ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6120
Cache-Control: max-age=124256
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:13 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 11:13:09 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 221b3fe9a6458de64d8bbfcd4a8e2f36
988c93428ff15108d46a11865e1c7e2782fbae34
a5ff1b60b9ef85086d0c6617d9d39cf17ae45855bf7b0ee24ec49ad5a863c18e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5378
Cache-Control: max-age=123514
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:13 GMT
Etag: "635a4fdd-1d7"
Expires: Sat, 29 Oct 2022 11:00:47 GMT
Last-Modified: Thu, 27 Oct 2022 09:31:09 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 4c9ec202b798d350b6582220b7bb8457
d16ca24cd60b349231ad06fa5db32f54a3bc9e09
df036d315a613ac6396b77afb0a4ea5f793091786be0cbf3f3a0d043bc1d1d3c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DF036D315A613AC6396B77AFB0A4EA5F793091786BE0CBF3F3A0D043BC1D1D3C"
Last-Modified: Wed, 26 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8693
Expires: Fri, 28 Oct 2022 03:07:06 GMT
Date: Fri, 28 Oct 2022 00:42:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 22eebb819dc140cc288474d9891526b4
45c18772664e9e3efb6a44d7da93699c81f71827
ce6a96e470dbfb48ff42fdaf5eaa464a87dc60b495e3e2767086ec0b6564fdd7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "CE6A96E470DBFB48FF42FDAF5EAA464A87DC60B495E3E2767086EC0B6564FDD7"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10525
Expires: Fri, 28 Oct 2022 03:37:38 GMT
Date: Fri, 28 Oct 2022 00:42:13 GMT
Connection: keep-alive
international-package.pubchaplin.it/public/PbcCwiarXZdww9L9p0Wd7IdsNpqRd5MH
46.252.150.87302 Found 176 B URL HTTP/2 international-package.pubchaplin.it/public/PbcCwiarXZdww9L9p0Wd7IdsNpqRd5MH
IP 46.252.150.87:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash ee3bf3cddd351cd9b0e4519f50e648a2
e6780e44ddb6d9eab8b6f600eb067ce324130e9c
196408c71fb8fb280a6edda6c8730750780f1f7a7da9154342be64641f1a276b
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public/PbcCwiarXZdww9L9p0Wd7IdsNpqRd5MH HTTP/1.1
Host: international-package.pubchaplin.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6IlRzV3JsczZwaEJEYmtSUGhWWGUwMGc9PSIsInZhbHVlIjoieElLUCtONXQyeEdHblAzM1piNXhoVEtXS09McmtOQURXZU8rNXRiaFEyZDJFeXRuQW9Td3ZKRzVzSGttTUNzdXN3MHYyZ2JhSjZoRnNUY29OQSt1WFR1MVJDdnI4VUtUOXNLYXpLdWJhMkNkdjZnN1BOR3BvK1E2SElkcmlQa1YiLCJtYWMiOiI4NzYzZGEyYTU5Yjk5NTNiZWQ3MmEwODE0ZjQ3NmZiMjdhYzY2OTA2MjE5NTVkZDc5Y2JmMzEwNWY4YTNkMDk4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6IlkzVHZvcjhpNk40Z0l2VTRmT0JLSlE9PSIsInZhbHVlIjoiSmdOcmJUUldRVGVUMmZtcmlYV0oxVUdMN2pwSnJDWXNoeUtJd2dMYk02MTVwbkxXYXFmeHp4aVpkVG42aUpkS0JlQTExRU9kWXBoS1U3SEVWeHZndmlIVHpDT1JPZnVPbWtsNFVOUGkrS3VLNEZDS0RUZE1FdXRNYU5jVnlWUXAiLCJtYWMiOiI1NDFiOWY0NzNmNTc0ZjhlMTMxZjQ4YTc3M2JmMGQyYjdkYTEwNGYxMTFmZWM2NmU3ZmIwNTk4NDMzMDU4NGRjIiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-ea902840-8483-4b5b-a389-8e40ec899aca%22%2C%22lastActivity%22:1666917054699}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1666917054700}; _hjSessionUser_2895475=eyJpZCI6IjcxOGFkNDFkLTU5OTMtNTI1Mi1iNjEwLTcwMDBjYmM5ODA1NyIsImNyZWF0ZWQiOjE2NjY5MTcwNTYxNjIsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_2895475=eyJpZCI6ImE5OTFiYWFhLTlkZDEtNDgxNi05NDlkLWFiYzZmNjc2Zjg0OCIsImNyZWF0ZWQiOjE2NjY5MTcwNTYxNzcsImluU2FtcGxlIjp0cnVlfQ==; _hjAbsoluteSessionInProgress=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 302 Found
cache-control: no-cache, no-store, must-revalidate, max-age=0
location: https://international-package.pubchaplin.it/public
content-type: text/html; charset=UTF-8
set-cookie: XSRF-TOKEN=eyJpdiI6InFMZ0FuRFVncHY5ZnJCUThmZHQ4M3c9PSIsInZhbHVlIjoidlNHT3NTd1pXdWYvNi9NVERDNEZwZzZtUE5GWGVtL05pZTJPQzZEUXdSL2FsUTRhMDhYNE03b1NNMlpSbG5wOWxFQmt5Ui95eVVDa3l2aGR2RGFDcVVjOG84bDJjYnlTZUZTSWdqeTBNQkZ4ajI1UDhLbFcxcy80T2tkVEEyVEMiLCJtYWMiOiIwZjkyMzk1ZWE1M2Y3MDg3OGQ0NTViY2Y2ZTk5YmM1ZWMzZGRkOWJiNjQ3MTQ2YWQ3MjdmZGQ4NWMyMTc4MDM4IiwidGFnIjoiIn0%3D; expires=Fri, 28-Oct-2022 02:42:13 GMT; Max-Age=7200; path=/; samesite=lax; secure
laravel_session=eyJpdiI6InhYQWUwWGszU1ZFMm80VGFVMkVyQkE9PSIsInZhbHVlIjoid3lsZndkKytrWGJwZDVXV05ubXQrMVpBV2R0VVlBTlBuNlBqeFkzdkllYUt0c0REbW1vbjg5cytBSDlkN0Y3dGFpWWttZTY1R1VVWHJvd1VvTWtKaDh3TXFuRm1KWkV3VFpzNG9HRGJVcG5FSVQrekdXaGNSZU43VFIybUJxOFIiLCJtYWMiOiJiYWRiMDAzMzE2MjVmZTJiZGIzNjE4NmI3OTJkYTkzNDVkYjczMzIxMDM2MjdlZGZmOGEzMDVlM2NiNTY5NDlmIiwidGFnIjoiIn0%3D; expires=Fri, 28-Oct-2022 02:42:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-length: 176
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Fri, 28 Oct 2022 00:42:13 GMT
alt-svc: h3=":443"; ma=2592000, h3-29=":443"; ma=2592000, h3-Q050=":443"; ma=2592000, h3-Q046=":443"; ma=2592000, h3-Q043=":443"; ma=2592000, quic=":443"; ma=2592000; v="43,46"
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: BVlsBiD1sFpDEDS/eyUpICQ4xYf7hgpjcINZAfh6afeK6uwTlItWlXKAO824ZkYuPDmc0moq8Vs=
x-amz-request-id: 2AE7S288W8SYPBJX
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 28 Oct 2022 00:39:53 GMT
age: 140
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
international-package.pubchaplin.it/public
46.252.150.87301 Moved Permanently 707 B URL HTTP/2 international-package.pubchaplin.it/public
IP 46.252.150.87:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash 1304294c0823ca486542ba408ed761e3
b2a70fb2d810ca13985882e6981f33998823e83e
3bbe72f3baa8ec61de17a1d767fca58704769684b7abe9161d0c4eaf4c8f0982
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public HTTP/1.1
Host: international-package.pubchaplin.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: international-package.pubchaplin.it
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InFMZ0FuRFVncHY5ZnJCUThmZHQ4M3c9PSIsInZhbHVlIjoidlNHT3NTd1pXdWYvNi9NVERDNEZwZzZtUE5GWGVtL05pZTJPQzZEUXdSL2FsUTRhMDhYNE03b1NNMlpSbG5wOWxFQmt5Ui95eVVDa3l2aGR2RGFDcVVjOG84bDJjYnlTZUZTSWdqeTBNQkZ4ajI1UDhLbFcxcy80T2tkVEEyVEMiLCJtYWMiOiIwZjkyMzk1ZWE1M2Y3MDg3OGQ0NTViY2Y2ZTk5YmM1ZWMzZGRkOWJiNjQ3MTQ2YWQ3MjdmZGQ4NWMyMTc4MDM4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhYQWUwWGszU1ZFMm80VGFVMkVyQkE9PSIsInZhbHVlIjoid3lsZndkKytrWGJwZDVXV05ubXQrMVpBV2R0VVlBTlBuNlBqeFkzdkllYUt0c0REbW1vbjg5cytBSDlkN0Y3dGFpWWttZTY1R1VVWHJvd1VvTWtKaDh3TXFuRm1KWkV3VFpzNG9HRGJVcG5FSVQrekdXaGNSZU43VFIybUJxOFIiLCJtYWMiOiJiYWRiMDAzMzE2MjVmZTJiZGIzNjE4NmI3OTJkYTkzNDVkYjczMzIxMDM2MjdlZGZmOGEzMDVlM2NiNTY5NDlmIiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-ea902840-8483-4b5b-a389-8e40ec899aca%22%2C%22lastActivity%22:1666917054699}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1666917054700}; _hjSessionUser_2895475=eyJpZCI6IjcxOGFkNDFkLTU5OTMtNTI1Mi1iNjEwLTcwMDBjYmM5ODA1NyIsImNyZWF0ZWQiOjE2NjY5MTcwNTYxNjIsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_2895475=eyJpZCI6ImE5OTFiYWFhLTlkZDEtNDgxNi05NDlkLWFiYzZmNjc2Zjg0OCIsImNyZWF0ZWQiOjE2NjY5MTcwNTYxNzcsImluU2FtcGxlIjp0cnVlfQ==; _hjAbsoluteSessionInProgress=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 301 Moved Permanently
content-type: text/html
content-length: 707
date: Fri, 28 Oct 2022 00:42:13 GMT
location: https://international-package.pubchaplin.it/public/
vary: User-Agent
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 28 Oct 2022 00:42:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
international-package.pubchaplin.it/public/
46.252.150.87200 OK 303 B URL HTTP/2 international-package.pubchaplin.it/public/
IP 46.252.150.87:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text
Hash 9c02bf73b170bf9540fa75e277f085fd
cc9daeca133637d250db8366b0182fe637bbe238
b3e8a6d8361a2aa0ad268813c4deccd86b1ac217fd76cb9dd4f2ed73df69e9c2
Analyzer Verdict Alert openphish DHL Airways, Inc.
fortinet Phishing
GET /public/ HTTP/1.1
Host: international-package.pubchaplin.it
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Alt-Used: international-package.pubchaplin.it
Connection: keep-alive
Cookie: XSRF-TOKEN=eyJpdiI6InFMZ0FuRFVncHY5ZnJCUThmZHQ4M3c9PSIsInZhbHVlIjoidlNHT3NTd1pXdWYvNi9NVERDNEZwZzZtUE5GWGVtL05pZTJPQzZEUXdSL2FsUTRhMDhYNE03b1NNMlpSbG5wOWxFQmt5Ui95eVVDa3l2aGR2RGFDcVVjOG84bDJjYnlTZUZTSWdqeTBNQkZ4ajI1UDhLbFcxcy80T2tkVEEyVEMiLCJtYWMiOiIwZjkyMzk1ZWE1M2Y3MDg3OGQ0NTViY2Y2ZTk5YmM1ZWMzZGRkOWJiNjQ3MTQ2YWQ3MjdmZGQ4NWMyMTc4MDM4IiwidGFnIjoiIn0%3D; laravel_session=eyJpdiI6InhYQWUwWGszU1ZFMm80VGFVMkVyQkE9PSIsInZhbHVlIjoid3lsZndkKytrWGJwZDVXV05ubXQrMVpBV2R0VVlBTlBuNlBqeFkzdkllYUt0c0REbW1vbjg5cytBSDlkN0Y3dGFpWWttZTY1R1VVWHJvd1VvTWtKaDh3TXFuRm1KWkV3VFpzNG9HRGJVcG5FSVQrekdXaGNSZU43VFIybUJxOFIiLCJtYWMiOiJiYWRiMDAzMzE2MjVmZTJiZGIzNjE4NmI3OTJkYTkzNDVkYjczMzIxMDM2MjdlZGZmOGEzMDVlM2NiNTY5NDlmIiwidGFnIjoiIn0%3D; _lr_tabs_-mnnzup%2Fdus={%22sessionID%22:0%2C%22recordingID%22:%225-ea902840-8483-4b5b-a389-8e40ec899aca%22%2C%22lastActivity%22:1666917054699}; _lr_hb_-mnnzup%2Fdus={%22heartbeat%22:1666917054700}; _hjSessionUser_2895475=eyJpZCI6IjcxOGFkNDFkLTU5OTMtNTI1Mi1iNjEwLTcwMDBjYmM5ODA1NyIsImNyZWF0ZWQiOjE2NjY5MTcwNTYxNjIsImV4aXN0aW5nIjpmYWxzZX0=; _hjFirstSeen=1; _hjSession_2895475=eyJpZCI6ImE5OTFiYWFhLTlkZDEtNDgxNi05NDlkLWFiYzZmNjc2Zjg0OCIsImNyZWF0ZWQiOjE2NjY5MTcwNTYxNzcsImluU2FtcGxlIjp0cnVlfQ==; _hjAbsoluteSessionInProgress=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IjlWQWM0RUc4RnF1OVV4MlJYNkxpRVE9PSIsInZhbHVlIjoiRC9ib3l1L1pDYXA2TWJZTWJBUmhoYkJpb24yKy9xdVVscGZUeFhPczVVcFBHV1hZeDhweVg1OElWYVBSVHZHRXFFcS9zdUlxN3plYndrL202bVQ4d3dXeElieXlMWDg1cE5CUTZaek1tY1JYVHVORXVJT3QveWhBSDd6Qk0zLzAiLCJtYWMiOiIyZmMxOTdhNWQ0ZTYwNGM5MTAxMWJhNGY2ZGM1MmFhN2VjNGQyMzA2N2RhMmZkODIyOWJjMTVlYzE5NDkxMDhjIiwidGFnIjoiIn0%3D; expires=Fri, 28-Oct-2022 02:42:13 GMT; Max-Age=7200; path=/; samesite=lax; secure
laravel_session=eyJpdiI6Ik5LRHo5M1g3ZHZQRUtpTHczTE5xSXc9PSIsInZhbHVlIjoiNUFEK3l5b0FQZWVUQVMrcEtDQ09UcW5yOXpXS1ZqVmV6YW5OcXdxUmk2djFRWUdMbzBnWGdnVkd3VEdRM3BCQlpOalhLRzNsaGh2QXhCVUNrWVhvOCtlb3U3ZkpYLzQzNUhuOFFNU3dnK29wYTdBamJYT0pOdnJJS2N3UGhIU1kiLCJtYWMiOiI3MzhiYTczNTNjN2JkNWM0ZTRmODA0OTMxNGM3MWU5NjdkZWJjYTJkNzgwNzJiZTFhNDJlNWZlYzUzMjU5M2JmIiwidGFnIjoiIn0%3D; expires=Fri, 28-Oct-2022 02:42:13 GMT; Max-Age=7200; path=/; httponly; samesite=lax; secure
content-length: 303
content-encoding: br
vary: Accept-Encoding,User-Agent
date: Fri, 28 Oct 2022 00:42:13 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash d72d2f5d05f03753594e43fd34398221
ac6795c1c33f3fa2139e7f8dc601c3e6de6029a5
036c965156cf07faecc342cb2e30b7a20def68ad4a10423951ce871a7a3a6777
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6302
Cache-Control: max-age=119378
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:13 GMT
Etag: "635a3c19-1d7"
Expires: Sat, 29 Oct 2022 09:51:51 GMT
Last-Modified: Thu, 27 Oct 2022 08:06:49 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 0d9e082e175eb041657484d16c2497c7
0348a80c2c61cc270e866ad88aef888be098cd6f
447e7ee2444c9abc8be98a37cdf545748ba6dc16a22f1fb746f9c133c23c3105
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 260
Cache-Control: max-age=115479
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:13 GMT
Etag: "635a4478-117"
Expires: Sat, 29 Oct 2022 08:46:52 GMT
Last-Modified: Thu, 27 Oct 2022 08:42:32 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
push.services.mozilla.com/
44.237.163.41101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.163.41:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eRRFfsgpNbfOHHtC8LHxgQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: o/prIzFBoKKQBnmCi0biWkh04WQ=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9321
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Fri, 28 Oct 2022 00:42:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9321
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Fri, 28 Oct 2022 00:42:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9321
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Fri, 28 Oct 2022 00:42:15 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d74fd61a9f3caa5eada0b6b9f7154475
eb94382c5deaf0de61635a7d4ecc89928ef84e65
b8fe819d80e3dbca42f89e4654dfb96aa886892d265b475c7e23c780120aa5cd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B8FE819D80E3DBCA42F89E4654DFB96AA886892D265B475C7E23C780120AA5CD"
Last-Modified: Thu, 27 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9321
Expires: Fri, 28 Oct 2022 03:17:36 GMT
Date: Fri, 28 Oct 2022 00:42:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42eeb84c-c3e1-43c4-8856-79cf05355dd2.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42eeb84c-c3e1-43c4-8856-79cf05355dd2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4598687f05036d866bcf142e32f4ec7b
ef1f79a7d09291ed12dd7837f8219550e4df3581
aa232240158f1a022509380282190bbcac8bec54709e2931aef2570ced77982f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42eeb84c-c3e1-43c4-8856-79cf05355dd2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10813
x-amzn-requestid: 3d9d26e0-d891-4bfa-ba4f-6751252710bf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arwxXEJGoAMF8iw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afb3b-2fe9e82f5034fc9f5f812f0d;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:42:19 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _iHC08sIfN2TGrMjC7v0tTYqkqN1sPodxmhRmSwfTeNhYJO1efCDXA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 22:37:31 GMT
age: 7484
etag: "ef1f79a7d09291ed12dd7837f8219550e4df3581"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbcff2ea-8593-4bcf-b1fc-9436dff0e1a5.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbcff2ea-8593-4bcf-b1fc-9436dff0e1a5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26576d68b60104eef7a7c7a1e92f2ef2
e111ba254d84ab1d05eac51b8cc15af9b388e6fe
bf68e56fd052d9d3507b3b940b9f40dfa5f4589f391aa69ed3c64be2efe9d731
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdbcff2ea-8593-4bcf-b1fc-9436dff0e1a5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10328
x-amzn-requestid: b6c88321-f3f2-4ff2-a264-7ea22196e9ae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv3OF_LIAMFv7g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9c7-072c1c6871641ded27c5a4d0;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:36:07 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: x2h76H-VQY-HD2VoDNapxw46pFcO2Y0_5i8vnnUzKiIK69iZUYEPfg==
via: 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:49:30 GMT
age: 10365
etag: "e111ba254d84ab1d05eac51b8cc15af9b388e6fe"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2193431d88baf9af6829421cd13743ff
a192ab139ad0dc5cf206986eb06028ddad224e46
c535e09fb4a53ca580f5f5926d1494c50b6ad6c7c9ec78df6b7015213852b737
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff5dac341-2b9d-4d07-ab3f-dafe74f88664.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9720
x-amzn-requestid: 6b4749ca-bcb9-4274-a309-e6d463851a6a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aV_n6FOSIAMFroA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63524632-56186f1f2a0bf68f6dba843b;Sampled=0
x-amzn-remapped-date: Fri, 21 Oct 2022 07:11:46 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: awGcZ7hlJqQCVCFg5Xf_UnpmIlGPQrziJaMIzu5iB4kDTnAcxABX9Q==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 17:28:58 GMT
age: 25997
etag: "a192ab139ad0dc5cf206986eb06028ddad224e46"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6e2a26-e87a-4329-8df1-ba2276a57eba.webp
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6e2a26-e87a-4329-8df1-ba2276a57eba.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 13bafc15fa2fe97e27115e17bce8b22f
9d0fc7b50cbb96a3e85ccb501ed1d60a39a164d3
734419d9f9c28185501c25db3e0df01f2dc901a1a87bcdd066028392c8c82cf5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0b6e2a26-e87a-4329-8df1-ba2276a57eba.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14602
x-amzn-requestid: f3e186c6-4734-4c1b-a432-aa799a12ed4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv9yGaMoAMFZ4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9f1-05c8bdc2153acd8915e04826;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: e0e64aPEo628l4wM0ZSZ7U2envwnHBLt6S1bpy204t1ipgKU0qsyNg==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 22:37:37 GMT
age: 7478
etag: "9d0fc7b50cbb96a3e85ccb501ed1d60a39a164d3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250d1e28-eb33-40d6-b1f3-54b9dc6db605.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250d1e28-eb33-40d6-b1f3-54b9dc6db605.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 94b630648bd97dc4a32c2c6f2e0c135b
bd207107f5c6b48295da4b51fc1d3b5f571702d5
f8f6427f4acadfcabc4bde77288790fe86a6561a3a716894a44fc206080454b5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F250d1e28-eb33-40d6-b1f3-54b9dc6db605.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5661
x-amzn-requestid: 472e1f28-9fd7-4958-833e-ad74f7e35f98
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arwdAFGXIAMFp5Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635afab9-1e0450f4642203295d608ae7;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:40:09 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: LEob6apUcQGVxulSNOcie1vZ9y88MYMdUh67U0W6BInKCOXkyZR27Q==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:51:21 GMT
age: 10254
etag: "bd207107f5c6b48295da4b51fc1d3b5f571702d5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fd7879c-222e-44fb-b069-3d4b1253d118.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fd7879c-222e-44fb-b069-3d4b1253d118.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a7ab67cc14dbcb358f6c40ed70c63fc5
9bf69cbc25363ddc90a4040ac8059a346e674aeb
08d9c053c187f965aa71c9f64ede606d7ba048db0b994b47365fe525d11b0b53
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fd7879c-222e-44fb-b069-3d4b1253d118.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5424
x-amzn-requestid: d9c203ef-7b47-47a5-98ee-0853ea6926f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv1_FDcIAMFjUw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9bf-0693b0ab5413673511c43789;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:35:59 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: S_YzpqGA-CzKLfsKMNdTPEVHqgY9s4skcrMMgSGqD7xoJ7JrUos2Fw==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:48:49 GMT
etag: "9bf69cbc25363ddc90a4040ac8059a346e674aeb"
content-type: image/jpeg
age: 10406
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 26fdec60253dfde18f532a86d9212ffe
0fbe0c3dc7369aed36e0f081888206e8961ec7a3
e556dc5896289cbeca257187d5f60a3679e171be2e5ee5c684b2ccae57b9717b
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1853
Cache-Control: max-age=155614
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:19 GMT
Etag: "635adb0c-117"
Expires: Sat, 29 Oct 2022 19:55:53 GMT
Last-Modified: Thu, 27 Oct 2022 19:25:00 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash eec50071fa544e6c7c6f777c3fe15864
61112793711966c987ab0a79983b22ab4ab1ae0a
f905ba0d9814da22488ea385ed73ec45b57cd90583871174a8e92c3c5b291f69
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6393
Cache-Control: max-age=114437
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:19 GMT
Etag: "635a2877-1d7"
Expires: Sat, 29 Oct 2022 08:29:36 GMT
Last-Modified: Thu, 27 Oct 2022 06:43:03 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 9bf6ef458eeb1ca9318d3869f237868c
8e7f0df881082ac299372684d4ec3f027c60b79b
322354668433de4ee783a0f5533dbd8d0b298d624ff1ddd3171b2f59b85639ba
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5855
Cache-Control: max-age=136205
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:19 GMT
Etag: "635a7f99-118"
Expires: Sat, 29 Oct 2022 14:32:24 GMT
Last-Modified: Thu, 27 Oct 2022 12:54:49 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 374 B IP 93.184.220.29:0
Hash 9add398a98af7081890d25359ce21765
914e937c0c16b36b36ba9d8b2e398569ba0620d9
7793059a1678dd267c3a97fe81f940dbcb732c94f0938ad525ccba33bb5ab2ce
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6253
Cache-Control: max-age=137340
Content-Type: application/ocsp-response
Date: Fri, 28 Oct 2022 00:42:19 GMT
Etag: "635a827a-115"
Expires: Sat, 29 Oct 2022 14:51:19 GMT
Last-Modified: Thu, 27 Oct 2022 13:07:06 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 277
ocsp.usertrust.com/
172.64.155.188200 OK 472 B IP 172.64.155.188:0
Hash be252681ef56dff0ed7d68a78a7650fa
f894d08752a14858f072ea1b0d74f05200f54337
e4d0493296c30b3cf862f017178b4c640adf7a14b441d259f33afb1978799b7f
POST / HTTP/1.1
Host: ocsp.usertrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 28 Oct 2022 00:42:20 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 26 Oct 2022 00:05:08 GMT
Expires: Wed, 02 Nov 2022 00:05:07 GMT
Etag: "f894d08752a14858f072ea1b0d74f05200f54337"
Cache-Control: max-age=602858,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: HIT
Age: 424
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 760fa1838dc8b4f4-OSL
ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
54.208.67.56101 Switching Protocols 0 B URL HTTP/1.1 ws-mt1.pusher.com/app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false
IP 54.208.67.56:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /app/bc5ba70500b3342fb1aa?protocol=7&client=js&version=7.0.3&flash=false HTTP/1.1
Host: ws-mt1.pusher.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://international-package.pubchaplin.it
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: QM8YExXCDBppxwub6+5h/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 28 Oct 2022 00:42:20 GMT
Connection: upgrade
Server: nginx/1.17.7
Upgrade: websocket
Sec-WebSocket-Accept: OLKRe6AGvuivhFCwdiVghDz2dQg=
vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
143.204.55.101200 OK 1.0 kB URL HTTP/2 vars.hotjar.com/box-c1417f7b48595d0dbca01c86f95d6dbb.html
IP 143.204.55.101:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (2368), with no line terminators
Hash d2c298a660a1ee92f094a3d504e3e2e6
13fd39d202cf3e00be906a798921386b403e15c5
4aa80b9ea27a402072083d23dd118c6be178b90efb7ff0014c8b87c180655bdb
GET /box-c1417f7b48595d0dbca01c86f95d6dbb.html HTTP/1.1
Host: vars.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://international-package.pubchaplin.it/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
content-length: 1035
date: Tue, 18 Oct 2022 09:12:06 GMT
accept-ranges: bytes
cache-control: max-age=31536000
content-encoding: br
cross-origin-embedder-policy: require-corp
cross-origin-resource-policy: cross-origin
etag: "d2c298a660a1ee92f094a3d504e3e2e6"
last-modified: Tue, 18 Oct 2022 09:11:19 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9dd61138197a68f8d69f12574aab6930.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: mYDBHktaWJJYX4nlbMqf098NPACNgYMhSj7Fjwj8h6shCghjNq6rZA==
age: 833414
X-Firefox-Spdy: h2
script.hotjar.com/modules.5a17f10e21dd3fd3b841.js
143.204.55.40200 OK 66 kB URL HTTP/2 script.hotjar.com/modules.5a17f10e21dd3fd3b841.js
IP 143.204.55.40:0
File type Unicode text, UTF-8 text, with very long lines (48714)
Hash f784e2f70f455f7e613fcb9f757607c4
44c87de224e98901c88434e10cbe88e18000943f
3c167e79d789a1fd56a4dd863f94690b5124a2dcd8c1e06e3e0ad9f35fd1d49a
GET /modules.5a17f10e21dd3fd3b841.js HTTP/1.1
Host: script.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://international-package.pubchaplin.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 66091
date: Wed, 26 Oct 2022 11:38:06 GMT
accept-ranges: bytes
access-control-allow-origin: *
cache-control: max-age=31536000
content-encoding: br
cross-origin-resource-policy: cross-origin
etag: "f784e2f70f455f7e613fcb9f757607c4"
last-modified: Wed, 26 Oct 2022 11:37:54 GMT
strict-transport-security: max-age=2592000; includeSubDomains
x-content-type-options: nosniff
x-robots-tag: none
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rc4Rs-UiPd4GqHpEOP_dyAtHShZNA2DwgkiedbcsbW5QcUpJXskfoQ==
age: 133454
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.165200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.165:0
Hash f5497592ce53132f2886b54e3977582c
87930b39a191efe1b65b2d7184ec1250386dbcd1
5a46c21d0291e7446659cfe71524ce3898b2d2b2d20dfc3d1a2d37d65b609ee7
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=141494
Date: Fri, 28 Oct 2022 00:42:20 GMT
Etag: "635a94c2-1d7"
Expires: Sat, 29 Oct 2022 16:00:34 GMT
Last-Modified: Thu, 27 Oct 2022 14:25:06 GMT
Server: ECS (nyb/1D1F)
X-Cache: Miss from cloudfront
Via: 1.1 8e6dce34fd223e0c9d89fd938d1784a2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 43tk7meH46uidBVoTmRsQivDPf2WfKnzgdU2_nho_rcU52oNWbeEZQ==
Age: 5728
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7ae3f5f-2ad2-4657-9c59-970709de0e4c.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7ae3f5f-2ad2-4657-9c59-970709de0e4c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6e15c371921bf562b83ac8159b1e4a27
1a3950ad4ea93feb2f96b384f888579e9326b466
369603c397a5ee39badc420359675960ba56604f6dc8a4269decc87479b0f461
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa7ae3f5f-2ad2-4657-9c59-970709de0e4c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9524
x-amzn-requestid: cf9fb5f2-f15d-417b-9302-ea8d637a41c1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: arv9wGwnoAMFv1w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635af9f1-0dc00df943d3134a10431150;Sampled=0
x-amzn-remapped-date: Thu, 27 Oct 2022 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: gH1VGmHXzywDjm1hTR5xJ-xR5gkfhpN_U-yBjGcN30rBhXcajsu5KQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Thu, 27 Oct 2022 21:51:19 GMT
age: 10262
etag: "1a3950ad4ea93feb2f96b384f888579e9326b466"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
kit.fontawesome.com/f7165dd215.js
104.18.22.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/f7165dd215.js
IP 104.18.22.52:0
GET /f7165dd215.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://international-package.pubchaplin.it
Connection: keep-alive
Referer: https://international-package.pubchaplin.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 28 Oct 2022 00:42:19 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fx7OFDQbbNSjELSr_81D
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 760fa17f2c310b06-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
static.hotjar.com/c/hotjar-2895475.js?sv=6
143.204.55.84200 OK 0 B URL HTTP/2 static.hotjar.com/c/hotjar-2895475.js?sv=6
IP 143.204.55.84:0
GET /c/hotjar-2895475.js?sv=6 HTTP/1.1
Host: static.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://international-package.pubchaplin.it/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
content-encoding: br
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=2592000; includeSubDomains
x-cache-hit: 1
x-content-type-options: nosniff
date: Fri, 28 Oct 2022 00:42:20 GMT
cache-control: max-age=60
etag: W/c0dc54e3a04944a81de23e28091fe9d2
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 b9f0050ca4d212d7c855e005be54b1ac.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rmysZqiehq3tpvcTTE7uOKRLoyq8ULQ45dFp683gJgUkz3qCJVVgbw==
age: 54
X-Firefox-Spdy: h2
in.hotjar.com/api/v2/client/sites/2895475/visit-data?sv=6
34.248.5.173200 OK 0 B URL HTTP/2 in.hotjar.com/api/v2/client/sites/2895475/visit-data?sv=6
IP 34.248.5.173:0
POST /api/v2/client/sites/2895475/visit-data?sv=6 HTTP/1.1
Host: in.hotjar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain; charset=UTF-8
Content-Length: 130
Origin: https://international-package.pubchaplin.it
Connection: keep-alive
Referer: https://international-package.pubchaplin.it/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 28 Oct 2022 00:42:20 GMT
content-type: application/json
vary: Accept-Encoding
cache-control: no-cache, no-store
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-max-age: 86400
content-encoding: br
X-Firefox-Spdy: h2