| jemscafe.com/ | 192.0.78.24 | 301 Moved Permanently | 162 B |
IP192.0.78.24:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: jemscafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 23:50:00 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jemscafe.com/
X-ac: 3.arn _dca BYPASS
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc21ba65e44ac95470c314e068e49a9eb 17a13b13738993d889d4afa3d848dc63bf6eba64 9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7031
Expires: Mon, 06 Feb 2023 01:47:11 GMT
Date: Sun, 05 Feb 2023 23:50:00 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash1cdc095521e9ee2606059be447d1fdd5 02b5d0a5b5823e2338daf7e144700babe2a213af 8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9349
Expires: Mon, 06 Feb 2023 02:25:49 GMT
Date: Sun, 05 Feb 2023 23:50:00 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 35.241.9.150 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hashff250d3ef3fa45322bf05039a0122a9f b3e7a2c383bce1bab807dbe1a03c375258b51f1d d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 23:33:59 GMT
content-type: application/json
age: 961
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashfb7b6b46e708ad73eaaa3c21e74569ae 950663c025acad81556af5aa3022ecc9d55097fe 763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13166
Expires: Mon, 06 Feb 2023 03:29:26 GMT
Date: Sun, 05 Feb 2023 23:50:00 GMT
Connection: keep-alive
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: vVyqTsLuM3qkTqR6MqEI5u6S3b0ygZ27AU+M6eyaOvyz60Bvr9JIKTpKcv0i9gZMoqzQpBvUhXs=
x-amz-request-id: JM65ASGYYBK3JVD9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 23:24:41 GMT
age: 1519
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashc174c9728c3248cad5debf950981184e 673ce87b65fb77b797e2235a57fc6fdc5d272f53 c1b68d277fbb86facb822994834c98e4cbebd3d9faefa729ea6b8499a51ec98c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1B68D277FBB86FACB822994834C98E4CBEBD3D9FAEFA729EA6B8499A51EC98C"
Last-Modified: Sun, 05 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21513
Expires: Mon, 06 Feb 2023 05:48:34 GMT
Date: Sun, 05 Feb 2023 23:50:01 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 35.241.9.150 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP35.241.9.150:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 23:07:20 GMT
age: 2561
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdedf9c519ac38c4bece9c5bc895787d7 4911175c3f8a435978c5301c33c7a99a5e00a1d5 bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11832
Expires: Mon, 06 Feb 2023 03:07:13 GMT
Date: Sun, 05 Feb 2023 23:50:01 GMT
Connection: keep-alive
|
|
| jemscafelasalle.com/ | 192.0.78.24 | 301 Moved Permanently | 162 B |
IP192.0.78.24:0
File typeHTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Hash4f8e702cc244ec5d4de32740c0ecbd97 3adb1f02d5b6054de0046e367c1d687b6cdf7aff 9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
GET / HTTP/1.1
Host: jemscafelasalle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 23:50:01 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jemscafelasalle.com/
X-ac: 3.arn _dca BYPASS
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashf6bd9184ac22fdcd7ec3d97ada499d2d fdf46089158ac14c8c8964605ec571ae1dae1157 53d01e9fbeac79e9050eed8a7b0986dd4258bb071e3046717a7c8716d25a4640
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D01E9FBEAC79E9050EED8A7B0986DD4258BB071E3046717A7C8716D25A4640"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7707
Expires: Mon, 06 Feb 2023 01:58:28 GMT
Date: Sun, 05 Feb 2023 23:50:01 GMT
Connection: keep-alive
|
|
| push.services.mozilla.com/ | 52.88.218.181 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.88.218.181:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JWfMwYZwwfiRlanGpRl7ZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K1qNgRR/0sutztsZCz2nI0ey8Q0=
|
|
| pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.5049678329424203 | 192.0.76.3 | 200 OK | 50 B |
URL HTTP/2pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.5049678329424203 IP192.0.76.3:0
File typeGIF image data, version 89a, 6 x 5\012- data Hashe4d673a55c5656f19ef81563fb10884c 1f2d8ed221d39329251ad3a6ff1edb20b7219443 f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.5049678329424203 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h | 192.0.77.32 | 200 OK | 2.4 kB |
URL HTTP/2s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h IP192.0.77.32:0
File typeASCII text, with very long lines (365) Hashdd86a3011524276cdbdc4b89fc1c3397 9b53772ac6eddd6a73ab309653b861be6884fa5f 1c1c9151eb64be59a0305deae8a1c282c201c165e6a615eff8a5e4d326106388
GET /wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5ffc31a9-465"
content-encoding: br
expires: Thu, 23 Nov 2023 13:57:44 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
|
|
| pixel.wp.com/g.gif?crypt=UE40eW5QN0p8M2Y%2FRE1mNzc2NTVTamdsd0xoLz9RQkM2K298TXY9bERQMXc2MjhEaVZfb2wwakRoSj0mUkp1THptM1NdbkV1WjZIcU9mVWQmPUIvMlN6Jk8wW3NYVEJ3dWZOWExuWD8laFNZd3pGZnl%2BanguW01wSWcwb21%2Ba05uOUJxc1lJVDg4ZVN5RjZrLEErVEFUfFpQWG93NnNRZV0vOFR4a054ODFYSFJPWn5XV3d5PXB5WkMzUkRMLndIME5iWy1hLStsWHJPS0xSby41NnNdYWc%2FVFhHY3pMNCx2Um1GJk4lNUdDMmVaZTBPcXhjVkgucyZmUTVUeUVUT2Q0ak4uLzUuWkRtM3k%3D&v=wpcom-no-pv&rand=0.29169840958072824 | 192.0.76.3 | 200 OK | 50 B |
URL HTTP/2pixel.wp.com/g.gif?crypt=UE40eW5QN0p8M2Y%2FRE1mNzc2NTVTamdsd0xoLz9RQkM2K298TXY9bERQMXc2MjhEaVZfb2wwakRoSj0mUkp1THptM1NdbkV1WjZIcU9mVWQmPUIvMlN6Jk8wW3NYVEJ3dWZOWExuWD8laFNZd3pGZnl%2BanguW01wSWcwb21%2Ba05uOUJxc1lJVDg4ZVN5RjZrLEErVEFUfFpQWG93NnNRZV0vOFR4a054ODFYSFJPWn5XV3d5PXB5WkMzUkRMLndIME5iWy1hLStsWHJPS0xSby41NnNdYWc%2FVFhHY3pMNCx2Um1GJk4lNUdDMmVaZTBPcXhjVkgucyZmUTVUeUVUT2Q0ak4uLzUuWkRtM3k%3D&v=wpcom-no-pv&rand=0.29169840958072824 IP192.0.76.3:0
File typeGIF image data, version 89a, 6 x 5\012- data Hashe4d673a55c5656f19ef81563fb10884c 1f2d8ed221d39329251ad3a6ff1edb20b7219443 f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?crypt=UE40eW5QN0p8M2Y%2FRE1mNzc2NTVTamdsd0xoLz9RQkM2K298TXY9bERQMXc2MjhEaVZfb2wwakRoSj0mUkp1THptM1NdbkV1WjZIcU9mVWQmPUIvMlN6Jk8wW3NYVEJ3dWZOWExuWD8laFNZd3pGZnl%2BanguW01wSWcwb21%2Ba05uOUJxc1lJVDg4ZVN5RjZrLEErVEFUfFpQWG93NnNRZV0vOFR4a054ODFYSFJPWn5XV3d5PXB5WkMzUkRMLndIME5iWy1hLStsWHJPS0xSby41NnNdYWc%2FVFhHY3pMNCx2Um1GJk4lNUdDMmVaZTBPcXhjVkgucyZmUTVUeUVUT2Q0ak4uLzUuWkRtM3k%3D&v=wpcom-no-pv&rand=0.29169840958072824 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| fonts.wp.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 | 192.0.77.32 | 200 OK | 36 kB |
URL HTTP/2fonts.wp.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 IP192.0.77.32:0
File typeWeb Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data Hash60f23230f1a8d5c3b7d25b73f5b5ce23 ed08ada85d017893b9bcb8224e99154c6708f5d2 22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8
GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 35764
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 313113
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.wp.com/s/noticiatext/v15/VuJ2dNDF2Yv9qppOePKYRP12ZjtY.woff2 | 192.0.77.32 | 200 OK | 22 kB |
URL HTTP/2fonts.wp.com/s/noticiatext/v15/VuJ2dNDF2Yv9qppOePKYRP12ZjtY.woff2 IP192.0.77.32:0
File typeWeb Open Font Format (Version 2), TrueType, length 22308, version 1.0\012- data Hash62f068b74262873a4d74204ba8adda0d 8e94f66968704917906f16b927baf5df8cd13ec1 2897aebfcf32bc6b5143fe09108dcfb0baef65a1323da456696b227d8a8112e6
GET /s/noticiatext/v15/VuJ2dNDF2Yv9qppOePKYRP12ZjtY.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 22308
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 428860
last-modified: Mon, 09 May 2022 18:56:09 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.wp.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 192.0.77.32 | 200 OK | 31 kB |
URL HTTP/2fonts.wp.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP192.0.77.32:0
File typeWeb Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data Hashac0d2859ea5f8fd6bcb3c305c08ec184 7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7 ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 30928
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 314645
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.wp.com/s/noticiatext/v15/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvQ.woff2 | 192.0.77.32 | 200 OK | 22 kB |
URL HTTP/2fonts.wp.com/s/noticiatext/v15/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvQ.woff2 IP192.0.77.32:0
File typeWeb Open Font Format (Version 2), TrueType, length 21972, version 1.0\012- data Hash868bfa10ad3250159aeb710cb8c21987 8261233327f981266a3ed92a18d803018d772dba 2cfad9bda812e5f8402ad1dbaf3ffbe77ec365d7fe15ecdda812d42404c0da8b
GET /s/noticiatext/v15/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvQ.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 21972
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 593272
last-modified: Mon, 09 May 2022 18:42:50 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=50 | 192.0.72.20 | 200 OK | 1.0 kB |
URL HTTP/2jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=50 IP192.0.72.20:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash227f4fb234bb58e5205759f526dbe62b a3391bbd4949d0b5cd0987149a99f876060c297c db613242a1e8404b37dcbf8edca101aa043e5103b838c66880b11df8ece481f1
GET /2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=50 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/webp
content-length: 1018
last-modified: Tue, 11 Oct 2022 14:41:57 GMT
expires: Sat, 25 Feb 2023 16:44:51 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2022/10/img_2930.jpg?w=1180&h=530&crop=1 | 192.0.72.20 | 200 OK | 146 kB |
URL HTTP/2jemscafe.files.wordpress.com/2022/10/img_2930.jpg?w=1180&h=530&crop=1 IP192.0.72.20:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1180x530, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Size146 kB (145560 bytes) Hash419863375de7d89a72753a049b9a5643 e2d72b538b8980ae67c786ac3bd17a8972478018 00a57fed2a3bb35f94e6e50e23bed2aaa85f1b7f01ffef622be4b2be7221c18d
GET /2022/10/img_2930.jpg?w=1180&h=530&crop=1 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/webp
content-length: 145560
last-modified: Tue, 11 Oct 2022 14:45:17 GMT
expires: Fri, 03 Mar 2023 02:14:50 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2021/11/cropped-1798128_603984009681053_218311315_n.jpg?w=100 | 192.0.72.20 | 200 OK | 2.7 kB |
URL HTTP/2jemscafe.files.wordpress.com/2021/11/cropped-1798128_603984009681053_218311315_n.jpg?w=100 IP192.0.72.20:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash791b9a8e54cd1eaf3087f4955a4bc3cf ad9c88142125fbefd40e31e9754f180ece72de90 042f8020681627e926e248645dd7db11e6fc996b161d9c298654478f4107754f
GET /2021/11/cropped-1798128_603984009681053_218311315_n.jpg?w=100 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/webp
content-length: 2744
last-modified: Wed, 10 Nov 2021 22:23:24 GMT
expires: Sat, 04 Mar 2023 07:03:38 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2022/10/img_2216.jpg | 192.0.72.20 | 200 OK | 191 kB |
URL HTTP/2jemscafe.files.wordpress.com/2022/10/img_2216.jpg IP192.0.72.20:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x1090, components 3\012- data Size191 kB (190714 bytes) Hashfd217243e0bb8c8053149593313157a0 cc25430e7b2448002aba343c0f3aa11d9b9168bc ccbfea087d001c05d5cd2436f1a72b3b6d3591accebd8026c7131efffc663f41
GET /2022/10/img_2216.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 190714
last-modified: Tue, 11 Oct 2022 14:45:14 GMT
expires: Tue, 07 Mar 2023 14:06:51 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2022/10/img_3472.jpg | 192.0.72.20 | 200 OK | 287 kB |
URL HTTP/2jemscafe.files.wordpress.com/2022/10/img_3472.jpg IP192.0.72.20:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x1160, components 3\012- data Size287 kB (286908 bytes) Hash0db3093bee81ae6cba3d9ab8b0904d41 22f7ca3b3c55b3ef576133bebbf280ee6be15a7e 6f7016e03afc6137abf3484f042e07a51aa18f3ea69f75eee003c47cd7e28771
GET /2022/10/img_3472.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 286908
last-modified: Tue, 11 Oct 2022 14:45:19 GMT
expires: Tue, 28 Feb 2023 06:48:51 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2022/10/img_2930.jpg | 192.0.72.20 | 200 OK | 308 kB |
URL HTTP/2jemscafe.files.wordpress.com/2022/10/img_2930.jpg IP192.0.72.20:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x997, components 3\012- data Size308 kB (308167 bytes) Hashcf566512d304285f7a45fc56a99c9ec2 22f6ca5b845af996a0fec9c2e46d53017a6c2237 4b43512c5ff7c3ac4ad1ce8bd85106c195793d66178d52ea0be3036e82d550bc
GET /2022/10/img_2930.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 308167
last-modified: Tue, 11 Oct 2022 14:45:17 GMT
expires: Thu, 09 Mar 2023 05:47:51 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2022/10/img_2538.jpg | 192.0.72.20 | 200 OK | 310 kB |
URL HTTP/2jemscafe.files.wordpress.com/2022/10/img_2538.jpg IP192.0.72.20:0
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x943, components 3\012- data Size310 kB (309652 bytes) Hash9afaef90324349c45c96cbcb462d6a74 7d0b95d00578787179722408928beb14e60f3f39 3c289302d8144eaedcf50ec745be25f9012beeb6099eb9bd5d7301ae3740fc49
GET /2022/10/img_2538.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 309652
last-modified: Tue, 11 Oct 2022 14:45:16 GMT
expires: Mon, 13 Mar 2023 19:16:48 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash3b4ea902c3e097daaa31810cb66d585a 97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049 0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d7cf8da-65c4-43dc-af2a-18f03b8da137.jpeg | 34.120.237.76 | 200 OK | 2.4 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d7cf8da-65c4-43dc-af2a-18f03b8da137.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashac3c07c326869964cf6a5ddb153d9587 dcf6f03648c20c9c5c0d6688c766d7e2f943b4cb 55548e23c11dfcd8ef3a5a4e000c041c1b6cfe423f4aed0df6fbb23dbed5f337
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d7cf8da-65c4-43dc-af2a-18f03b8da137.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2443
x-amzn-requestid: 9286f232-d186-458a-b956-fc919f1baf89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pDxEcWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02217-473937042af885b73a64632f;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AysPcQKKPCBmnBiZlH8u_Zv62m8TuhJXwzjgIokCmaq-J_LfaeBicA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:02 GMT
age: 7140
etag: "dcf6f03648c20c9c5c0d6688c766d7e2f943b4cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24980299-b46f-4879-99f8-3d6a5bcd2153.png | 34.120.237.76 | 200 OK | 12 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24980299-b46f-4879-99f8-3d6a5bcd2153.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashb2e321721a636309ac45c6722f71a5d5 8f4224824571577109bf32b1fa7646dbfb88e818 a52611068a9694594dec4dddb1bd29afdbba897a2e1f61dcf3ceb81e262912e8
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24980299-b46f-4879-99f8-3d6a5bcd2153.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12459
x-amzn-requestid: 5dd251ba-30e6-47aa-846a-9cefa9aa4928
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPHlWIAMFnZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-402585d71ebd0ebf75af210d;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dMwyfVFayhAjpMMOiE96N2N5TwdvJ52UvscJ6miuz4W3qNKXVS9jaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:11:06 GMT
age: 5937
etag: "8f4224824571577109bf32b1fa7646dbfb88e818"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg | 34.120.237.76 | 200 OK | 7.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash13572f84ad268caedcc897f2ad7b9baf afb91ab43953e8915a2169618d2ab5e330cde0a1 0fb8b09608dc293b2084953b948cc7d8a7aa7bcb525090a7e44d5cb2a725fab3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7851
x-amzn-requestid: 11d3fe95-844b-4e5d-b31c-f99e96e2b608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHeEIAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-602b91422dff88a750b8e3e9;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F-bdQPU-zYhIlXtxcW_TiqE8ifPg3i0cg8gFuvJSfwoMDTe-Hqy1jg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:02:47 GMT
age: 6436
etag: "afb91ab43953e8915a2169618d2ab5e330cde0a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.wp.com/s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2 | 192.0.77.32 | 200 OK | 36 kB |
URL HTTP/2fonts.wp.com/s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2 IP192.0.77.32:0
File typeWeb Open Font Format (Version 2), TrueType, length 36104, version 1.0\012- data Hash32938cccb9665d3b8afe8689b88a9ea3 5834c8e5bf4a8daf23f518a5ccb2e8b8391f6190 b574669ac419e9857b34bd603555cc632152f8122f6b154d049e13cc0a167b35
GET /s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: font/woff2
content-length: 36104
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 602832
last-modified: Mon, 18 Jul 2022 19:13:00 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png | 34.120.237.76 | 200 OK | 13 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hasha24cf7b2db6d65c3fe5daf78b3309ced a3653a9a7baea412808dd91572ff21e1a505c26f f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 7200
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg | 34.120.237.76 | 200 OK | 8.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd0c62c5956f36c9f1c5d2f17bc372d98 fca4d7140e4c391b02d734425ccc92acec568a70 eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:11:05 GMT
age: 5938
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg | 34.120.237.76 | 200 OK | 3.9 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashd6107217bc206ebf204dfcf832cffc04 4f370e81106ef09ce9294eaa074ff6922197ded0 2cc25b8ddf56ceb274bd147d4e54f3fc386a97f984aa3a7bcc19f083fe68b94f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3943
x-amzn-requestid: 918fd8d6-0118-4548-9380-e3078577a876
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWBtEdKoAMFwnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de03a4-6d8ffde860d89fbc513a20f9;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:05:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hPsc7zznCEVYwIcs20winuIWf7m2aX4mg9glVuoAepKrti2Oi_mAFw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 07:09:31 GMT
age: 60032
etag: "4f370e81106ef09ce9294eaa074ff6922197ded0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.wp.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 192.0.77.32 | 200 OK | 16 kB |
URL HTTP/2fonts.wp.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP192.0.77.32:0
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: font/woff2
content-length: 15744
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 440402
last-modified: Wed, 11 May 2022 19:24:48 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=32 | 192.0.72.20 | 200 OK | 604 B |
URL HTTP/2jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=32 IP192.0.72.20:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash2e8fe3c6abed181b98a0532f561c3e78 34418aa6a03c674b9363fc865fdf2b5669290cc8 83df105835b6e27a296032837170efa6fe973daacede39f1f07103a406ad96a8
GET /2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=32 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: image/webp
content-length: 604
last-modified: Tue, 11 Oct 2022 14:41:57 GMT
expires: Fri, 10 Mar 2023 11:37:07 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=192 | 192.0.72.20 | 200 OK | 6.6 kB |
URL HTTP/2jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=192 IP192.0.72.20:0
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data Hash3ce24323bf0cf281fa0f3c31e7aa3f8b 38c866117975ab57a96157e2c8c4dadc2dd63ad5 b4d8cc2fb6087893641dd6891d2e20949a96afc5dbfc740fbe70b84806bfb1d8
GET /2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=192 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: image/webp
content-length: 6620
last-modified: Tue, 11 Oct 2022 14:41:57 GMT
expires: Fri, 17 Mar 2023 02:07:08 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
|
| jemscafelasalle.com/ | 192.0.78.24 | 200 OK | 0 B |
IP192.0.78.24:0
GET / HTTP/1.1
Host: jemscafelasalle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Cookie
x-hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
host-header: WordPress.com
link: <https://wp.me/PdvYwj-2>; rel=shortlink
content-encoding: br
x-ac: 3.arn _dca MISS
X-Firefox-Spdy: h2
|
|
| s0.wp.com/wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes IP192.0.77.32:0
GET /wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"5bffef56-1d7"
content-encoding: br
expires: Fri, 10 Nov 2023 15:10:55 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
|
|
| fonts-api.wp.com/css?family=Playfair+Display%3A400%2C400italic%2C700%2C700italic%7CNoticia+Text%3A400%2C400italic%2C700%2C700italic%7CMontserrat%3A400%2C700&subset=latin%2Clatin-ext | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2fonts-api.wp.com/css?family=Playfair+Display%3A400%2C400italic%2C700%2C700italic%7CNoticia+Text%3A400%2C400italic%2C700%2C700italic%7CMontserrat%3A400%2C700&subset=latin%2Clatin-ext IP192.0.77.32:0
GET /css?family=Playfair+Display%3A400%2C400italic%2C700%2C700italic%7CNoticia+Text%3A400%2C400italic%2C700%2C700italic%7CMontserrat%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts-api.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
x-nc: BYPASS arn 1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134 | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134 IP192.0.77.32:0
GET /wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"627a5af9-48b9"
content-encoding: br
expires: Thu, 25 Jan 2024 13:48:31 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca MISS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
|
|
| s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 IP192.0.77.32:0
GET /wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"624b18ae-346d"
content-encoding: br
expires: Tue, 04 Apr 2023 16:11:34 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
|
|
| s0.wp.com/_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ IP192.0.77.32:0
GET /_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 11 Jan 2023 21:48:12 GMT
etag: W/"63bf2e9c-1ba28"
content-encoding: br
expires: Fri, 12 Jan 2024 16:23:33 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
|
|
| s0.wp.com/_static/??-eJyNj80OgjAQhF/IulEBvRgfxZRlqcV22/Qn6NsLxMQmeOC2k8w3OwOjF+g4ESewWXiTleYIAyUv8fnV4IPrMibtGO6aERQxBT1x8f+5xxh3UESnB1mK4HMLKFl6gpjehjb4Jgf0hl7R6I7CBmDut4SL0aOzK6JYqcgJ41Auw0oheiP1+lmBBmqNU9OploY/OUM3ez00dXOqLudjPXwAGRuFKA==?cssminify=yes | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/_static/??-eJyNj80OgjAQhF/IulEBvRgfxZRlqcV22/Qn6NsLxMQmeOC2k8w3OwOjF+g4ESewWXiTleYIAyUv8fnV4IPrMibtGO6aERQxBT1x8f+5xxh3UESnB1mK4HMLKFl6gpjehjb4Jgf0hl7R6I7CBmDut4SL0aOzK6JYqcgJ41Auw0oheiP1+lmBBmqNU9OploY/OUM3ez00dXOqLudjPXwAGRuFKA==?cssminify=yes IP192.0.77.32:0
GET /_static/??-eJyNj80OgjAQhF/IulEBvRgfxZRlqcV22/Qn6NsLxMQmeOC2k8w3OwOjF+g4ESewWXiTleYIAyUv8fnV4IPrMibtGO6aERQxBT1x8f+5xxh3UESnB1mK4HMLKFl6gpjehjb4Jgf0hl7R6I7CBmDut4SL0aOzK6JYqcgJ41Auw0oheiP1+lmBBmqNU9OploY/OUM3ez00dXOqLudjPXwAGRuFKA==?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Mon, 27 Jun 2022 16:52:30 GMT
etag: W/"62b9e04e-13c3b"
content-encoding: br
expires: Wed, 09 Aug 2023 13:03:34 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
|
|
| jemscafelasalle.com/wp-admin/admin-ajax.php | 192.0.78.24 | 200 OK | 0 B |
URL HTTP/2jemscafelasalle.com/wp-admin/admin-ajax.php IP192.0.78.24:0
POST /wp-admin/admin-ajax.php HTTP/1.1
Host: jemscafelasalle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jemscafelasalle.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Origin: https://jemscafelasalle.com
Content-Length: 44
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
host-header: WordPress.com
access-control-allow-origin: https://jemscafelasalle.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-encoding: br
x-ac: 3.arn _dca BYPASS
X-Firefox-Spdy: h2
|
|
| r-login.wordpress.com/remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001 | 192.0.78.18 | 200 OK | 0 B |
URL HTTP/2r-login.wordpress.com/remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001 IP192.0.78.18:0
GET /remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001 HTTP/1.1
Host: r-login.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: br
x-ac: 2.arn _dfw MISS
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2
|
|
| s0.wp.com/_static/??-eJyNkVFuAjEMRC/UrFmVUvFR9SxJ1gqmdjaKE1Bu30BFtVBo+xNpbM3k2YZjMn6OBWMBqSZxDRQVjsnPYlSIsd2owas+wcJ28YTapcMceicjHMaXYTWM4CrxBI5n/2GYXLa5gZbG+B1E0XOdUGGvIDiRRUY5Ay1EYtswG8ZgfRuE4t/23lvqK9Nj+DNpD8OS7AnZtrkWEzJNN9j/jsi2UAz6aOpeAM9Wlbwpu46qd0kX1zntt9cl2Z9D/mL7OqNzKaOq6a9QlcuX3fcub+Pmdb3ebjfP4/4TXrrKXQ==?cssminify=yes | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/_static/??-eJyNkVFuAjEMRC/UrFmVUvFR9SxJ1gqmdjaKE1Bu30BFtVBo+xNpbM3k2YZjMn6OBWMBqSZxDRQVjsnPYlSIsd2owas+wcJ28YTapcMceicjHMaXYTWM4CrxBI5n/2GYXLa5gZbG+B1E0XOdUGGvIDiRRUY5Ay1EYtswG8ZgfRuE4t/23lvqK9Nj+DNpD8OS7AnZtrkWEzJNN9j/jsi2UAz6aOpeAM9Wlbwpu46qd0kX1zntt9cl2Z9D/mL7OqNzKaOq6a9QlcuX3fcub+Pmdb3ebjfP4/4TXrrKXQ==?cssminify=yes IP192.0.77.32:0
GET /_static/??-eJyNkVFuAjEMRC/UrFmVUvFR9SxJ1gqmdjaKE1Bu30BFtVBo+xNpbM3k2YZjMn6OBWMBqSZxDRQVjsnPYlSIsd2owas+wcJ28YTapcMceicjHMaXYTWM4CrxBI5n/2GYXLa5gZbG+B1E0XOdUGGvIDiRRUY5Ay1EYtswG8ZgfRuE4t/23lvqK9Nj+DNpD8OS7AnZtrkWEzJNN9j/jsi2UAz6aOpeAM9Wlbwpu46qd0kX1zntt9cl2Z9D/mL7OqNzKaOq6a9QlcuX3fcub+Pmdb3ebjfP4/4TXrrKXQ==?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Mon, 23 Jan 2023 18:47:25 GMT
etag: W/"63ced63d-28a5f"
content-encoding: br
expires: Tue, 23 Jan 2024 19:03:57 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
|
|
| s0.wp.com/_static/??/wp-content/mu-plugins/comment-likes/css/comment-likes.css,/i/noticons/noticons.css?m=1436783281j&cssminify=yes | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/_static/??/wp-content/mu-plugins/comment-likes/css/comment-likes.css,/i/noticons/noticons.css?m=1436783281j&cssminify=yes IP192.0.77.32:0
GET /_static/??/wp-content/mu-plugins/comment-likes/css/comment-likes.css,/i/noticons/noticons.css?m=1436783281j&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Thu, 29 Nov 2018 13:53:31 GMT
etag: W/"5bffef5b-9278"
content-encoding: br
expires: Fri, 10 Nov 2023 15:10:56 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2
|
|
| fonts-api.wp.com/css?family=Roboto:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Rubik:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black| | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2fonts-api.wp.com/css?family=Roboto:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Rubik:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black| IP192.0.77.32:0
GET /css?family=Roboto:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Rubik:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black| HTTP/1.1
Host: fonts-api.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
x-nc: BYPASS arn 1
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| jemscafe.com/ | 192.0.78.24 | 301 Moved Permanently | 0 B |
IP192.0.78.24:0
Analyzer | Verdict | Alert | fortinet | Phishing | |
GET / HTTP/1.1
Host: jemscafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/html; charset=utf-8
location: http://jemscafelasalle.com/
strict-transport-security: max-age=31536000
vary: Cookie
x-ac: 3.arn _dca MISS
X-Firefox-Spdy: h2
|
|
| 0.gravatar.com/js/gprofiles.js?ver=202305z | 192.0.73.2 | 200 OK | 0 B |
URL HTTP/20.gravatar.com/js/gprofiles.js?ver=202305z IP192.0.73.2:0
GET /js/gprofiles.js?ver=202305z HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Sun, 12 Feb 2023 23:50:01 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2
|
|
| stats.wp.com/w.js?63 | 192.0.76.3 | 200 OK | 0 B |
IP192.0.76.3:0
GET /w.js?63 HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"61dc645f-2a3d"
content-encoding: br
expires: Fri, 10 Nov 2023 15:20:42 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2
|
|
| s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.css?v=20210915 | 192.0.77.32 | 200 OK | 0 B |
URL HTTP/2s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.css?v=20210915 IP192.0.77.32:0
GET /wp-content/mu-plugins/actionbar/actionbar.css?v=20210915 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"61439ab3-4620"
content-encoding: br
expires: Fri, 10 Nov 2023 15:10:54 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2
|
|