food-foto1.web.app/
199.36.158.100301 Moved Permanently 0 B IP 199.36.158.100:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: food-foto1.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
Server: Varnish
Retry-After: 0
Location: https://food-foto1.web.app/
Accept-Ranges: bytes
Date: Fri, 02 Sep 2022 06:16:36 GMT
X-Served-By: cache-bma1670-BMA
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1662099396.453618,VS0,VE0
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10526
Expires: Fri, 02 Sep 2022 09:12:02 GMT
Date: Fri, 02 Sep 2022 06:16:36 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 02 Sep 2022 05:41:41 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: H9aBckXfUyhRYkSvAviiLuvRPIyh7-N4ESk0AC2MTZWykYm0nHaZVg==
Age: 2095
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 02 Sep 2022 01:15:17 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: u086qpCYcbiuCT4k8Ss4mt3yOphjujQsRgWvZFUTLEi_Q3HJy_b04g==
age: 18079
X-Firefox-Spdy: h2
food-foto1.web.app/
199.36.158.100200 OK 10 kB IP 199.36.158.100:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (3638)
Hash a57fb8bf0c6279b2c7b4292e0d3c9ee7
3037423f4c61020a25a81704a2b3c07ad6cd7112
8f1e7b6d0c02aff416d0dcc0517283b99704961403321f69fcd1f73a94b4989f
GET / HTTP/1.1
Host: food-foto1.web.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
cache-control: max-age=3600
content-encoding: br
content-type: text/html; charset=utf-8
etag: "2b60b776b403e09ca4cc3ef60deabcda392b2a9b7abd7744477defed45879e67-br"
last-modified: Tue, 22 Sep 2020 08:46:51 GMT
strict-transport-security: max-age=31556926; includeSubDomains; preload
accept-ranges: bytes
date: Fri, 02 Sep 2022 06:16:36 GMT
x-served-by: cache-bma1656-BMA
x-cache: MISS
x-cache-hits: 0
x-timer: S1662099397.763785,VS0,VE88
vary: x-fh-requested-host, accept-encoding
content-length: 9983
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Sep 2022 06:16:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4int/7ZBQLSBvJ5A
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4int/7ZBQLSBvJ5A
IP 142.250.74.3:0
Hash ab153424e36fa47f8490d980abdb201f
316cad9bbf47c0be49d216d30026b30344fefd85
007c33d176b3d912b41176ffdc5267c6e944e1bec262053854502ccca990d8d9
POST /s/gts1d4int/7ZBQLSBvJ5A HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:36 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jquery.com/jquery-3.2.1.slim.min.js
69.16.175.42200 OK 24 kB URL HTTP/2 code.jquery.com/jquery-3.2.1.slim.min.js
IP 69.16.175.42:0
File type ASCII text, with very long lines (32012)
Hash 30f5157a965bc792a83e9bacfe265f03
8330886371fe27f3cbac509e0ac9712207574c66
4d12cab1f84ec2ac780bc8e0d865d9c61025be579c78d6532d76f0574d17fca0
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:37 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1662099397.dop072.sk1.t,1662099397.cds071.sk1.hn,1662099397.cds235.sk1.c
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2e5114156ac45cec856f3ea7f45872
011859d6358ad9298b557c1a4b33b80a7a5411ab
3a17c68f9f6cb51ef5c39157a5cae6526f7efae019cc9ae96706da80aea667da
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
img05.shop-pro.jp/PA01105/353/product/23027171.jpg?20100916113601
143.204.55.15301 Moved Permanently 183 B URL HTTP/1.1 img05.shop-pro.jp/PA01105/353/product/23027171.jpg?20100916113601
IP 143.204.55.15:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e4e384d6672787c1bb2a9b500114f1f5
cf909e7937cd3f312c434367b732a53d7a6cbf14
80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /PA01105/353/product/23027171.jpg?20100916113601 HTTP/1.1
Host: img05.shop-pro.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Fri, 02 Sep 2022 06:16:37 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://img05.shop-pro.jp/PA01105/353/product/23027171.jpg?20100916113601
X-Cache: Redirect from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: u9yoBeJsMHG9cpZmGQ3PaDERFIJia-oPYmvA-Qdej3MJlLm_L_ZtkQ==
ocsp.globalsign.com/gsgccr3dvtlsca2020
104.18.20.226200 OK 1.4 kB URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020
IP 104.18.20.226:0
Hash 76bdeba335bc031f3c43551672751f36
4af7df12950f32d11780417d2a4ca5bbe254e3e7
09d2382d28c32edef72e154f252c03a79992c54f2ebcceaf0d3fa8256359761d
POST /gsgccr3dvtlsca2020 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 02 Sep 2022 06:16:37 GMT
Content-Type: application/ocsp-response
Content-Length: 1414
Connection: keep-alive
Expires: Tue, 06 Sep 2022 03:37:35 GMT
ETag: "4af7df12950f32d11780417d2a4ca5bbe254e3e7"
Last-Modified: Fri, 02 Sep 2022 03:37:36 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 2363
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 74441e317e21b515-OSL
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash d0fc85a70658ba6f00be4e3265b2ae9f
04dba6f9cbfef7bccbf5ab6e1ea19ee7c3299ccb
a6d088c355a1dd20b325a8274bbf5e88994bd0063a9b8dc0cc5df00da39857fc
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 06:16:37 GMT
Server: ECS (dcb/7F15)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: ShoXTuuo_1sr9rJKeWKfnStcHvZxzxI3W2w99h_GVJ-Ky-0UysBlVA==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Cache-Control, Pragma, Backoff, Last-Modified, ETag, Expires, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 02 Sep 2022 05:38:16 GMT
Cache-Control: max-age=3600
Expires: Fri, 02 Sep 2022 06:08:44 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: emhF91kxwljppplXEiLBqcqoKRqT11RKJrZ78m1OuMcm7eT-5WFrHw==
Age: 2301
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e43c3a3b3038bda4a0855be0a5d7810d
4b139f22a18c9f42c137c22d3b18a4c75b9a7638
3f4b368e3131e4665942b22c121ba157e2e1a6c1a4ba29e9bd3bb5779e806861
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F4B368E3131E4665942B22C121BA157E2E1A6C1A4BA29E9BD3BB5779E806861"
Last-Modified: Wed, 31 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21033
Expires: Fri, 02 Sep 2022 12:07:10 GMT
Date: Fri, 02 Sep 2022 06:16:37 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 2eb022bbcb69557dc09477b624814e87
6030f2c630a01fbc027c887d31e696f84cc60c97
d7a508e276f0ca1b58b6af39720fb7ebb26fb38df50a159eb82d1d2542610b85
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6143
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:37 GMT
Last-Modified: Fri, 02 Sep 2022 04:34:14 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
pl15573758.passtechusa.com/9f/0c/38/9f0c389975096fc9ad21ec57d18030b1.js
192.243.61.225200 OK 13 kB URL HTTP/1.1 pl15573758.passtechusa.com/9f/0c/38/9f0c389975096fc9ad21ec57d18030b1.js
IP 192.243.61.225:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with very long lines (37118), with no line terminators
Hash 72261831d66f6e5fd03ea4f4c04b3ee2
e4ac3efaa5a9cfadd0483333c4079f0988bb06a1
3e30517ef7accc5ef5078ed05c0a545c2650e409e35008cd5c98ffb73745d334
Analyzer Verdict Alert fortinet Malware
GET /9f/0c/38/9f0c389975096fc9ad21ec57d18030b1.js HTTP/1.1
Host: pl15573758.passtechusa.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Fri, 02 Sep 2022 06:16:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d37204e0631e5bade5e6b078c7bc9357
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash b019ba472c2b1d5491e5e72c150878a2
e7e764d18764fcbf7a6d6440d740d3cbd916468e
4076ef6e1b3d631468ed0e3a567dfa4c1c4de437852eada1cc658b3640cdad69
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 06:16:37 GMT
Last-Modified: Fri, 02 Sep 2022 05:27:39 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1ttAiaodvxc6PWQGrYwA1OCx6zuhcQvx22xHNY0oAWEeQN9MSSVRtg==
Age: 2938
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9701108566a642d1bd1ef71904e6da61
8a2c1fd3be6d1d7130e57b9179236a4d47d8dff1
8b697e11b6252743b248b8881a202829fc6838aa3d5c6f9eb0a056c84e090366
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8B697E11B6252743B248B8881A202829FC6838AA3D5C6F9EB0A056C84E090366"
Last-Modified: Tue, 30 Aug 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21554
Expires: Fri, 02 Sep 2022 12:15:51 GMT
Date: Fri, 02 Sep 2022 06:16:37 GMT
Connection: keep-alive
simplewebanalysis.com/stats
3.127.140.33200 OK 40 B URL HTTP/2 simplewebanalysis.com/stats
IP 3.127.140.33:0
File type ASCII text, with no line terminators
Hash 7a736f890ca9dc42820723c44d94833b
99b056f6fb0c06d7156bf8e19a51ad1929233d62
f7a941f890cb1dbde7ab8f03607194f0f3936546957b7fe6ca1f431c894cdb15
GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:37 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://food-foto1.web.app
access-control-allow-credentials: true
set-cookie: uid_id2=a462a2ab-233c-4b96-b05f-236c1054d97a:2:1; expires=Mon, 30 Aug 2032 06:16:37 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash 9a93b3f435c1acadd61f859834532aaa
2b557b8f7829ae19aaee8da5dc48b3d22176052e
a8ef5e5a12ec4307f6175841dfb7d67bcf0f6f58d713fcb61f2185282be66151
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Fri, 02 Sep 2022 06:16:37 GMT
Server: ECS (dcb/7F14)
X-Cache: Miss from cloudfront
Via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: OSzF3HcMJGqCB9rBJDbU3Obi4256-Tuza-elIRCMRR5zsUaGqTHKEw==
image2.homes.jp/smallimg/image.php?file=http%3A%2F%2Fimg.homes.jp%2Fz58b2rq8gbfb9lj.jpg&width=640&height=480
54.230.111.8200 OK 32 kB URL HTTP/2 image2.homes.jp/smallimg/image.php?file=http%3A%2F%2Fimg.homes.jp%2Fz58b2rq8gbfb9lj.jpg&width=640&height=480
IP 54.230.111.8:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 640x452, components 3\012- data
Hash 74570086ec31972a3f164791fa8b6695
322e1229761b0bcd9bfc92401a564d77f605f209
c7c1a1ec9079eccb54975e3a62471c03711647eb00d4cf13f84e83e99ca12448
GET /smallimg/image.php?file=http%3A%2F%2Fimg.homes.jp%2Fz58b2rq8gbfb9lj.jpg&width=640&height=480 HTTP/1.1
Host: image2.homes.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/jpeg
content-length: 31635
date: Fri, 02 Sep 2022 06:16:37 GMT
last-modified: Thu, 09 Jul 2020 03:01:33 GMT
etag: "8071f6ae2fdade4fa77ce1ac25ffa485"
access-control-allow-origin: https://kodate.homes.co.jp
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: x-csrf-token,DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
x-envoy-upstream-service-time: 153
x-cache: Miss from cloudfront
via: 1.1 07d5d44815808d5d5a6f43984a987698.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: ZwdodnY2NJ7dJJlj490bdDsWY9v3aKU0nqBdDSC6_5s-ffYgZo_fJA==
X-Firefox-Spdy: h2
img05.shop-pro.jp/PA01105/353/product/23027171.jpg?20100916113601
143.204.55.15200 OK 20 kB URL HTTP/2 img05.shop-pro.jp/PA01105/353/product/23027171.jpg?20100916113601
IP 143.204.55.15:0
File type JPEG image data, baseline, precision 8, 550x401, components 3\012- data
Hash bb084b0bb2ccebffd4e2949f7eeb46f7
2b57c5697dd7ed9572852f534ca8635c464a184d
3f1355f7554fab64f2bd6b97d2ad8c3b638f4b69428d3483496af47caa75bebe
GET /PA01105/353/product/23027171.jpg?20100916113601 HTTP/1.1
Host: img05.shop-pro.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/jpeg
content-length: 19961
date: Fri, 02 Sep 2022 06:16:37 GMT
last-modified: Thu, 23 Jul 2015 22:28:20 GMT
strict-transport-security: max-age=15724800; includeSubDomains
expires: Sat, 03 Sep 2022 06:16:37 GMT
cache-control: max-age=86400
x-cache: Miss from cloudfront
via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 31rGuT9XPygTnlVT2viqL7wnA7N7Cj9sXb5XyTiBx3ONItCmKvPFcA==
X-Firefox-Spdy: h2
push.services.mozilla.com/
35.162.110.205101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.162.110.205:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xigx6+G3NCFznXYiRfy2kA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: FFw8FL9emICRn/r+IDtTgCM7Wu8=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5750c2d8ad348838b41b96ebb27b0b81
86526a56637555a0463df607b7b5cf565a439f27
5cbde2bd32be846c5afb1fce35b0f7de0c4aeec9de4213ddd118467ea70c3e62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.statcounter.com/counter/counter.js
104.20.228.67200 OK 15 kB URL HTTP/2 www.statcounter.com/counter/counter.js
IP 104.20.228.67:0
File type ASCII text, with very long lines (43632), with no line terminators
Hash d7f067cda22cace195fc8c7f6e59ef5b
7b89adb127a94041d6adfafe4f232b331e03e3a1
c3247cec226dda1e979ec03b098b6e0cd7ee6fcc99715ce0411024ae246f09d4
GET /counter/counter.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:38 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Thu, 01 Sep 2022 16:11:50 GMT
etag: W/"6310d9c6-aa70"
expires: Fri, 02 Sep 2022 10:43:45 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 27173
server: cloudflare
cf-ray: 74441e36ef160b41-OSL
content-encoding: br
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 12f00eac4bda78b5d4c4bc00e96be439
5d6d88dbf72f208bc33c9af693440aec02e5f11c
4a85dc99793413780fdfde032e83995c0a15775eb09123f53a1ba9b789f91a55
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4A85DC99793413780FDFDE032E83995C0A15775EB09123F53A1BA9B789F91A55"
Last-Modified: Wed, 31 Aug 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5472
Expires: Fri, 02 Sep 2022 07:47:50 GMT
Date: Fri, 02 Sep 2022 06:16:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22bc4d5a-9f0a-4b9f-a3a8-5d297d24ea9a.jpeg
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22bc4d5a-9f0a-4b9f-a3a8-5d297d24ea9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b01e38b12bffb2f525351913eaa246cb
b7f8c0db9e2ddc795726b77b8f8f21037611fca8
e06e127b8ab197f09cc1b4a18d643908aef03898e86a80ca5f901865bfdbd5fd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22bc4d5a-9f0a-4b9f-a3a8-5d297d24ea9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7174
x-amzn-requestid: 6b46447e-a28e-4ae8-978e-6729da4aff62
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzL6_FraoAMFQIA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126ac-67d9e46104e9215a6f13c224;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2i14aRjpjm1-vRDgZ_8YpQl8Qhur_k3O69OG7XlQhwumXksEGXiKZQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:32:42 GMT
etag: "b7f8c0db9e2ddc795726b77b8f8f21037611fca8"
content-type: image/jpeg
age: 27836
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp
34.120.237.76200 OK 9.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a6c03a9391cf529bf7354ef49730bf29
05e3b1ca0471c4a754beefd5fa5cf88b8d86c141
c0f03851ec2bb7dce175820e2d89112d4149c2bedee10b82ea7a751ca0fdc134
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F409dfca9-6638-46e3-bd6c-98a42f043bc4.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9040
x-amzn-requestid: 24ba8357-3dbc-4609-8998-a358d3b4c4cd
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLleHKxIAMFqFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112622-2b67e5bd14e08d5c3ccf352f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LyGeYOyhuVfBGe8YYic7WNZAkn5t5g9XSldntgG11pVJa7N1r7zHSA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:51 GMT
age: 31127
etag: "05e3b1ca0471c4a754beefd5fa5cf88b8d86c141"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
34.120.237.76200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 24d848f7606889b048b6334e70d8a5e0
85239ef4f2fee8d3345e599bc942cab63ff3aaf6
da6cf33b440b51f72a70f309d62fd581aed246b6a78b8f329fa3899db15ff86d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd1bf889-bcbe-4ad4-950a-a32b2f875537.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5889
x-amzn-requestid: 42237574-f86e-4ece-b986-6d0c5910fcc5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMVgHajoAMFmXg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112756-48ff9d98464cf3c9680d97b4;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:42:46 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _7BBSlQQucoO5poncTYuX4fcmS4WFg3UcVFXalckGCCNFKJ0h5UpsQ==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:31:42 GMT
etag: "85239ef4f2fee8d3345e599bc942cab63ff3aaf6"
content-type: image/jpeg
age: 27896
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46f649a4-e4bd-4029-a6eb-fb8b7b66d943.jpeg
34.120.237.76200 OK 3.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46f649a4-e4bd-4029-a6eb-fb8b7b66d943.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1594505ac80a2d787d918c39c8ddc7d1
9df71dbf1cfc4501fe364875aec931b1d4cf966b
eadc0f6f8ffb5337db910ddc8e73040a9d000c8af3f61ff57e901e5a45f9d9c0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46f649a4-e4bd-4029-a6eb-fb8b7b66d943.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3283
x-amzn-requestid: 8567846c-e747-40ce-9129-72714bb0ef33
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzMBqF5CIAMFnzA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126d7-2726b25630a7935048414ad9;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:40:39 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: nX9drLFEO1J-Kb2E5t2qrr3pkpyxlL5KTqvKLKhycFLeYUV0ns7UcA==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 02d90bf99fd6253b329a53c82f19e224.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:10:09 GMT
age: 29189
etag: "9df71dbf1cfc4501fe364875aec931b1d4cf966b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cab49f59207f816d98a21cd3fc2c37d1
8a9278f8ff5d149420673649878ca1ee266a0783
aebe0748f049bcb801be83459d4bae66b9c1453de3b0ea7e6a63bea88b6e7a5a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3cef8f6-078d-43f5-ba9b-fcc5dc69a7f7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13104
x-amzn-requestid: da627f0c-5cde-4a37-878c-dcada8a25f64
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzL6_EYoIAMFiYw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631126ac-10dbcb432e6d1af46cffaefe;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:39:56 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: EYnLT-zi94yLohu6F2sovFoJ7UPSlEwh8CTMXR3d9aqGb00jm1f8oQ==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 22:32:41 GMT
age: 27837
etag: "8a9278f8ff5d149420673649878ca1ee266a0783"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c1e7f6c9e17585905fdbe9ae4da50b
67192f5be476ac4dada66dc9fbe26469d62e2d78
21ca880b36bbb7791f8df2bf9830f11a960692123dd6dde5be42bda004dc428b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: I3pDTq3EeJJtzJFsAFaym7cV5nCrwFailDRzgA3QkAFOYj3xV43v2w==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Sep 2022 21:37:26 GMT
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
age: 31152
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
cse.google.com/cse.js?cx=008284493573304481105:zhv4ivceiuq
142.250.74.46200 OK 2.9 kB URL HTTP/2 cse.google.com/cse.js?cx=008284493573304481105:zhv4ivceiuq
IP 142.250.74.46:0
File type ASCII text, with very long lines (1247)
Hash d7b99050fbb1c8dd55851e31cd3987c5
8a9cf416e07947ca78477f862ce5eda709de429d
442dbcbf9a37ca1c24238987bd72ca018c808fe8e6ae8fc7ceac242d7dd91eee
GET /cse.js?cx=008284493573304481105:zhv4ivceiuq HTTP/1.1
Host: cse.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-disposition: attachment; filename="f.txt"
content-encoding: br
date: Fri, 02 Sep 2022 06:16:38 GMT
server: gws
content-length: 2938
x-xss-protection: 0
x-frame-options: SAMEORIGIN
set-cookie: CONSENT=PENDING+786; expires=Sun, 01-Sep-2024 06:16:38 GMT; path=/; domain=.google.com; Secure
p3p: CP="This is not a P3P policy! See g.co/p3phelp for more info."
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
expires: Fri, 02 Sep 2022 06:16:38 GMT
cache-control: private
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 5750c2d8ad348838b41b96ebb27b0b81
86526a56637555a0463df607b7b5cf565a439f27
5cbde2bd32be846c5afb1fce35b0f7de0c4aeec9de4213ddd118467ea70c3e62
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 67921e2bd7c620bdd4db5ed1e73d3146
1deaa030ab490c63f94bde4c7ada5e2f849fb506
7fcee2496cdc63c9779941621d9e61acd006910947ccb6c7e98f383b0bf4574c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/cse/static/element/fd562c898514f252/default+en.css
142.250.74.164200 OK 9.1 kB URL HTTP/2 www.google.com/cse/static/element/fd562c898514f252/default+en.css
IP 142.250.74.164:0
Hash 6b3110003f6d375f164a81ce80a9f3b1
ae3c926847423f743a849751c7cf1b0982245ddc
43c7228af0ccf5b3bf3de12a714ce673f61ed8815e1a05d6f889afb0a53e8fb0
GET /cse/static/element/fd562c898514f252/default+en.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 9086
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 01 Sep 2022 22:20:48 GMT
expires: Fri, 01 Sep 2023 22:20:48 GMT
cache-control: public, max-age=31536000
age: 28550
last-modified: Tue, 23 Aug 2022 20:48:59 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google.com/cse/static/style/look/v4/default.css
142.250.74.164200 OK 1.3 kB URL HTTP/2 www.google.com/cse/static/style/look/v4/default.css
IP 142.250.74.164:0
Hash b33c65c5c815696bed8292c172185bcc
d2c0eceacad1f57b25621dcdb32659c5dc6b8d9b
f5ab6924cf65ae4dc61dca35d096fa272f8b4937b733b5eb46d36af396884132
GET /cse/static/style/look/v4/default.css HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/prose-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="prose-team"
report-to: {"group":"prose-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/prose-team"}]}
content-length: 1345
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 06:10:46 GMT
expires: Fri, 02 Sep 2022 07:00:46 GMT
cache-control: public, max-age=3000
age: 352
last-modified: Wed, 17 Jun 2020 00:00:00 GMT
content-type: text/css
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash f0d01a647b6735857bd9232ca0852d21
7c00238b9022a013aaf100c7fc4c45911e78d358
5813452c3d297c4255397fedbb133f573629b0305f27863d65da6ddf8d42fff9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5813452C3D297C4255397FEDBB133F573629B0305F27863D65DA6DDF8D42FFF9"
Last-Modified: Wed, 31 Aug 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11466
Expires: Fri, 02 Sep 2022 09:27:44 GMT
Date: Fri, 02 Sep 2022 06:16:38 GMT
Connection: keep-alive
oaoa.biz/wp-content/uploads/2014/03/pipecleaner1.jpg
157.7.44.180200 OK 63 kB URL HTTP/2 oaoa.biz/wp-content/uploads/2014/03/pipecleaner1.jpg
IP 157.7.44.180:0
ASN #7506 GMO Internet,Inc
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 590x332, components 3\012- data
Hash 2a76f4ce06be9c1f200d5fcc1959004a
f95906ea950de35a6d9f166f50b4cc8085ef8925
5dcdeb04271e95916a98e6428bf43d3991297f3fb549627836e67d732002f5da
GET /wp-content/uploads/2014/03/pipecleaner1.jpg HTTP/1.1
Host: oaoa.biz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:38 GMT
content-type: image/jpeg
content-length: 62614
server: Apache
last-modified: Sun, 25 Oct 2020 06:04:42 GMT
accept-ranges: none
vary: Range,Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
img.kurashinista.jp/get/2016/04/12/6b9fa7736c6ca8dd7dd2a9e44824865f.jpg?size=900x600&v=1
13.113.136.186200 OK 137 kB URL HTTP/2 img.kurashinista.jp/get/2016/04/12/6b9fa7736c6ca8dd7dd2a9e44824865f.jpg?size=900x600&v=1
IP 13.113.136.186:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 900x1200, components 3\012- data
Size 137 kB (136936 bytes)
Hash 02f310c5f098a57916571ef4b1d15546
012ca47915676de5cce7cb2c603c2dc64231cfb8
887c247f5522e56b0ff63452968f2463bbacda3c472cf91d8b181723ab9f2ad5
GET /get/2016/04/12/6b9fa7736c6ca8dd7dd2a9e44824865f.jpg?size=900x600&v=1 HTTP/1.1
Host: img.kurashinista.jp
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:38 GMT
content-type: image/jpeg
content-length: 136936
set-cookie: AWSALB=XlEJurPG5E9/laKbuanixhzr3nNNjHK46C+BO4hjrcFADl2JiHa3XN/s/QURABzRnHjTeBKlB6svNTn2GpymviPHZ3x4YjQVdlm1GVYUjthsoV8Opx8kbyH7OyXa; Expires=Fri, 09 Sep 2022 06:16:38 GMT; Path=/
AWSALBCORS=XlEJurPG5E9/laKbuanixhzr3nNNjHK46C+BO4hjrcFADl2JiHa3XN/s/QURABzRnHjTeBKlB6svNTn2GpymviPHZ3x4YjQVdlm1GVYUjthsoV8Opx8kbyH7OyXa; Expires=Fri, 09 Sep 2022 06:16:38 GMT; Path=/; SameSite=None; Secure
server: nginx
x-amz-id-2: 0xbSJiCYALJDObKE4Ppm+B7zWj48kWl8S+Rx7htLCPZLFpoyp3qiKuaYwlyMb9GbWhlkmxDtksg=
x-amz-request-id: 0R283MKJS613RPYW
last-modified: Wed, 02 Aug 2017 09:35:09 GMT
etag: "93a85b4ec8b78c67e780ff6b286f64c1"
x-amz-tagging-count: 2
expires: Sat, 03 Sep 2022 06:16:38 GMT
cache-control: max-age=86400
x-frame-options: SAMEORIGIN, SAMEORIGIN
accept-ranges: bytes
X-Firefox-Spdy: h2
unwillingsnick.com/sbar.json?key=9f0c389975096fc9ad21ec57d18030b1&uuid=a462a2ab-233c-4b96-b05f-236c1054d97a%3A2%3A1
192.243.59.12200 OK 4.4 kB URL HTTP/1.1 unwillingsnick.com/sbar.json?key=9f0c389975096fc9ad21ec57d18030b1&uuid=a462a2ab-233c-4b96-b05f-236c1054d97a%3A2%3A1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (6103), with no line terminators
Hash 79542c4fd8d61b9bf6dfebe921a55057
3b23b0ed99ec41edf0487f8acc1d35c30e66dcf5
a569d09d2e6b6a1d05cfaefaf3381d6a7d47a798f4243c98c36429cc8dacf1dc
Analyzer Verdict Alert quad9 Sinkholed
GET /sbar.json?key=9f0c389975096fc9ad21ec57d18030b1&uuid=a462a2ab-233c-4b96-b05f-236c1054d97a%3A2%3A1 HTTP/1.1
Host: unwillingsnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Sep 2022 06:16:39 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://food-foto1.web.app
Access-Control-Allow-Origin: https://food-foto1.web.app
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=15473259; expires=Sat, 03 Sep 2022 06:16:38 GMT; secure; SameSite=None
uid_id2=a462a2ab-233c-4b96-b05f-236c1054d97a:2:1; expires=Fri, 09 Sep 2022 06:16:38 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 03 Sep 2022 06:16:39 GMT; secure; SameSite=None
uncs=1; expires=Sat, 03 Sep 2022 06:16:39 GMT; secure; SameSite=None
pdhtkv29=true; expires=Sat, 03 Sep 2022 06:16:39 GMT; secure; SameSite=None
uncs29=1; expires=Sat, 03 Sep 2022 06:16:39 GMT; secure; SameSite=None
slec9f0c389975096fc9ad21ec57d18030b1=[3520332]; expires=Fri, 02 Sep 2022 06:16:44 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b8924dc7ddfd765a98326eb7bc70b374
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash dc076b754adaddcb000f3f987b6c5df2
01e9b40591692b8b2a6a94729e9481c7e600d248
9dbf2e71e1cbad91a71154b729e8ef496eda7544828a8bfd4f64e6dd70c4f64d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
clients1.google.com/generate_204
142.250.74.142204 No Content 0 B URL HTTP/2 clients1.google.com/generate_204
IP 142.250.74.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204 HTTP/1.1
Host: clients1.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Fri, 02 Sep 2022 06:16:39 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
unwillingsnick.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQW8bxR%2BdTXL5638qVEIgqHzgUCTi7K7ttZceKkIIighNaanghmZn1vbg2Z3VzI7XySmiAhWJg%2FkEbJ6TRkCF4AQXInAqeoiEFHPKgXwBekPqGdmNMPwuv%2FfmvcObN%2FPpnj0nLiw9W3tH7Qgp6Uqj6laufuB51yqbIrWDyqAVfBjUr1V0%2F7UwqLqvVN6KWU%2Bt%2BK7nup7rVdaFjttqsDIVIbIHoVcN3Wrdr3qNOgb6v9xYB4Y64P1z8gwEnyw9dC5DsDHS5Lu12PRylb36ZmIlzZVGnx%2FeSXupKlIkc9jWDtrp4YUbypyuH0GlB7O4UP1%2FjJGYEOfREaL08CIkov7%2BLGckEaeI%2BP9R9MeI5RiCjsHUXQh%2BSgDGcWMLaXL%2FhtIF3X6q0qk6IUtP%2FoIoJmTpj8tIk29XpRhUbitpc6FSg0G7hBiMITpjZPYY%2Bc4CRHEMln8MwX8jK082kSb7W0YqCH72Mq0HPvVptOzXamy5HoXBcuQ22st%2BLWCe26jzsElnBQkxhmiPIeMhqFmANQ6scGDbDmzmIOFnFeZ5XtPljLqtkLEab8ZRwF2PNtse9dygBcumdxgiz4Zgcgimd5HpXfTEENr%2BDNMtYbgDkxP0eYkiJigMQUEJCkFQ5ARFvzzg0vimvM%2BlsZF3sf2LXStHKu%2Fs0QOVd%2BKU7GXn5NKsuMcv9NCLzyph22W1Vhg2G24YtFlIue%2FFrNHkXsutuZEHI0oIswBqHOyICXlW%2F4pMTMjC1TuI6DGMPAYTi6D2JdBi1PRd0O6o3nKxkx6ZrjJdkZouXeaxEZ20GknVMZnKq0wl4KpEli8h33b25Dl5fpas8cMmYnZy%2FZc%2FP7ny47uPwXSJTJf4SDwk6Mh7o1uqIPu3VGHI91tZLhKxQ6fPfTunebz49dvxdqE031gzw69eZ1NhCh%2B8F5t8k6ZcpB1DvlkVnMd6XWkWk582zPtxdNOa7qrVqc02b76xvpFkOjZGqHQMKk7N52BiQv5H1ewfv%2FjcZxB6DG1LJPaEXAyEOgbLdmGyeXqjFqHl3BNlDgpbjrQfzQ%2BlIJDxnNOohPkXj%2BZ4z9xDR18Bze8iTUr0dYm%2BLEHlEMYujvJMn1z%2FvTYbRNIZRVI7%2B5HU8oun1RpxVmnWai4NwobXbNK4GdX9VjvwOKV%2BPfCDgNaQmwm79OWjvwEAAP%2F%2FAQAA%2F%2F8LbBhDkgQAAA%3D%3D
192.243.59.12200 OK 7 B URL HTTP/1.1 unwillingsnick.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSQW8bxR%2BdTXL5638qVEIgqHzgUCTi7K7ttZceKkIIighNaanghmZn1vbg2Z3VzI7XySmiAhWJg%2FkEbJ6TRkCF4AQXInAqeoiEFHPKgXwBekPqGdmNMPwuv%2FfmvcObN%2FPpnj0nLiw9W3tH7Qgp6Uqj6laufuB51yqbIrWDyqAVfBjUr1V0%2F7UwqLqvVN6KWU%2Bt%2BK7nup7rVdaFjttqsDIVIbIHoVcN3Wrdr3qNOgb6v9xYB4Y64P1z8gwEnyw9dC5DsDHS5Lu12PRylb36ZmIlzZVGnx%2FeSXupKlIkc9jWDtrp4YUbypyuH0GlB7O4UP1%2FjJGYEOfREaL08CIkov7%2BLGckEaeI%2BP9R9MeI5RiCjsHUXQh%2BSgDGcWMLaXL%2FhtIF3X6q0qk6IUtP%2FoIoJmTpj8tIk29XpRhUbitpc6FSg0G7hBiMITpjZPYY%2Bc4CRHEMln8MwX8jK082kSb7W0YqCH72Mq0HPvVptOzXamy5HoXBcuQ22st%2BLWCe26jzsElnBQkxhmiPIeMhqFmANQ6scGDbDmzmIOFnFeZ5XtPljLqtkLEab8ZRwF2PNtse9dygBcumdxgiz4Zgcgimd5HpXfTEENr%2BDNMtYbgDkxP0eYkiJigMQUEJCkFQ5ARFvzzg0vimvM%2BlsZF3sf2LXStHKu%2Fs0QOVd%2BKU7GXn5NKsuMcv9NCLzyph22W1Vhg2G24YtFlIue%2FFrNHkXsutuZEHI0oIswBqHOyICXlW%2F4pMTMjC1TuI6DGMPAYTi6D2JdBi1PRd0O6o3nKxkx6ZrjJdkZouXeaxEZ20GknVMZnKq0wl4KpEli8h33b25Dl5fpas8cMmYnZy%2FZc%2FP7ny47uPwXSJTJf4SDwk6Mh7o1uqIPu3VGHI91tZLhKxQ6fPfTunebz49dvxdqE031gzw69eZ1NhCh%2B8F5t8k6ZcpB1DvlkVnMd6XWkWk582zPtxdNOa7qrVqc02b76xvpFkOjZGqHQMKk7N52BiQv5H1ewfv%2FjcZxB6DG1LJPaEXAyEOgbLdmGyeXqjFqHl3BNlDgpbjrQfzQ%2BlIJDxnNOohPkXj%2BZ4z9xDR18Bze8iTUr0dYm%2BLEHlEMYujvJMn1z%2FvTYbRNIZRVI7%2B5HU8oun1RpxVmnWai4NwobXbNK4GdX9VjvwOKV%2BPfCDgNaQmwm79OWjvwEAAP%2F%2FAQAA%2F%2F8LbBhDkgQAAA%3D%3D
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSQW8bxR%2BdTXL5638qVEIgqHzgUCTi7K7ttZceKkIIighNaanghmZn1vbg2Z3VzI7XySmiAhWJg%2FkEbJ6TRkCF4AQXInAqeoiEFHPKgXwBekPqGdmNMPwuv%2FfmvcObN%2FPpnj0nLiw9W3tH7Qgp6Uqj6laufuB51yqbIrWDyqAVfBjUr1V0%2F7UwqLqvVN6KWU%2Bt%2BK7nup7rVdaFjttqsDIVIbIHoVcN3Wrdr3qNOgb6v9xYB4Y64P1z8gwEnyw9dC5DsDHS5Lu12PRylb36ZmIlzZVGnx%2FeSXupKlIkc9jWDtrp4YUbypyuH0GlB7O4UP1%2FjJGYEOfREaL08CIkov7%2BLGckEaeI%2BP9R9MeI5RiCjsHUXQh%2BSgDGcWMLaXL%2FhtIF3X6q0qk6IUtP%2FoIoJmTpj8tIk29XpRhUbitpc6FSg0G7hBiMITpjZPYY%2Bc4CRHEMln8MwX8jK082kSb7W0YqCH72Mq0HPvVptOzXamy5HoXBcuQ22st%2BLWCe26jzsElnBQkxhmiPIeMhqFmANQ6scGDbDmzmIOFnFeZ5XtPljLqtkLEab8ZRwF2PNtse9dygBcumdxgiz4Zgcgimd5HpXfTEENr%2BDNMtYbgDkxP0eYkiJigMQUEJCkFQ5ARFvzzg0vimvM%2BlsZF3sf2LXStHKu%2Fs0QOVd%2BKU7GXn5NKsuMcv9NCLzyph22W1Vhg2G24YtFlIue%2FFrNHkXsutuZEHI0oIswBqHOyICXlW%2F4pMTMjC1TuI6DGMPAYTi6D2JdBi1PRd0O6o3nKxkx6ZrjJdkZouXeaxEZ20GknVMZnKq0wl4KpEli8h33b25Dl5fpas8cMmYnZy%2FZc%2FP7ny47uPwXSJTJf4SDwk6Mh7o1uqIPu3VGHI91tZLhKxQ6fPfTunebz49dvxdqE031gzw69eZ1NhCh%2B8F5t8k6ZcpB1DvlkVnMd6XWkWk582zPtxdNOa7qrVqc02b76xvpFkOjZGqHQMKk7N52BiQv5H1ewfv%2FjcZxB6DG1LJPaEXAyEOgbLdmGyeXqjFqHl3BNlDgpbjrQfzQ%2BlIJDxnNOohPkXj%2BZ4z9xDR18Bze8iTUr0dYm%2BLEHlEMYujvJMn1z%2FvTYbRNIZRVI7%2B5HU8oun1RpxVmnWai4NwobXbNK4GdX9VjvwOKV%2BPfCDgNaQmwm79OWjvwEAAP%2F%2FAQAA%2F%2F8LbBhDkgQAAA%3D%3D HTTP/1.1
Host: unwillingsnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Cookie: u_pl=15473259; uid_id2=a462a2ab-233c-4b96-b05f-236c1054d97a:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9f0c389975096fc9ad21ec57d18030b1=[3520332]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Sep 2022 06:16:39 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2103d9d0a51685c52999645e53cbe729
Strict-Transport-Security: max-age=0; includeSubdomains
r3.o.lencr.org/
23.36.76.226200 OK 53 kB IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, max compression\012- data
Hash 1b7ef359f6e3ee0bfce7a3d08be06263
808586a67cd07016af2f3e3f85d75a4c68b409af
3ae2ce2ad498762baccb94c9a6123cab763b8e5d29c8cb6956b789ff409c32eb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6CFEECD051573B70969DD5B3C90E90CFD8B6EE52EEAE9D611DBEE5242DE5FBCA"
Last-Modified: Wed, 31 Aug 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9151
Expires: Fri, 02 Sep 2022 08:49:10 GMT
Date: Fri, 02 Sep 2022 06:16:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c0c3b533df38be7bdfbd8b8246b48c2
8fa1977230e302c4d0df2482eb22d9202a7cf961
2f505285bbf066d84efdc1df659265354728ecf67077f7544bd586b19d9b38ad
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2F505285BBF066D84EFDC1DF659265354728ECF67077F7544BD586B19D9B38AD"
Last-Modified: Wed, 31 Aug 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2080
Expires: Fri, 02 Sep 2022 06:51:19 GMT
Date: Fri, 02 Sep 2022 06:16:39 GMT
Connection: keep-alive
maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
104.18.11.207200 OK 14 kB URL HTTP/2 maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js
IP 104.18.11.207:0
File type ASCII text, with very long lines (48664)
Hash d5e96d2f18febd60af553497c08c6964
5b58515f400c42513892c688398a5a38c172429d
8ed7b9fa442ad77774e676f4d57242ed5d5ceaf3e0e5f3da87b25195bce7eee9
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:37 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/10/2022 17:24:53
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 860
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: 14deeb7da5e89bdf9e4020b97892fe27
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74441e2f6b56b515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
e1.o.lencr.org/
23.36.77.32200 OK 345 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c0c3b533df38be7bdfbd8b8246b48c2
8fa1977230e302c4d0df2482eb22d9202a7cf961
2f505285bbf066d84efdc1df659265354728ecf67077f7544bd586b19d9b38ad
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2F505285BBF066D84EFDC1DF659265354728ECF67077F7544BD586B19D9B38AD"
Last-Modified: Wed, 31 Aug 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2080
Expires: Fri, 02 Sep 2022 06:51:19 GMT
Date: Fri, 02 Sep 2022 06:16:39 GMT
Connection: keep-alive
e1.o.lencr.org/
23.36.77.32200 OK 1.0 kB IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
File type gzip compressed data, max compression\012- data
Hash 77c6abbf2533331fbef99eade3a90efb
301a20ac49f4f51ae192df6db7d3e0b2cf44c9db
529423a778e9094106c5852304810dcf06845b6c07037564fa8a78edd096c195
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "2F505285BBF066D84EFDC1DF659265354728ECF67077F7544BD586B19D9B38AD"
Last-Modified: Wed, 31 Aug 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4777
Expires: Fri, 02 Sep 2022 07:36:16 GMT
Date: Fri, 02 Sep 2022 06:16:39 GMT
Connection: keep-alive
unwillingsnick.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fb6%2Fcf%2F48%2Fb6cf48ca3e8ab4bdbcfaa2279b0fb2bc%2F1613726822.html&l=1274&fd=320
192.243.59.12200 OK 0 B URL HTTP/1.1 unwillingsnick.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fb6%2Fcf%2F48%2Fb6cf48ca3e8ab4bdbcfaa2279b0fb2bc%2F1613726822.html&l=1274&fd=320
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Fau%2Fb6%2Fcf%2F48%2Fb6cf48ca3e8ab4bdbcfaa2279b0fb2bc%2F1613726822.html&l=1274&fd=320 HTTP/1.1
Host: unwillingsnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Cookie: u_pl=15473259; uid_id2=a462a2ab-233c-4b96-b05f-236c1054d97a:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9f0c389975096fc9ad21ec57d18030b1=[3520332]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Sep 2022 06:16:39 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 44f5b82c370258db6b5e292381511843
d0753817b1ca79ca8fa4d15b58acabb7bf2bbfc1
a3b28fba3beddb8b9041f48c3fa062913ea5bb82fb3a6c7a3b76ea874d8f0112
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A3B28FBA3BEDDB8B9041F48C3FA062913EA5BB82FB3A6C7A3B76EA874D8F0112"
Last-Modified: Tue, 30 Aug 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2172
Expires: Fri, 02 Sep 2022 06:52:51 GMT
Date: Fri, 02 Sep 2022 06:16:39 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash a8301b9221d40e96963ee39828cebcf0
e5822caa4549b551baf97b504a53bfa4a8baf3d3
ad1dfa54fd1f7633f8ade0ca283f072f5705d51111971b6a23132c6fea75d33e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD1DFA54FD1F7633F8ADE0CA283F072F5705D51111971B6A23132C6FEA75D33E"
Last-Modified: Wed, 31 Aug 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5051
Expires: Fri, 02 Sep 2022 07:40:50 GMT
Date: Fri, 02 Sep 2022 06:16:39 GMT
Connection: keep-alive
cdn.cloudimagesb.com/si/e2/d0/7c/e2d07cfc54a4a2629ecb06a4ac9d023c/1658144633.jpg
45.133.44.9200 OK 13 kB URL HTTP/2 cdn.cloudimagesb.com/si/e2/d0/7c/e2d07cfc54a4a2629ecb06a4ac9d023c/1658144633.jpg
IP 45.133.44.9:0
ASN #39572 DataWeb Global Group B.V.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Hash 9a26092fd440aa10142a9e87e8370c2c
b1c33219c136dc2ee76d081d02f0cb9c15032f41
ef6e3d4a4df9d2c4f104857ab7b5b545e6f3e6c0dda989d6fcd0707513136445
GET /si/e2/d0/7c/e2d07cfc54a4a2629ecb06a4ac9d023c/1658144633.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: image/jpeg
content-length: 12632
server: nginx/1.17.6
last-modified: Mon, 18 Jul 2022 11:44:01 GMT
etag: "62d54781-3158"
expires: Sun, 04 Sep 2022 06:16:39 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
45.133.44.4200 OK 537 B URL HTTP/2 cdn.barscreative1.com/sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html
IP 45.133.44.4:0
ASN #39572 DataWeb Global Group B.V.
Hash a1d81b8d37ed726db3275720253df5f7
c6e97795bd504eca53e16d596996206802796fe1
67590da8a31ab567ac91edc8bf4236ec1b6bd89745cfb2a7f6d71bdeed1ed7df
Analyzer Verdict Alert fortinet Phishing
GET /sb/au/b6/cf/48/b6cf48ca3e8ab4bdbcfaa2279b0fb2bc/1613726822.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: text/html; charset=utf-8
server: nginx/1.17.6
last-modified: Fri, 19 Feb 2021 09:27:09 GMT
etag: W/"602f846d-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Fri, 02 Sep 2022 07:16:39 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/animate.css
172.67.183.56200 OK 4.8 kB URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/animate.css
IP 172.67.183.56:0
Hash 21eb7a65c17a2c22ba104a7ecbf1dc0f
ea8c53be54889c7489aed04e30e3eb83af64dec9
090bd9ceb9a58da038e5ed4a39dfbb63ece49ed4f4f0656ce35f7faa41a3b237
GET /sb/ssp/utility/social-media/facebook/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: text/css
last-modified: Sat, 20 Feb 2021 08:44:40 GMT
etag: W/"6030cbf8-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jV72LHtRcZDtLpHFUdK9yHlbyL0ZFEro3SQ8jogMT3C79uoDlhaHYHPJomMECC8WEuBenMGUlSIJYvM3QMkncbJKfPhrLMEEW3egYoY5jppYRTv9MUKaTfDHDZGJ4I16ppY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74441e3f5fa71c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 124952
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/style.css
172.67.183.56200 OK 1.5 kB URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/css/style.css
IP 172.67.183.56:0
Hash 908dce303e802b45f99455bfa3c26ef2
2f064693d34a6eac3903455fc3de8477c4554e40
60eed66130c70fbeb214c6ab5a7f747cfaaad001a5f10d33d3da7d57f70d6f98
GET /sb/ssp/utility/social-media/facebook/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: text/css
last-modified: Fri, 27 Aug 2021 12:19:14 GMT
etag: W/"6128d842-18be"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=XlcYCx8m14SlHs7qMiAU9Osvq5JtBcSXklHFljHeF6JQnjUQDcPa%2F3nKCHZAZNy1BjYnOeb73aIQ2hQVSmfax4W9tjOSdwpkAWmc0qgEEFQwZ7FUio%2B%2FCwhnlfU5sKI5nks%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74441e3f5faa1c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
142.250.74.163200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:08 GMT
expires: Thu, 31 Aug 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 124952
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 660657162b524658006a1856e274a946
56c933c6682c0019f6dbd040da6b929044dc216a
9578fc0408868ae40d41af8d13787f4137853c056300524b5558b1c57d39b2b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Sep 2022 06:16:40 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/js/script.js
172.67.183.56200 OK 210 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/js/script.js
IP 172.67.183.56:0
Hash 14c6a15c2c7729c885b33c990f37d2a5
865d9621a3a4c2b446ec535471412bf491a1e60e
bd7b0405bc197d2564e68c4366fdbfc06c0711a10231877d33c8c6cdd05fe7f0
GET /sb/ssp/utility/social-media/facebook/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: application/javascript
last-modified: Sat, 20 Feb 2021 08:47:14 GMT
etag: W/"6030cc92-1bc"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=axO3CnWlykh4DDjGv%2FK3rXpNpOTISJHaGFCVunhsqKh2ndlVmQOpqP6ReUSmO2sFhHzgPJlHHTUoQOT8jPKI%2BMqZN%2BXHQE1FuB%2Fz0YP7okMFbr0R33NTYFCoUCgvCIvGgWs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74441e3f5fa91c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
unwillingsnick.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSv28cxR%2Bdtd189a0CkRAIoisogoTPu%2Ff7SBFhjJGFiUNCBB2aX3s33OzOamb39uzKIgIFieL4C1i%2Fs2MBEYIKGiw4R6SwhOSjcoH%2FAdIhpUZ3sTj4NJ%2F35r3izZv5dC87Jz4yerb2jtlRWtOVetkvXf0gCK6VNlWcDUqDVuPDRu1ayfZfazfK%2FiultyTvmZWKH%2Fh%2B4AeldWVlaAYrUxEqedAOym2%2FXKuUg3oNA%2Ftf7jIPjnoQ%2FXPyDJSYLD30LkPxMeLouzXpeqlJXn0zyjRNjUVfHN6Je7HJY0RzGFoPYXx44YZxp%2BtHMPHBLC5M%2Fx8jUxPiPToCiw8vQoL192c5mYaMwcT%2FkffHkHoMRcfg5i6UOCUAF7ixhTi6f8PYnG4%2FVelUnZClJ39B5ROy9MdlxNG3q1oNSreNzlJlYodBWEANxlCdMZLsGOnOAlR%2BDJ5%2BDCV%2BIytPNhFH%2B1tOGyhx9jKtNSq0QtlypVrlyzXWbiwzvx4uV6oNHvj1mmg36awgpcZQ4RhaDkHdAjLnIVMestBDlniIxFmJB0HQ9AWnfqvNeVU0JWsIP6DNMKCB32gh49M7DJEmQ3A9BLe7SOwuemoIm%2F0M1y3ghAeXEvRFgVwS5I4gpwS5IshTgrxfHAjtKq64L7TLWHCxKxe7WoxM2tmjBybtyJjsJefk0qy4xy%2F00JNnpXbo82qr3W7W%2FXYj5G0qKoHk9aYIWn7VZwGcKqDcAqjzsKMm5Fn7KxI1IQtX74DRYzh9DK4WQbOXQPNRs%2BKDdke1lo%2Bd%2BMh1jeuq2HXpspBOdeIy06bjEpOWuYkgTIEkXUK67e3pc%2FL8LFn9h01IfnL9lz8%2FufLju4%2FBbYHEFvhIPSTo6HujWyYn%2B7dM7sj3W0mqIrVDp899O6WpXPz6bbmdGys21tzwq9f5VJjCB%2B9Jl27SWKi448g3q0oIadeN5ZL8tOHel%2Bxm5rqrmY2zZPPmG%2BsbUWKlc8rEY1B16j4HVxPyP2pm%2F%2FjF5z6DsmPYrECUnZCLgTLH4MkuXDJP78wirJ57WOIhz4qRrbD5oVYEWs45ZQXcvzib4z13Dx17BTS9izgq0LcF%2BroA1UO4bHGUJvbk%2Bu%2FV2YBpb8S09faZtvqLp9U6dVaq%2BqLJZCibTNbqtVBywep15vOQs6potThSN%2BGXvnz0NwAAAP%2F%2FAQAA%2F%2F%2BLuM2rkgQAAA%3D%3D
192.243.59.12200 OK 7 B URL HTTP/1.1 unwillingsnick.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSv28cxR%2Bdtd189a0CkRAIoisogoTPu%2Ff7SBFhjJGFiUNCBB2aX3s33OzOamb39uzKIgIFieL4C1i%2Fs2MBEYIKGiw4R6SwhOSjcoH%2FAdIhpUZ3sTj4NJ%2F35r3izZv5dC87Jz4yerb2jtlRWtOVetkvXf0gCK6VNlWcDUqDVuPDRu1ayfZfazfK%2FiultyTvmZWKH%2Fh%2B4AeldWVlaAYrUxEqedAOym2%2FXKuUg3oNA%2Ftf7jIPjnoQ%2FXPyDJSYLD30LkPxMeLouzXpeqlJXn0zyjRNjUVfHN6Je7HJY0RzGFoPYXx44YZxp%2BtHMPHBLC5M%2Fx8jUxPiPToCiw8vQoL192c5mYaMwcT%2FkffHkHoMRcfg5i6UOCUAF7ixhTi6f8PYnG4%2FVelUnZClJ39B5ROy9MdlxNG3q1oNSreNzlJlYodBWEANxlCdMZLsGOnOAlR%2BDJ5%2BDCV%2BIytPNhFH%2B1tOGyhx9jKtNSq0QtlypVrlyzXWbiwzvx4uV6oNHvj1mmg36awgpcZQ4RhaDkHdAjLnIVMestBDlniIxFmJB0HQ9AWnfqvNeVU0JWsIP6DNMKCB32gh49M7DJEmQ3A9BLe7SOwuemoIm%2F0M1y3ghAeXEvRFgVwS5I4gpwS5IshTgrxfHAjtKq64L7TLWHCxKxe7WoxM2tmjBybtyJjsJefk0qy4xy%2F00JNnpXbo82qr3W7W%2FXYj5G0qKoHk9aYIWn7VZwGcKqDcAqjzsKMm5Fn7KxI1IQtX74DRYzh9DK4WQbOXQPNRs%2BKDdke1lo%2Bd%2BMh1jeuq2HXpspBOdeIy06bjEpOWuYkgTIEkXUK67e3pc%2FL8LFn9h01IfnL9lz8%2FufLju4%2FBbYHEFvhIPSTo6HujWyYn%2B7dM7sj3W0mqIrVDp899O6WpXPz6bbmdGys21tzwq9f5VJjCB%2B9Jl27SWKi448g3q0oIadeN5ZL8tOHel%2Bxm5rqrmY2zZPPmG%2BsbUWKlc8rEY1B16j4HVxPyP2pm%2F%2FjF5z6DsmPYrECUnZCLgTLH4MkuXDJP78wirJ57WOIhz4qRrbD5oVYEWs45ZQXcvzib4z13Dx17BTS9izgq0LcF%2BroA1UO4bHGUJvbk%2Bu%2FV2YBpb8S09faZtvqLp9U6dVaq%2BqLJZCibTNbqtVBywep15vOQs6potThSN%2BGXvnz0NwAAAP%2F%2FAQAA%2F%2F%2BLuM2rkgQAAA%3D%3D
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
File type ASCII text, with no line terminators
Hash 132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer Verdict Alert quad9 Sinkholed
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSv28cxR%2Bdtd189a0CkRAIoisogoTPu%2Ff7SBFhjJGFiUNCBB2aX3s33OzOamb39uzKIgIFieL4C1i%2Fs2MBEYIKGiw4R6SwhOSjcoH%2FAdIhpUZ3sTj4NJ%2F35r3izZv5dC87Jz4yerb2jtlRWtOVetkvXf0gCK6VNlWcDUqDVuPDRu1ayfZfazfK%2FiultyTvmZWKH%2Fh%2B4AeldWVlaAYrUxEqedAOym2%2FXKuUg3oNA%2Ftf7jIPjnoQ%2FXPyDJSYLD30LkPxMeLouzXpeqlJXn0zyjRNjUVfHN6Je7HJY0RzGFoPYXx44YZxp%2BtHMPHBLC5M%2Fx8jUxPiPToCiw8vQoL192c5mYaMwcT%2FkffHkHoMRcfg5i6UOCUAF7ixhTi6f8PYnG4%2FVelUnZClJ39B5ROy9MdlxNG3q1oNSreNzlJlYodBWEANxlCdMZLsGOnOAlR%2BDJ5%2BDCV%2BIytPNhFH%2B1tOGyhx9jKtNSq0QtlypVrlyzXWbiwzvx4uV6oNHvj1mmg36awgpcZQ4RhaDkHdAjLnIVMestBDlniIxFmJB0HQ9AWnfqvNeVU0JWsIP6DNMKCB32gh49M7DJEmQ3A9BLe7SOwuemoIm%2F0M1y3ghAeXEvRFgVwS5I4gpwS5IshTgrxfHAjtKq64L7TLWHCxKxe7WoxM2tmjBybtyJjsJefk0qy4xy%2F00JNnpXbo82qr3W7W%2FXYj5G0qKoHk9aYIWn7VZwGcKqDcAqjzsKMm5Fn7KxI1IQtX74DRYzh9DK4WQbOXQPNRs%2BKDdke1lo%2Bd%2BMh1jeuq2HXpspBOdeIy06bjEpOWuYkgTIEkXUK67e3pc%2FL8LFn9h01IfnL9lz8%2FufLju4%2FBbYHEFvhIPSTo6HujWyYn%2B7dM7sj3W0mqIrVDp899O6WpXPz6bbmdGys21tzwq9f5VJjCB%2B9Jl27SWKi448g3q0oIadeN5ZL8tOHel%2Bxm5rqrmY2zZPPmG%2BsbUWKlc8rEY1B16j4HVxPyP2pm%2F%2FjF5z6DsmPYrECUnZCLgTLH4MkuXDJP78wirJ57WOIhz4qRrbD5oVYEWs45ZQXcvzib4z13Dx17BTS9izgq0LcF%2BroA1UO4bHGUJvbk%2Bu%2FV2YBpb8S09faZtvqLp9U6dVaq%2BqLJZCibTNbqtVBywep15vOQs6potThSN%2BGXvnz0NwAAAP%2F%2FAQAA%2F%2F%2BLuM2rkgQAAA%3D%3D HTTP/1.1
Host: unwillingsnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Cookie: u_pl=15473259; uid_id2=a462a2ab-233c-4b96-b05f-236c1054d97a:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9f0c389975096fc9ad21ec57d18030b1=[3520332]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Sep 2022 06:16:40 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 51a0a194c0d2836a522cb5babb031c94
Strict-Transport-Security: max-age=0; includeSubdomains
unwillingsnick.com/pixel/sbs?c=1
192.243.59.12200 OK 0 B URL HTTP/1.1 unwillingsnick.com/pixel/sbs?c=1
IP 192.243.59.12:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert quad9 Sinkholed
GET /pixel/sbs?c=1 HTTP/1.1
Host: unwillingsnick.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Cookie: u_pl=15473259; uid_id2=a462a2ab-233c-4b96-b05f-236c1054d97a:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slec9f0c389975096fc9ad21ec57d18030b1=[3520332]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.17.6
Date: Fri, 02 Sep 2022 06:16:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabd16196-9b7d-4f76-a8de-a26de11457c1.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabd16196-9b7d-4f76-a8de-a26de11457c1.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 623699b045e8c9b492a6c9fcb5e7d38e
279a3235c82630d37ad58fc4044ff05d3d0857f8
6c001c267a6020ed07a523d05735dcd461475c46d41657b9ef8498584fc9e0c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabd16196-9b7d-4f76-a8de-a26de11457c1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 8213
x-amzn-requestid: af2c8998-e85f-4e1a-875b-3a8a87498b7a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwLKYE4OIAMF4og=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ff242-78ff5a4c134b41691b66727e;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 23:44:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: gI7ufAMdA5G9mVAEYOfY0WoMMaM6Yi-bcsB5kcECnpcb35-5_S4cXw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 06:01:47 GMT
age: 898
etag: "279a3235c82630d37ad58fc4044ff05d3d0857f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
104.18.11.207200 OK 0 B URL HTTP/2 stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css
IP 104.18.11.207:0
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:37 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"04aca1f4cd3ec3c05a75a879f3be75a3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 08/20/2022 02:46:30
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e826c9b6869e033d1356343d018e4e30
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 74441e2f6b4ab515-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Raleway
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Raleway
IP 216.58.211.10:0
GET /css?family=Raleway HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Sep 2022 06:16:37 GMT
date: Fri, 02 Sep 2022 06:16:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
creepingbrings.com/sfp.js
104.21.234.232200 OK 0 B URL HTTP/2 creepingbrings.com/sfp.js
IP 104.21.234.232:0
GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:37 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 67dfd13fea8e30bb73a29d0a0c8390ff
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 02 Sep 2022 06:16:37 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6KfjGVwlTScJwlzU%2FsrZ1GNUlQYlJwpit7Y7DH%2FBReSLlxqo%2BOh2u2GtKt5pngEXW%2B4pp0WkMbIWqbs632CdMvK%2BuQj9LXX2rZiUYE4mdbUWi09NtXFXSFLf0rAbEaffKefoL6g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74441e345c7f71ec-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/img/close.svg
172.67.183.56200 OK 0 B URL HTTP/2 cdn.sb4you1.com/sb/ssp/utility/social-media/facebook/img/close.svg
IP 172.67.183.56:0
GET /sb/ssp/utility/social-media/facebook/img/close.svg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: image/svg+xml
last-modified: Thu, 11 Feb 2021 15:13:59 GMT
etag: W/"602549b7-52a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 2578341
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ShzXvtiz5g%2FcjdGeNzX6QhpSQJSIc9cEz4rxq%2BoU7GAOgmlvrX9WiK%2Bx3e%2B0EATSrRI6KZec9pPPuIitGWSqfowJ8nzUKl4ZNdjwUdQmLloXODny5AoyNoq3njvOxxqNKRE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 74441e3f8ff41c02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
c.statcounter.com/t.php?sc_project=12396845&u1=B8DF542C86DC4F4315A8C7CD9C6DE93F&java=1&security=787b1298&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//food-foto1.web.app/&t=%5B%E3%83%99%E3%82%B9%E3%83%88100%5D%E5%86%99%E7%9C%9F%E3%82%B3%E3%83%AC%E3%82%AF%E3%82%B7%E3%83%A7%E3%83%B3%E7%94%BB%E5%83%8F&invisible=1&sc_rum_e_s=1894&sc_rum_e_e=1904&sc_rum_f_s=0&sc_rum_f_e=1883&get_config=true
104.20.228.67200 OK 0 B URL HTTP/2 c.statcounter.com/t.php?sc_project=12396845&u1=B8DF542C86DC4F4315A8C7CD9C6DE93F&java=1&security=787b1298&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//food-foto1.web.app/&t=%5B%E3%83%99%E3%82%B9%E3%83%88100%5D%E5%86%99%E7%9C%9F%E3%82%B3%E3%83%AC%E3%82%AF%E3%82%B7%E3%83%A7%E3%83%B3%E7%94%BB%E5%83%8F&invisible=1&sc_rum_e_s=1894&sc_rum_e_e=1904&sc_rum_f_s=0&sc_rum_f_e=1883&get_config=true
IP 104.20.228.67:0
GET /t.php?sc_project=12396845&u1=B8DF542C86DC4F4315A8C7CD9C6DE93F&java=1&security=787b1298&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//food-foto1.web.app/&t=%5B%E3%83%99%E3%82%B9%E3%83%88100%5D%E5%86%99%E7%9C%9F%E3%82%B3%E3%83%AC%E3%82%AF%E3%82%B7%E3%83%A7%E3%83%B3%E7%94%BB%E5%83%8F&invisible=1&sc_rum_e_s=1894&sc_rum_e_e=1904&sc_rum_f_s=0&sc_rum_f_e=1883&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://food-foto1.web.app
Connection: keep-alive
Referer: https://food-foto1.web.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 02 Sep 2022 06:16:39 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12396845.1662099398.0; SameSite=None; Secure; Expires=Wednesday, 01-Sep-2027 13:16:38 WIB; Path=/; Domain=.statcounter.com
is_visitor_unique=1662099398178245790; SameSite=None; Secure; Expires=Sunday, 01-Sep-2024 13:16:38 WIB; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://food-foto1.web.app
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74441e3afb550b41-OSL
content-encoding: br
X-Firefox-Spdy: h2