data
Hash ede4032ea690df8f96b35c682d65044e
36730d4b374bef73eb34d49d75e788f06f4d031b
17ec2daa2cd0d5eb12313d36a46359c6ae334db1c6ea71e69338bcf6fe83aae8
GET /images/11and1.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "734c6236e660c41b75e3618598ea3a07c2ec9495414bae72c5143c0b1bf30fae-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.543899,VS0,VE4
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13125
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 6cbf9c21148463ab7d6f0b0c2a55c230
813bf3a12f65c3cb4935576fb8b1a8ea6134215f
16939807204e03c683c2779d288d20c35ef2d4d2f829726545a1226736062e1e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6472
Cache-Control: max-age=149509
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638ddee8-1d7"
Expires: Wed, 07 Dec 2022 13:54:56 GMT
Last-Modified: Mon, 05 Dec 2022 12:07:04 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
xn--w1ai.web.app/images/OL.png
199.36.158.100200 OK 11 kB URL HTTP/2 xn--w1ai.web.app/images/OL.png
IP 199.36.158.100:0
File type PNG image data, 462 x 104, 8-bit/color RGBA, non-interlaced\012- data
Hash 899e6f0b2a17e3afe2db87bdcd0422de
e7228ec5d9b0495be40a975f243e1ff78eb7a2dc
ddb95c100723e3d8addd79744bc672dbe1dfdfba78a26a99cfd42c8542e85c22
GET /images/OL.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "fb0110c32ca02a410818c1d15c59f57a9cbb3188c9cf2c9dd59f78b97d4ea717-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.547933,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11365
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/microsoft.webp
199.36.158.100200 OK 16 kB URL HTTP/2 xn--w1ai.web.app/images/microsoft.webp
IP 199.36.158.100:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1200x675, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash 37f696d1815e5f972a713811aaea2337
447cac16c19d591c5b346a90e679f164ae009951
f8ed981c6df59caadae4405c48fa5db9a4439552b57a9ae073e25461b03b26c3
Analyzer Verdict Alert fortinet Phishing
GET /images/microsoft.webp HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/webp
etag: "ef85d72eb2d4d346dd9962722952949d8454a7d048add7042cb022f1085838f9-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.549520,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 15772
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/bartom.png
199.36.158.100200 OK 13 kB URL HTTP/2 xn--w1ai.web.app/images/bartom.png
IP 199.36.158.100:0
File type PNG image data, 394 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 0b9985803908802f1ddf5d35beac2ae9
42da544de6eed35d4a5dd42e130e2406ef2727d1
dcc7422f1803b6b0d8227403b8de6a957a2889025449b266497c14d5ba457aaf
GET /images/bartom.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "377ea4f8c68d52d2be4d1bd99a5f392278f1c033106ce6f33aa0e26a7c6124c6-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.542542,VS0,VE9
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13214
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/owa.png
199.36.158.100200 OK 1.5 kB URL HTTP/2 xn--w1ai.web.app/images/owa.png
IP 199.36.158.100:0
File type PNG image data, 120 x 38, 8-bit/color RGBA, non-interlaced\012- data
Hash 57c63f8c9d91db551905afe19c28e2fb
6e3738d9efab3caabc6b843430d21fade6735ca4
a782150402e8029730321b43291e7104ce52033059bea111fb546c36e5dc9999
GET /images/owa.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "95800ee9b640c4c63c793f5472a9634589ab390249c5ca9d6ff5ca5141820530"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.534899,VS0,VE22
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1489
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1087
Cache-Control: max-age=125776
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:19:23 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
xn--w1ai.web.app/images/RackspaceLogo.png
199.36.158.100200 OK 6.0 kB URL HTTP/2 xn--w1ai.web.app/images/RackspaceLogo.png
IP 199.36.158.100:0
File type PNG image data, 404 x 125, 8-bit colormap, non-interlaced\012- data
Hash 238edf4344b96a0f4a3c7b80a72809a8
51881bbda93309241434fd8c05534b728be26416
7d942a51c880de0ac4b03d6789b40cc4053621366958f7cee16d2ac07f2a3083
GET /images/RackspaceLogo.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "8df3da2bbcf6fd18fb2a95e88424020b9e55354cb0e32ce99aa91802ae05a28b-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.555221,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 6034
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5899
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Last-Modified: Mon, 05 Dec 2022 18:44:48 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3518
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Last-Modified: Mon, 05 Dec 2022 19:24:29 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4203
Cache-Control: max-age=90719
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638d021f-116"
Expires: Tue, 06 Dec 2022 21:35:06 GMT
Last-Modified: Sun, 04 Dec 2022 20:25:03 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278
code.jquery.com/jquery-1.11.2.min.js
69.16.175.42200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-1.11.2.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32047)
Hash b63c8cb1c4a495ed04e735d25beabd78
0ae68f1c55c227331286ad94403122a5ab4526e1
26ea04aa9c41767051276b819a4aa8c6aa337df4da89872d021862312d478d39
GET /jquery-1.11.2.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-encoding: gzip
content-length: 33262
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-176bb"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670271787.dop017.sk1.t,1670271787.cds238.sk1.hn,1670271787.cds264.sk1.c
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2828
Cache-Control: max-age=89344
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638d021f-116"
Expires: Tue, 06 Dec 2022 21:12:11 GMT
Last-Modified: Sun, 04 Dec 2022 20:25:03 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 278
xn--w1ai.web.app/images/GoDaddyLogo.png
199.36.158.100200 OK 15 kB URL HTTP/2 xn--w1ai.web.app/images/GoDaddyLogo.png
IP 199.36.158.100:0
File type PNG image data, 900 x 252, 8-bit/color RGBA, non-interlaced\012- data
Hash 1e4a07743047dd074daf9c555e3c0ff7
9c9c2a04c55d8d56cca3580f778a06fb1906658f
f9268bd5462e6c7922e5951e25b7cf0f22472b5787166239d25fcad997b454de
GET /images/GoDaddyLogo.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "f9268bd5462e6c7922e5951e25b7cf0f22472b5787166239d25fcad997b454de"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.555033,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 14653
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (23577)
Hash 60c98d24772829b224bcfda5b74516bf
700bfd59c8882323f71f8ee3f17d046aad09935d
5a204ee087e24ca44dba0592f464bb683ae7859e1f5e8a884e2867965215ef9d
GET /ajax/libs/font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: text/css; charset=utf-8
content-length: 4364
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-5cbb"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 1100361
expires: Sat, 25 Nov 2023 20:23:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dzon2PqO%2BRAPtHRlN0gll089IubF%2Fuiij%2FWwxf6DuMsCi8imPiOcGCflW%2FumiakGfzTvVnrlTty7oUsMdlaAqeciS9NU8lb%2FDcP5oUiXQ9O4qI6Q1W0tagA0IMqt29EGs14B9gP8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774f7f716e59b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-latest.min.js
69.16.175.42200 OK 33 kB URL HTTP/2 code.jquery.com/jquery-latest.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32086)
Hash a39e9fcc2a78d5b1ed25b5f853c17a22
f1d1d30d35146a7adee855becba02b776366f169
a0581d3f2c05cfb302f81d2894c114da758e14a290bd4f240c7b63628469ee8d
GET /jquery-latest.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-encoding: gzip
content-length: 33202
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-1762a"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1670271787.dop017.sk1.t,1670271787.cds238.sk1.hn,1670271787.cds256.sk1.c
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/bootstrap-validator/0.4.5/js/bootstrapvalidator.min.js
104.17.25.14200 OK 12 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/bootstrap-validator/0.4.5/js/bootstrapvalidator.min.js
IP 104.17.25.14:0
File type exported SGML document, ASCII text, with very long lines (32057)
Hash 39ceb8901a9fa95460416398cd95404b
499b6276c22fbc306b4b860fff996c844d011c0a
ffa822899dcb705311e3b40bca6f7730a0333b7815aee3e1b70ad3a47c1364cc
GET /ajax/libs/bootstrap-validator/0.4.5/js/bootstrapvalidator.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 12439
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d8f-dab7"
last-modified: Mon, 04 May 2020 16:06:39 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 22484903
expires: Sat, 25 Nov 2023 20:23:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CkNRMJ307ZYfybQ%2BcGqiHEJ4EtlI%2FtS4TF%2BNrnIrn5OxG8Y1T6D5ptweAwpXql3bSH0SMDh4yPDRdzYJDIEjQ4YKOUDxUSm0B%2FelskSLdjKtAF%2FzADsUlLPeeXUmsIq4m%2FwTvGPM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774f7f716e55b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/axios/0.21.1/axios.min.js
104.17.25.14200 OK 4.4 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/axios/0.21.1/axios.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (14271)
Hash b28f7cac34dfd6df3e59a875583b6b07
a303e337b3157a6d9d7ad252a0dd6ac811063791
c05bd00b2c2b864ded6d40104d124933056fa8b2cb3e4d2ba9a5102d1602da4e
GET /ajax/libs/axios/0.21.1/axios.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 4420
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5fe182ae-3813"
last-modified: Tue, 22 Dec 2020 05:22:54 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
expect-ct: max-age=604800, report-uri="https://report-uri.cloudflare.com/cdn-cgi/beacon/expect-ct"
vary: Accept-Encoding
cf-cache-status: HIT
age: 15557866
expires: Sat, 25 Nov 2023 20:23:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BlPodOUvVXbzkaeUQgwdODvX44cmzZ3uFxt7%2FLFw1EUTNUcQZPsSYkfTUR%2BV9dTZZUNRRAfmkZ%2FmCSBJ8xwiFNJsWpOGUv8wD0HOpkLMV869k7JDjYotGYHptNnn6%2Fj8abyrmCWZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774f7f716e57b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
104.17.25.14200 OK 5.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (30837)
Hash 109d1ed85cd01f9cdab73a4cac5bf80d
d6c6498ad46de2d8e2008a8ff68e364ae7f16b32
8b3a74fe462f5b3c0635995fd721a60eb640e237680b0b532b96711f2823e8bc
GET /ajax/libs/font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: text/css; charset=utf-8
content-length: 5631
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03e5f-7918"
last-modified: Mon, 04 May 2020 16:10:07 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 512975
expires: Sat, 25 Nov 2023 20:23:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=CwqU1x6exi%2B7wNQl4tSGtOlqIomCCdQvaQSbmEkJZyL7aHC0rQNvTrhCRsc0vRuhzg8RvoXhxMOkTxn9GcDmRTyqW14XxrRsCnOV%2FGbhFiTlPMZZ4NQlzCHKjI8khxewTlXobfJF"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774f7f717e72b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 83508e2764c69782f1bae91e8b4f62f6
a00ea71e0f3d3be36c287f904ae306e5cb7d32cf
058fcc238e1df7cd76946926f203e4c5cea3f743a259c812199af346c1cbbf43
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 819
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Last-Modified: Mon, 05 Dec 2022 20:09:28 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
xn--w1ai.web.app/images/logo1.png
199.36.158.100200 OK 16 kB URL HTTP/2 xn--w1ai.web.app/images/logo1.png
IP 199.36.158.100:0
File type PNG image data, 678 x 52, 8-bit/color RGBA, non-interlaced\012- data
Hash 3ae94e0e9e41bb11163ef20c191447f0
f88d5b11c9f6385f72b2b50b55cb997fb99ab9ef
b2babccdc0596b77455cc76fd00f51f0244dc50b897da0dec45a189ed8af5ed7
GET /images/logo1.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "0c6a5681acefc4150a905b3f5e3786bdbd7b270d9405e71fa49bce51a8fc2048-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.565131,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 15587
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/22.png
199.36.158.100200 OK 11 kB URL HTTP/2 xn--w1ai.web.app/images/22.png
IP 199.36.158.100:0
File type PNG image data, 742 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 660655ac9869c3a70b5ff23d17d4b3b1
e6e6a10bca4df8ab84fe81ce279a3c2216c340ec
4cf7cb119a0a1f63bc0fae802f8da0ffdfd23492659c03fc95d90b893032dccf
GET /images/22.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "154252794893f7be4870cf985c1f7a6e7fc5dac74e8facbc7b70b0cb9176d709-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.567414,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11419
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash b9e460c077e837add10b7e423b149f6e
cde6854da1c7108d3d6c8184f9a39d2d20ba0c78
874a4babc2bf54d880f94425142d3cce3151d964efd54c8bffec992b064c1be3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1087
Cache-Control: max-age=125776
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Etag: "638d973c-117"
Expires: Wed, 07 Dec 2022 07:19:23 GMT
Last-Modified: Mon, 05 Dec 2022 07:01:16 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
104.17.25.14200 OK 28 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.6.0/jquery.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (65447)
Hash d900ca08873ee57d40616d39a44cc0aa
7ab3ac8b1504b7b914a6e94c979b8390bb492f6a
1eea479cc0abe04a0846f41031207f9511f12ffef017a6109d4efb6f5523465b
GET /ajax/libs/jquery/3.6.0/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: application/javascript; charset=utf-8
content-length: 27938
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "603e8adc-15d9d"
last-modified: Tue, 02 Mar 2021 18:58:36 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 512056
expires: Sat, 25 Nov 2023 20:23:07 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ReoMspoiyg07mR%2FCKsVxifFI3z0tl7tG0HpyIhe5WKgaMuwA3nahtRHhIYitLWa%2FQLAqiYpuTHhDuca%2BXU5Mjjf3kSWZJ7DVCWbMGDdSG9PZ0EOecoZcgOS2Rv68Rs%2FoP5bEbWUr"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 774f7f71ef84b517-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 278 B IP 93.184.220.29:0
Hash 1245db08bc06bdc452fdb41b8e959f26
ba2fa041fbea0e124b6fd418724a46225fac0089
d591926f6495b722a0b545d292f16a342cba87889fd7d4f5ca448c3613760be6
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3518
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:07 GMT
Last-Modified: Mon, 05 Dec 2022 19:24:29 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 278
cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/js/bootstrap.bundle.min.js
151.101.193.229200 OK 22 kB URL HTTP/2 cdn.jsdelivr.net/npm/bootstrap@4.5.3/dist/js/bootstrap.bundle.min.js
IP 151.101.193.229:0
File type ASCII text, with very long lines (65299)
Hash 151629f36761d6fb6d0e0330239884a6
ebb9c30e5565793e2767735f0647bdf26fed4ab5
53c395dd774b12c572c9f1b453f7903c08de32f6958d974bc5db38634a6509d6
GET /npm/bootstrap@4.5.3/dist/js/bootstrap.bundle.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 4.5.3
x-jsd-version-type: version
etag: W/"148b8-qycDEVlyTiQh9v9ccPSOZXq+nTk"
content-encoding: gzip
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
age: 19933252
x-served-by: cache-fra19179-FRA, cache-bma1677-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21785
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/mailapp_logo_141212.png
199.36.158.100200 OK 2.0 kB URL HTTP/2 xn--w1ai.web.app/images/mailapp_logo_141212.png
IP 199.36.158.100:0
File type PNG image data, 256 x 36, 8-bit colormap, non-interlaced\012- data
Hash c3a401e238c96d1054911a884b9864c5
84ce2b4eddf154642705724d7a32a3cff290d889
bb7bafb5f03ad0af8df3f5e0c7d9c872e2e3e162838d8b87a8f6d6b5c6d3df6e
GET /images/mailapp_logo_141212.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "0afc6df680e4a4dee3c467c8b9923d58c0ebcc7ef325698a8fcfa92a3e9c6948-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.572612,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1979
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
104.18.20.226200 OK 1.5 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q1
IP 104.18.20.226:0
Hash fff8950d86540f04f7e336fbaa36574d
5323185579eacb7d59be1e63dfdddaec664f0db9
fe39fb2d7c711e776994ddc32150f40604c1c3443cffde890721fa906a8efa6f
POST /ca/gsatlasr3dvtlsca2022q1 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Mon, 05 Dec 2022 20:23:07 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "9F22E367A1A9A4803E220FA04C39EFBE1DE9B0ED"
Expires: Tue, 06 Dec 2022 07:00:00 GMT
Last-Modified: Mon, 05 Dec 2022 19:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 1474
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 774f7f72387f0b02-OSL
xn--w1ai.web.app/images/mailgun.svg
199.36.158.100200 OK 1.8 kB URL HTTP/2 xn--w1ai.web.app/images/mailgun.svg
IP 199.36.158.100:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 6de9f58f2a2a4b0ef1a77673cfd6cb05
e6d974b9647bd520ad01c17962cb223c876f6fe5
787eeee2f3556bf024e58e0dff03b745a6dfa69ba8cd41df0403bfd45c548e0f
Analyzer Verdict Alert fortinet Phishing
GET /images/mailgun.svg HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/svg+xml
etag: "d6d9a0ddf2b1159d4f7c128adfc2b485eb2700ca4cc46249a979180c1f582d24-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576396,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1782
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/mailprotect.png
199.36.158.100200 OK 4.4 kB URL HTTP/2 xn--w1ai.web.app/images/mailprotect.png
IP 199.36.158.100:0
File type PNG image data, 450 x 112, 8-bit colormap, non-interlaced\012- data
Hash 5a42caf7a3c97538d418ffe87d69fba3
694c1635f4d07010cc72adb66d83641c4ceedfe8
a80643b15ef5d3d689760452ab7411c7d8bf35ad14c1d08de3683134148138a4
GET /images/mailprotect.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "efc7ede72d48127ae388016c96ec4a638eff1f1218bbfc9dc6753bec1ab514a7"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.577074,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4443
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 83508e2764c69782f1bae91e8b4f62f6
a00ea71e0f3d3be36c287f904ae306e5cb7d32cf
058fcc238e1df7cd76946926f203e4c5cea3f743a259c812199af346c1cbbf43
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 820
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:08 GMT
Last-Modified: Mon, 05 Dec 2022 20:09:28 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 279
xn--w1ai.web.app/images/chinaemail.png
199.36.158.100200 OK 14 kB URL HTTP/2 xn--w1ai.web.app/images/chinaemail.png
IP 199.36.158.100:0
File type PNG image data, 403 x 78, 8-bit/color RGBA, non-interlaced\012- data
Hash 261c1fc415feca5208c46d18215e55c2
d46fe9680509d3c0c88f93e9b121aa8a358702ae
ce165eaf376fffbfc96da65c70f0bf2cf946edfb6e1610ab9a69f01f78367b4d
GET /images/chinaemail.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "74382ca485a8944c1a5f1e09eb5749b103a046c6cec3f4235b3fba8c3284375c-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582123,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 13761
X-Firefox-Spdy: h2
kit.fontawesome.com/585b051251.js
104.18.23.52200 OK 61 kB URL HTTP/2 kit.fontawesome.com/585b051251.js
IP 104.18.23.52:0
Hash b630f747c7d5897b44432926424cd274
b32f2efac0b0ff0d22c4df6a167f917147f73f77
8b187705f7efa7c663194b117abe3b550f43015ed2a96d6c3be5d073575ea615
GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fy1Y_im6HdLql7q8NSZi
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 774f7f712ad6b4ff-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/antispameurope.png
199.36.158.100200 OK 11 kB URL HTTP/2 xn--w1ai.web.app/images/antispameurope.png
IP 199.36.158.100:0
File type PNG image data, 900 x 112, 8-bit colormap, non-interlaced\012- data
Hash 4cae1311ecbc584214faed2b87298bdc
52fc6c8055deaed04e5f3f81ce85fb7cde1afc75
0844e99303f95adeac1388f464fe8912e17a3ffdc012538a377a5117e3a995af
GET /images/antispameurope.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "2ada9c64d1e7076e77ab6265bad2708052eed5dccbac46f6c4066b2637a8ad44-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.584215,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 11179
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/centurylink.svg
199.36.158.100200 OK 1.9 kB URL HTTP/2 xn--w1ai.web.app/images/centurylink.svg
IP 199.36.158.100:0
File type SVG Scalable Vector Graphics image\012- SVG XML document\012- XML 1.0 document text\012- SVG XML document\012- XML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (2172)
Hash abcafa6db7f0f092c8ac93bf04fcaaa8
8ec5b8a9e0075b2e57366680ef31cbd5a2cf92dc
f18e10e9d62b80c4c27ad184ff6ca4fd75af629c72b68af7ee500d10769b4185
Analyzer Verdict Alert fortinet Phishing
GET /images/centurylink.svg HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/svg+xml
etag: "6ad96ea84f79935063875f4f5403ed27fe5254d680c687f7f039b272e83e6d97-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.585031,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1932
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/spamexperts.png
199.36.158.100200 OK 7.1 kB URL HTTP/2 xn--w1ai.web.app/images/spamexperts.png
IP 199.36.158.100:0
File type PNG image data, 700 x 200, 8-bit colormap, non-interlaced\012- data
Hash 7cbe4cb366f9df9e04bb23188be58eff
b46aeba29a3855281e81e81a9c3901a4237d2f87
0ef98ab42ed934a36ea6006cac28fe387c7de388f908fc02c4ea241f97393a52
GET /images/spamexperts.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "5d6e8a7e7c739257e244965a087f05b95a77f24593f48d6f34c17ed98cb60a7a-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576417,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7126
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/abchk.gif
199.36.158.100200 OK 8.0 kB URL HTTP/2 xn--w1ai.web.app/images/abchk.gif
IP 199.36.158.100:0
File type GIF image data, version 89a, 450 x 56\012- data
Hash c3fe5606c1671631b1fa46fb9e043f48
c9b17ad9f0284cd753b9b317b4416cc572fdfc24
d1d8bbdd9d6c0dc2860b9a3b83de940afc66d5fbc15689e942fdf9c06d3a623d
GET /images/abchk.gif HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/gif
etag: "5bbdac4fe2ee8822e344d15b3f204695b3691d78a0a307059be7f969d917d14c-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582106,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 7957
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/logo3j.png
199.36.158.100200 OK 16 kB URL HTTP/2 xn--w1ai.web.app/images/logo3j.png
IP 199.36.158.100:0
File type PNG image data, 678 x 70, 8-bit/color RGBA, non-interlaced\012- data
Hash 27f0499d078ae5fc5917ede544f91bc9
342a72c428be05494c0637a15b6d226160836987
043805e55ab390bcbf79369e37583f5bfdd3f3db8ef9875b7fb8a35986c9d35b
GET /images/logo3j.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "c8ea9150fedf4cbac20a363b025abd969225299d9663c89335a871e678c1a474-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.564947,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 15504
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/ovh.png
199.36.158.100200 OK 5.9 kB URL HTTP/2 xn--w1ai.web.app/images/ovh.png
IP 199.36.158.100:0
File type PNG image data, 417 x 104, 8-bit/color RGB, non-interlaced\012- data
Hash 055b91d6d7bb73be499a7ad65f029547
6b3c24253f144d08583b86e0be78fb38a932b910
1c9128d9fc938445476abf489ef140410d03ef8a78291a8f96c627b2ce3bd8e4
GET /images/ovh.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "3a72b2bc6533e7d62651e5362ae1fc3ff563ec6fa1aafccbcf684f7cb83bcaa1"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576567,VS0,VE17
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5938
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/up.png
199.36.158.100200 OK 16 kB URL HTTP/2 xn--w1ai.web.app/images/up.png
IP 199.36.158.100:0
File type PNG image data, 678 x 190, 8-bit/color RGBA, non-interlaced\012- data
Hash a18c055c6b035caca5b02bdc46fbc792
5689bac132713751b506b3d5fcd2ee3c27898219
004db4a44a9fb16ea0f0c5976fdbb20e73cff28ceb8d2ea44544b4348b60eb0d
GET /images/up.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "a7cc6e509a48d70003d38d254d83e19ec95d55c8520dcd4b08488e0c0ec9a171-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.558977,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16480
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/netease.png
199.36.158.100200 OK 9.0 kB URL HTTP/2 xn--w1ai.web.app/images/netease.png
IP 199.36.158.100:0
File type PNG image data, 472 x 107, 8-bit colormap, non-interlaced\012- data
Hash 77f3633d7b2d7c61651b594a6175c969
db2b8bf2bab6f907166e3fa6183c3786774f5ad2
81f84be10a70ff97843fe415b4ce5f823497bc2f7f5253fa7d5de7e6f98368d8
GET /images/netease.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "d257a9a29b79bed0e62ee1dc17cd87bc5675d9d4b5e0729e6523628e0a5712d1-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.573837,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 8995
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/bar.png
199.36.158.100200 OK 17 kB URL HTTP/2 xn--w1ai.web.app/images/bar.png
IP 199.36.158.100:0
File type PNG image data, 366 x 81, 8-bit/color RGBA, non-interlaced\012- data
Hash 130fcc48d7025f2f9611ee27b7c867dc
077121c5864bceaaf3194a94a113c9401c19a979
06553ad171b48d412cfaa957b3bc4fca3f5bc84befc8be86a71ed43945b123ce
GET /images/bar.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "f6741a7381cd8950bda0306908865b7f91744e127f952e6bc6e21c8357ab249e"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.565469,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 16908
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/mail.jpg
199.36.158.100200 OK 29 kB URL HTTP/2 xn--w1ai.web.app/images/mail.jpg
IP 199.36.158.100:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 635x480, components 3\012- data
Hash 1ef726250a750ec5d0d52120ad686666
3b94ee2365ccf63573cbedcfb5470bf6f7e9d5d4
241dd45ec7fbc7e0a8a00432f2474a8b98a389c2c0c6cbfae5f5ded3b058621a
GET /images/mail.jpg HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/jpeg
etag: "9e258451aafcd4389df181a6696653eef4adbc311a191d780d93bc7e8cdc315a-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.570422,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29287
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/namecheap.png
199.36.158.100200 OK 20 kB URL HTTP/2 xn--w1ai.web.app/images/namecheap.png
IP 199.36.158.100:0
File type PNG image data, 871 x 162, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a94ca0c20b4e3554286fdc2b0494731
c162c4b24510bfec6d39bb36566d24b2b7e2fb7e
b5ae57247ab97746b5c97d560d5283d85033154a4d8f6daca1146e8a7050bb95
GET /images/namecheap.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "b70e6d6e25d31aacf3952bc7bd9465d9460258e08184cf050c96fec2ab284e9e-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.572565,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 19473
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/communilink.png
199.36.158.100200 OK 5.6 kB URL HTTP/2 xn--w1ai.web.app/images/communilink.png
IP 199.36.158.100:0
File type PNG image data, 210 x 47, 8-bit/color RGBA, non-interlaced\012- data
Hash 9be1a837c71cae776a54312c376688d5
dc4fe2ae374f9998063c9e823af8a3162e15d93a
3e3d7633600881f807339aa35ef5e56001e6dff4605e05bb79ade9fbd803548b
GET /images/communilink.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "0399bef4e39b8ffe4b2394c3baf71e8069dfb689d9770201f3f7638b126c0ded"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582108,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 5614
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/aliyun.png
199.36.158.100200 OK 24 kB URL HTTP/2 xn--w1ai.web.app/images/aliyun.png
IP 199.36.158.100:0
File type PNG image data, 981 x 338, 8-bit gray+alpha, non-interlaced\012- data
Hash 581dda93a3f8de2ca05263a47af300c1
1843bdfacf0b02463744f6b47c08ec23b4f944d1
bac8eefeffdd53d8ac91e5186af3b422694ebee7b22f8525e66f74868fde9587
GET /images/aliyun.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "8385a706e92c737f354b16f226ea5e468651e8a05edec97e31b972aaff52b18f-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.573418,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 24327
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/barracuda.png
199.36.158.100200 OK 22 kB URL HTTP/2 xn--w1ai.web.app/images/barracuda.png
IP 199.36.158.100:0
File type PNG image data, 690 x 160, 8-bit/color RGBA, non-interlaced\012- data
Hash 815d8d71cea04e79e2536887d2bddf88
285486b63c21836dfca50c1b2c9ea7bbf371af5e
67bb83d1cac3daf7dcc6cfdf0a478d2ca21d2b63bdc4463ca475712c6c9f6043
GET /images/barracuda.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "78e6824de70ecc7ce4aa3fe87476eda41423c305c03623ee1cf0d7ebcd61df31-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.574296,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21958
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/Strato1.png
199.36.158.100200 OK 22 kB URL HTTP/2 xn--w1ai.web.app/images/Strato1.png
IP 199.36.158.100:0
File type PNG image data, 451 x 225, 8-bit/color RGBA, non-interlaced\012- data
Hash 5f1bf0d67252cb2533fcfda286cc574f
c5c5cba03264bf24a6029d04fcbf345d8e670871
f3a2cce6aa8b97fc09ddd4ce8f90679365d16945df086a60ab4f61ee36c68043
GET /images/Strato1.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "e95b2fe49b8a8e8e6371f12b99bed9f4e693691275d657e3b5952dbb9dfc6ef1-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.555612,VS0,VE20
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 22542
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/icoremail.png
199.36.158.100200 OK 32 kB URL HTTP/2 xn--w1ai.web.app/images/icoremail.png
IP 199.36.158.100:0
File type PNG image data, 652 x 126, 8-bit/color RGBA, non-interlaced\012- data
Hash 7f762690281367e7963daac4b8a0b335
45cff9efb4f84076ca2347edb65708cf6cf822a5
9b9169b6bd4d467d5f25f3564b3a7e3ae006244b0e852f14b7e0760ba5c392e7
GET /images/icoremail.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "c98be00a53f95b695f374f2ba335cd7d30313d4329659195133689332b654129-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576466,VS0,VE3
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 31909
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/1and1z.png
199.36.158.100200 OK 30 kB URL HTTP/2 xn--w1ai.web.app/images/1and1z.png
IP 199.36.158.100:0
File type PNG image data, 628 x 192, 8-bit/color RGBA, non-interlaced\012- data
Hash 3eb9aeee5c3136a2a3e5cde51da3c39c
f6bd127965591264e2528ca007e4d9285e7190c1
1ec7504c53d12553c38bba92c345fb09dbe72b3af2051169b3f122ef426055e1
GET /images/1and1z.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "6d10253974bcddcc5461912bd8e881ea86858f3753a250ee3947672b2cfdad4a-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.542708,VS0,VE6
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 30491
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10565
Expires: Mon, 05 Dec 2022 23:19:13 GMT
Date: Mon, 05 Dec 2022 20:23:08 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 83e0936435ad95a15c9ec5ff9520f4fe
a8225ee0d8ae117f977f7ff817c342c62e91b5a9
ef0f5b2ab2055446d4ea8b738f605c3bf835cf72e872d6a9c9a6c9b2917737e7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EF0F5B2AB2055446D4EA8B738F605C3BF835CF72E872D6A9C9A6C9B2917737E7"
Last-Modified: Sat, 03 Dec 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10565
Expires: Mon, 05 Dec 2022 23:19:13 GMT
Date: Mon, 05 Dec 2022 20:23:08 GMT
Connection: keep-alive
xn--w1ai.web.app/images/one-com.png
199.36.158.100200 OK 17 kB URL HTTP/2 xn--w1ai.web.app/images/one-com.png
IP 199.36.158.100:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 630x168, components 3\012- data
Hash 76f3745e5d752b0f916b5c93076ea9d8
7d3b73a315f00852100a2363c6d59aa0ad19d8e7
f35a0490d5c714414526028bae682857484e4433bff82e3b6fdc789c80f3782d
GET /images/one-com.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "1d155eca46add202fef77095da5c12efb380b812e0ee70c5ca5884fd22e560d7-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 4
x-timer: S1670271788.576541,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 17375
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43309032a892c486f9985ef520df696e
36f4682ca6a33ff80ee02129c77e6f27e996ede0
24225ff504f30405d9ec3feb2555c738fcca0d6b265f285aa9c73a64c78a496e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6df54ea7-8915-4ac7-af2b-6a71ce14dbf4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5681
x-amzn-requestid: 8f0d66b8-d532-48d9-9a29-74540cd6ab3a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cltXnEotIAMFqkA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc296-27349a376ff819ab63b04a81;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:41:42 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Uz-wJTZjej3sjP-O68BQ4hB_kkAecG0o7GkeZUan90ZgV87g0Cg_ZA==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 3cd7af07832481c336aa1c93c9b4a6fe.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:41 GMT
age: 81027
etag: "36f4682ca6a33ff80ee02129c77e6f27e996ede0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
use.fontawesome.com/3fa6ba2462.css
172.64.133.15200 OK 863 B URL HTTP/2 use.fontawesome.com/3fa6ba2462.css
IP 172.64.133.15:0
Hash be6644787d7cd2674e7f3190d9169671
125246338989f07ca9d92a19c67d27a426ba735e
fbefffaeb566d79751df58ef2ccb027c3e39cd843c72bd446a550d01f5b9d21d
GET /3fa6ba2462.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:08 GMT
content-type: text/css
x-amz-id-2: sVJwbYiTJityG4bJkpZ9nAotmyt3IBextBBgE1LK6tAvT0hZh2L6d2lu0HRwtOzOkw62VtJlshs=
x-amz-request-id: 783EMG8NQM847KSR
last-modified: Wed, 30 Jun 2021 18:35:04 GMT
etag: W/"366389759ac4b0c0361542c35e6f2cad"
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=rbeKT8g%2Fzc%2BUM4gbiAqgqZPlXgOunBSPDOrczMnk8239JKXuSAGp8qzU%2BRNULJOqUx0JoDM%2FJ56EOqFt0%2BuTguLrdrVXxHUtp0qs6WoA0pa4LS%2FeqJPGD4Sp92EwErUWTziMP8z3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 774f7f73bbb171db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash db1701b7b9d161a0c935bb6e10b17893
22a8c4bd58c729c1abcf794466e8f3231dfb034b
b495524a33e5b1d3ba34cfbe867ada0da956c061370b1fcde06b23a6194a9787
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd528f6ee-d348-431d-8220-5c8b154b2941.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8315
x-amzn-requestid: f1bcc33b-aad9-4d3b-b1f9-49282f2d4fb9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clsAMGVboAMFfxg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc067-13472a097177d4751c8f7a8c;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:23 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 8ugcixaNsXG-AIHYCfoyOWa5zowv2lb4qwWc8o5_7SQc_0w5HW4mBw==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:52:48 GMT
age: 81020
etag: "22a8c4bd58c729c1abcf794466e8f3231dfb034b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
34.120.237.76200 OK 6.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f71032604eecccf0a81f323a5f96a400
f8866d4f3185bcf7871581d75339998b34d6cf6d
d053eedc717d7fd86e621ba948680be16538396d1ba9854b6816626d149b1c57
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9e81e29f-79a8-4af6-b0c7-7f49bfafb17e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6886
x-amzn-requestid: d721caf6-2252-4ede-9533-3d3fcd6cce0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cpsw-FfRoAMFtOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d5b39-7644a195142f6c420ec7eac6;Sampled=0
x-amzn-remapped-date: Mon, 05 Dec 2022 02:45:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RwhNdxS-EBTraqzS_TnCNXj3JXgz5NkO8oLyQaHOhHdtnvBbg4vsRQ==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Dec 2022 02:45:13 GMT
etag: "f8866d4f3185bcf7871581d75339998b34d6cf6d"
content-type: image/jpeg
age: 63475
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c01fe1cccdb3b672bbade6d98217ffe9
a9a529dc9894827f6243a1bf57f81caa4fe88fc2
c43da6212c79a08e22e78e04e99e8f5422e64b4b0a87f30b7907f1b4bc675c71
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fae18d1b5-3b75-4897-bd1b-03651e437c2e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4666
x-amzn-requestid: 850d341f-5ccb-453c-8adf-a8194f8fbdad
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: clr_-GiboAMFwww=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638bc066-766293f2526e637235067aca;Sampled=0
x-amzn-remapped-date: Sat, 03 Dec 2022 21:32:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kmki-SBINSx1kbiIkaSGebdCLrnDeHVhYeotAWzE__CevkNDdfzRGg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:44:01 GMT
age: 81547
etag: "a9a529dc9894827f6243a1bf57f81caa4fe88fc2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/zoho.png
199.36.158.100200 OK 21 kB URL HTTP/2 xn--w1ai.web.app/images/zoho.png
IP 199.36.158.100:0
File type PNG image data, 607 x 136, 8-bit/color RGB, non-interlaced\012- data
Hash feccf1ecc553e63dd181f7b39565735c
e590dc9992407e8b592753dbc8cc730fc66b0dfa
92e24c89f1f4fdef1b62ee62c03fefc644948693964e2be722da467e3f167bdd
GET /images/zoho.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "92e24c89f1f4fdef1b62ee62c03fefc644948693964e2be722da467e3f167bdd"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576455,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21248
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dcb8fe0c4ba323ab2483fa290c291051
6706e02d6b95edc3a33c951f07d04b0fb7415b77
6be68deb3a330955027ec16eaca2cdf4e2776620ffb7cb995922664b24400f02
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F461bc4a6-a90b-41a8-99ce-a502ba9ed21f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8749
x-amzn-requestid: ee03c447-299b-45d5-b8c6-12d4d1dc436d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: co_spHdBIAMFywQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638d131d-0c9805c6112ec9ec6b9d1544;Sampled=0
x-amzn-remapped-date: Sun, 04 Dec 2022 21:37:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tsL8hmcWaBeKYVG2b4g7ebl-sQ0Z5jZaexEfvldfzq9COcOdzqLhUA==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 21:48:15 GMT
age: 81293
etag: "6706e02d6b95edc3a33c951f07d04b0fb7415b77"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24c69d7ef356b352956d6dcbc9f5df1d
2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9
94d068620c34652cb2d24ca8b3cf962febe9606e6d3a33d937fc9d99f176edef
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60dcc231-abb7-48f1-8ec5-e25b31bd100b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10396
x-amzn-requestid: b879fd2e-b6cf-4373-b780-2d97481c45f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cioNbH5KoAMFUsA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a8722-6add7f8e225878473b20c015;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 23:15:46 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ir97GJKaFoW6BNXCcmMqp0JSUd5JhCACyUvLh5G-0BWCDVJsqs7XhQ==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 04 Dec 2022 22:03:01 GMT
age: 80407
etag: "2cc31dc1c5d2d2a8b3a378dce8a1240a79acfec9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/yandex.png
199.36.158.100200 OK 25 kB URL HTTP/2 xn--w1ai.web.app/images/yandex.png
IP 199.36.158.100:0
File type PNG image data, 1280 x 309, 8-bit/color RGBA, non-interlaced\012- data
Hash 095fc4c0eb1501dcd329d35362408898
ef962ad4f3daf40e4dd3d660d391b105a9d2d39f
929889c95c54c420793dd9b6a740f74bb033641876a2d5328cb36c3b9d15b6ae
GET /images/yandex.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "929889c95c54c420793dd9b6a740f74bb033641876a2d5328cb36c3b9d15b6ae"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582474,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 25361
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/GO2.png
199.36.158.100200 OK 38 kB URL HTTP/2 xn--w1ai.web.app/images/GO2.png
IP 199.36.158.100:0
File type PNG image data, 800 x 400, 8-bit colormap, non-interlaced\012- data
Hash 55a959c78cad4276119eb4fba417108c
11cbdb593bb62ecd4668c7e57cd6bfd728f444f7
ec57ff5772e321a27595934831db29f09792cf36b34ddc15bdd5fb4dccddfa1b
GET /images/GO2.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "ade0a872d26c02796324c525c327519e3cca32ea757d4ba98a28cb6819a78a79"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.554443,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 37861
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/sm_logo.png
199.36.158.100200 OK 20 kB URL HTTP/2 xn--w1ai.web.app/images/sm_logo.png
IP 199.36.158.100:0
File type PNG image data, 308 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 54d083d530d52007ac9913a92a0ae88a
ee9136bde3b102856b7f623b8860e3a60ceb1af9
ab7ae3b697c2eaa54dbf1350879bb3eadfdca065454ae7066a7d5b3a7c23b316
GET /images/sm_logo.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-type: image/png
etag: "2ef2c2dc6c4f4d73a701107f14aa1d71257ef1c1742b1ffb19adc32b27bc4b5b"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582180,VS0,VE36
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 20173
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/bar2.png
199.36.158.100200 OK 39 kB URL HTTP/2 xn--w1ai.web.app/images/bar2.png
IP 199.36.158.100:0
File type PNG image data, 748 x 278, 8-bit/color RGBA, non-interlaced\012- data
Hash 1658d73e4fceb5b85e1022618fbc3342
a096a5ea7475cad4d786a70c5b81b61556736f55
200390ad2d0f8a1b95ceb216e0b9f5a171ec733cf5093bed4fea8206aa91d11f
GET /images/bar2.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "70acc3ff12fed48314fff0e2812f733ee38b2034f6520398098cc1363adc8560-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.567733,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 39444
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/3.png
199.36.158.100200 OK 37 kB URL HTTP/2 xn--w1ai.web.app/images/3.png
IP 199.36.158.100:0
File type PNG image data, 792 x 390, 8-bit/color RGBA, non-interlaced\012- data
Hash 326471994590f44c14c1321550dea48e
c205630577bac1d82d347fce050aa17ab4017b67
da18e4c0ee0a8fed59056d7346df3224f15cce670a132715d481b6647862a1ca
GET /images/3.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "49d11b3876f73ea8c85d7d64b958a83ddee85c54ba11440c6b32990c9e4a6285-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.570316,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 36995
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/rediffmailpro.png
199.36.158.100200 OK 36 kB URL HTTP/2 xn--w1ai.web.app/images/rediffmailpro.png
IP 199.36.158.100:0
File type PNG image data, 768 x 117, 8-bit/color RGBA, non-interlaced\012- data
Hash f62dc1b8280086074d775d2603a06c9b
96fa906da64f92c9967c64f5f1e6db12413b7b4e
af2c0727e52fde5796fd0868eda8f5e8a0e08d9fcac9974a02122a73f20af2c7
GET /images/rediffmailpro.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "b0da2b83313a4a3e8c330911303b5ece9b082c11777249ffd40549342fbddfff-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.572564,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 35540
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/netvigator.png
199.36.158.100200 OK 33 kB URL HTTP/2 xn--w1ai.web.app/images/netvigator.png
IP 199.36.158.100:0
File type PNG image data, 1200 x 280, 8-bit/color RGBA, non-interlaced\012- data
Hash 10fd2f0b2238637e2082a5b99f867c5f
e3b87eeed02b12de3d35e9a2beb89cbf75a01ab9
c4cc2785fe2e1a9f39dc1fd1d4c28097c70588aeb776f68ff17a12647f860566
GET /images/netvigator.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "8f078c8e1dff7d244bda9c582792207af10dec51dff0685f0e2912ff77229683-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.574102,VS0,VE4
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 33376
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/mimecast.png
199.36.158.100200 OK 30 kB URL HTTP/2 xn--w1ai.web.app/images/mimecast.png
IP 199.36.158.100:0
File type PNG image data, 495 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 4958b510a2b1a54821ec891d23cb07c9
ed8684bb16a8ec30e2501de870b757fb07c8b1bd
14e449737fa06873031d1d6610b3894f4ff657cdf36ebfc0ce11da4cd04a06b0
GET /images/mimecast.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "f7ed76580c5d98dc77cfe0eab3ae296a35092f9331ad2901bd618b48fe991747-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.577107,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 29944
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/cisco.png
199.36.158.100200 OK 28 kB URL HTTP/2 xn--w1ai.web.app/images/cisco.png
IP 199.36.158.100:0
File type PNG image data, 2400 x 1271, 8-bit colormap, non-interlaced\012- data
Hash effbe2d0e3d07bfcc46e7421244ec438
0c2890973bea9e107f1946c6b8125e8404927493
ce5701cf217fa4c3d4c0920a746cca1215b15985ccea94cfcf52440c82be4ba1
GET /images/cisco.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "e4977c048d6efb4c124b8bd07a82d259e10589225d7d76b8c61b5e7b6639bd6d-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576518,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 28493
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/bluehost.png
199.36.158.100200 OK 40 kB URL HTTP/2 xn--w1ai.web.app/images/bluehost.png
IP 199.36.158.100:0
File type PNG image data, 814 x 230, 8-bit/color RGB, non-interlaced\012- data
Hash 06da96164dd09cc59e3c9f57de45c47c
3c93396efa2ab25c3dc23f98a479cecf0ff97fd4
3493c7680cca7a46d20b5ce6352e449fc28e664ece87623f4f6c210b4cd13faf
GET /images/bluehost.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "2ce313ef4c88404cb3dab7b09f0f7eab1110b81153b3ecf2ee56ac383ef2903a-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.577058,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 39513
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2
104.18.10.207200 OK 18 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2
IP 104.18.10.207:0
File type Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Hash 448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c
GET /bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:09 GMT
content-type: font/woff2
content-length: 18028
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "448c34a56d699c29117adc64c43affeb"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 11/15/2022 10:30:09
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 04d01d90449f2f42e7bd698e7d7e658b
cdn-cache: HIT
cf-cache-status: HIT
age: 181091
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 774f7f7bdda10b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/appriver.png
199.36.158.100200 OK 56 kB URL HTTP/2 xn--w1ai.web.app/images/appriver.png
IP 199.36.158.100:0
File type PNG image data, 1000 x 393, 8-bit/color RGBA, non-interlaced\012- data
Hash 640c49c85ddfb1aa76aefc268c6113bb
83b87149776db2f00eca35c9edfbac333ecd673b
681e1f1e1965015a0fca95805c2e39956ec1dbafff5086fc57d2a3a8aa92a131
GET /images/appriver.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "c4ed6d5dd87156f9fb703b957327ef3a2b92487e0a241ba9b647ae6262a760c7-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582034,VS0,VE1
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 55719
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/amazonaws.png
199.36.158.100200 OK 59 kB URL HTTP/2 xn--w1ai.web.app/images/amazonaws.png
IP 199.36.158.100:0
File type PNG image data, 1200 x 451, 8-bit/color RGBA, non-interlaced\012- data
Hash 2f1043823691ea5665f89fec63e1937d
7d3abf8935059d0b19d5b1f4a94447bc9910a72f
d7858382ed4e20e2adb0291a4c5c7d4bc659345a0ebe0652fb697f92a6e1fc55
GET /images/amazonaws.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "d7858382ed4e20e2adb0291a4c5c7d4bc659345a0ebe0652fb697f92a6e1fc55"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582166,VS0,VE4
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 59085
X-Firefox-Spdy: h2
logo.clearbit.com/durangogov.org
54.192.99.42404 Not Found 1 B URL HTTP/2 logo.clearbit.com/durangogov.org
IP 54.192.99.42:0
File type very short file (no magic)
Hash 68b329da9893e34099c7d8ad5cb9c940
adc83b19e793491b1c6ea0fd8b46cd9f32e592fc
01ba4719c80b6fe911b091a7c05124b64eeece964e09c058ef8f9805daca546b
GET /durangogov.org HTTP/1.1
Host: logo.clearbit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xn--w1ai.web.app/
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/plain; charset=utf-8
content-length: 1
date: Mon, 05 Dec 2022 20:23:09 GMT
server: envoy
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-content-type-options: nosniff
x-cache: Error from cloudfront
via: 1.1 67d9c6999f4bc9c9c60e1e5f24b316e8.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN1-C1
x-amz-cf-id: L_VXk5yeg-C1N2Rdv-MwCiYrKSZZ1Yw22DxC03lrydU-c-kG1s_tlg==
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/mailhostbox.png
199.36.158.100200 OK 64 kB URL HTTP/2 xn--w1ai.web.app/images/mailhostbox.png
IP 199.36.158.100:0
File type PNG image data, 1669 x 306, 8-bit/color RGBA, non-interlaced\012- data
Hash 5680bf94f4ce1bbb7994dc06c0db749b
929e5950a0a631b4a71005029094aeb44d183b31
efa41e84542ead7da829375f6b3610fc2e251eaa86058540528b1f06b9407dd2
GET /images/mailhostbox.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: gzip
content-type: image/png
etag: "efa41e84542ead7da829375f6b3610fc2e251eaa86058540528b1f06b9407dd2"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.582065,VS0,VE22
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 64291
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/Strato.jpg
199.36.158.100200 OK 93 kB URL HTTP/2 xn--w1ai.web.app/images/Strato.jpg
IP 199.36.158.100:0
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=342, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=1594], baseline, precision 8, 2070x718, components 3\012- data
Hash 6b8197f9335b373f3ddf14bf22b84e9a
2230868789538a86f2da92f0c848e77727890765
0894a6e5a8eefcebf815197c9469564e9191ecf13e9e4852d676a4c1cecd6073
GET /images/Strato.jpg HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/jpeg
etag: "934a510f9e98f521ce22443fa919b81f7cd1280c5a6f28115e7e0df7a1ae786e-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.558995,VS0,VE9
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 93088
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/RackspaceEmail.jpg
199.36.158.100200 OK 91 kB URL HTTP/2 xn--w1ai.web.app/images/RackspaceEmail.jpg
IP 199.36.158.100:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x630, components 3\012- data
Hash dc5e311824b35add3651eda6de639804
23cad136daa848aae98e8cbdb38cc2b19f043acc
1e9af344cdf2d5971f6a10c711e5a6edacc31416b4e075fcf42929d1689e4041
GET /images/RackspaceEmail.jpg HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/jpeg
etag: "96af5e82e8a5ee845369cb301c2ef0b1e7a119ee95facaa89e6b725692b56368-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.555001,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 90786
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/networksolutions.png
199.36.158.100200 OK 93 kB URL HTTP/2 xn--w1ai.web.app/images/networksolutions.png
IP 199.36.158.100:0
File type PNG image data, 1014 x 253, 8-bit/color RGBA, non-interlaced\012- data
Hash 271a3367da03a10a63a03c0a3cbbf137
a15e29a0cdbe2ec240a24d5f17a891ba864892dc
e4eb0c4d76c8d889a979015cf2c6b52286ca6df6886ac9ff44b70068bd0519c7
GET /images/networksolutions.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "c551841a655c8c3da0cfaddddfad96d5eb632873e4aa703de901c602ca56c5d5-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576592,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 93153
X-Firefox-Spdy: h2
xn--w1ai.web.app/images/proofpoint.png
199.36.158.100200 OK 126 kB URL HTTP/2 xn--w1ai.web.app/images/proofpoint.png
IP 199.36.158.100:0
File type PNG image data, 3356 x 646, 8-bit/color RGBA, non-interlaced\012- data
Size 126 kB (125512 bytes)
Hash 64a7f198a5cc73584923b1e5d6126520
3c5b5f1dc5bb8bf99f3d53bc5876daa3a09a1c85
3a0fb159431ff0d7bf2d324bdccdd01aecb65335a4bcdceb7f21fbf0130258a7
GET /images/proofpoint.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "8f1990f3f7636c8e83f3d6c812ba39fc2c0c99f4970f40202bb695d259d4c6ea-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.576493,VS0,VE2
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 125512
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 2e388f1ab4ec88104f57cf23944ee684
39178c45ed645709cc388d5790b1b58a3272a62f
e33b88f6f77d90b65a8fed943a45623e51f1efbdae401a1652f24be68408dba0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/s2/favicons?sz=64&domain_url=durangogov.org
216.58.207.228301 Moved Permanently 334 B URL HTTP/2 www.google.com/s2/favicons?sz=64&domain_url=durangogov.org
IP 216.58.207.228:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash c24ef9ed6b68ccf97b38ddd399043751
c3f1dc81a8bfb63977804efbe3f52a71c09f3150
1bc265e71deb89a97924b695e4715528ff9ffd553d3e4f2a4cb098bfc576be35
GET /s2/favicons?sz=64&domain_url=durangogov.org HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://durangogov.org&size=64
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Mon, 05 Dec 2022 20:23:10 GMT
expires: Mon, 05 Dec 2022 20:53:10 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 334
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 8ead0ac4ce19cef2471bae0458759d89
af02fd3fcd2e10cfa2458407c0c2e59a43e18517
507b93c64bab73e393cf8d8131415ef4d4b01e65e0f2ab73597715197845e75e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://durangogov.org&size=64
142.250.74.164200 OK 3.6 kB URL HTTP/2 t3.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://durangogov.org&size=64
IP 142.250.74.164:0
File type PNG image data, 48 x 48, 8-bit/color RGBA, non-interlaced\012- data
Hash 08cd52d0c6264033c483b99fdf6a6e7d
a30b25c5585f5bc3414233f8e23a622fa93f7388
0dcaa233dd351f677190c5bc423e458694c83c9171bdc458ae7edafa89c27750
GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=http://durangogov.org&size=64 HTTP/1.1
Host: t3.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xn--w1ai.web.app/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://www.durangogov.org/images/favicon.ico
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 3573
date: Mon, 05 Dec 2022 20:23:10 GMT
expires: Mon, 12 Dec 2022 20:23:10 GMT
cache-control: public, max-age=604800
last-modified: Wed, 22 Dec 2021 08:48:27 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 79c225db327a78b782f5a9512b07eaf0
398a1be3a70264d959146d6670d2ca54cdf4e91a
8539ea44d81775448ae8c6179d54d8a397c559b112291fa78abcf6ac6c480815
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 05 Dec 2022 20:23:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
xn--w1ai.web.app/images/1.png
199.36.158.100200 OK 1.2 MB URL HTTP/2 xn--w1ai.web.app/images/1.png
IP 199.36.158.100:0
File type PNG image data, 3360 x 1778, 8-bit/color RGBA, non-interlaced\012- data
Size 1.2 MB (1216025 bytes)
Hash fd1c3db6a6c2dc65a80c147a4fbe0571
0ea4848c436eb9338a605662391baf3fa153947c
d7bd67d9da3b58572619817a7ff4285a4a6fed1da158e91a6009a2040d11f60c
GET /images/1.png HTTP/1.1
Host: xn--w1ai.web.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/host:-webmail.durangogov.org:2801?jWEHefbBpmaAcTYPKJNu5sXzkv2U987xg6FGDSdnQZVMw4yChr
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=3600
content-encoding: br
content-type: image/png
etag: "c3c983ec420dc49a8556d150cd9d05d194bfa439b15da9a480e4727f2ab01e33-br"
last-modified: Mon, 26 Sep 2022 07:59:19 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Mon, 05 Dec 2022 20:23:07 GMT
x-served-by: cache-bma1652-BMA
x-cache: HIT
x-cache-hits: 1
x-timer: S1670271788.568849,VS0,VE4
vary: x-fh-requested-host, accept-encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 1216025
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP 104.18.10.207:0
GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 11/18/2022 06:18:41
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 863
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1f71a336e0a11a138badb2df883ca2b0
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 774f7f712a5c0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251
IP 172.64.169.22:0
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xn--w1ai.web.app/
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:08 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 6fc6ff9b881f0fff41ff95cfddcc92ea.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR52-C1
x-amz-cf-id: 2f4Dh55TjXf7iMNAADsqNdUJuLq6UOKElFpTVRFaxfVyJB-LRsgBYg==
age: 190926
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=L4XPtQ%2FaHSZsCA%2BmwhSV722zjo1kA3fdUiUwNl7ymKUF6lNoCc23S2qzkRG6qoBxGazHM1WiVD%2Fp8bB%2FmP8rlZ6snOohy%2FfjjFsjXXxOL7kHrtrEh562bpc0q3fdIyDcPajbytGq4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 774f7f73487506c9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/3fa6ba2462.js
172.64.133.15200 OK 0 B URL HTTP/2 use.fontawesome.com/3fa6ba2462.js
IP 172.64.133.15:0
GET /3fa6ba2462.js HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:08 GMT
content-type: text/javascript
x-amz-id-2: yf4s2fW1HJc1nozTMvY46WZe06ZGnqs9nnLQ2RwbFJx9+K+gLKW+HebCL4sFxgQgZveP0G+GAMI=
x-amz-request-id: 9KQ2TZEVHSY4MBC1
last-modified: Wed, 30 Jun 2021 18:35:04 GMT
etag: W/"bdfa9d3207034749e3bfc269c11d9a97"
cache-control: max-age=1800
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hFVyLCs%2FdppKg2gqWCb%2BGa4wsHUnUMxWY6vcB6apYVQbQOtBRTLd%2FGxSOWNh54wJn48Y9RpTD4cjILFqTrYmD2VQ0tD6gr1w5uxv70zoWlkPL2ljeuLPYkYzbHItgso587hDxLqq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 774f7f7208d671db-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
172.64.169.22200 OK 0 B URL HTTP/2 ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251
IP 172.64.169.22:0
GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://xn--w1ai.web.app/
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:08 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 2fe8f7f5aca4ab098dc7bad8e97a06dc.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: PxaRaav4E53wmISxvY5KXqIIv9DSK-_G_JnWYNCyUmAlC77lrtkWvw==
age: 190926
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tsh8iTiY0IQdoHzrCry2k3q1t5VZ4fgVRv539umGZZqg4LpQvS%2BoxGOBvoqHF8O5TBWvP8so0986pHgqHMFqe6vkijeWclvHi6uwbBylmDraJDC9oEKCBeaeOcyTce3i0naBy%2BfI%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 774f7f73487006c9-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
104.18.10.207200 OK 0 B URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP 104.18.10.207:0
GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://xn--w1ai.web.app
Connection: keep-alive
Referer: https://xn--w1ai.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Mon, 05 Dec 2022 20:23:07 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 08/20/2022 02:31:21
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 756
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: bf0a59a73a16db20fd2d3454f369768f
cdn-cache: HIT
cf-cache-status: HIT
age: 354321
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 774f7f713a6b0b45-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2