Report - jemscafe.com/

Report Overview

Submitted URL
jemscafe.com/
IP
192.0.78.25
ASN
#2635 AUTOMATTIC
Submitted
2023-02-05 23:50:11
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
s0.wp.com	6184	2017-01-30T06:08:18Z	2023-03-13T05:13:53Z	4.7 kB	6.2 kB	192.0.77.32
jemscafe.files.wordpress.com	unknown	2022-12-27T23:56:00Z	2022-12-27T23:56:00Z	4.0 kB	1.3 MB	192.0.72.20
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	55 kB	34.120.237.76
fonts-api.wp.com	unknown	2022-11-28T23:42:34Z	2023-03-13T08:40:05Z	1.1 kB	1.2 kB	192.0.77.32
fonts.wp.com	unknown	2022-11-28T23:42:34Z	2023-03-13T08:40:05Z	3.0 kB	165 kB	192.0.77.32
jemscafelasalle.com	unknown	2021-11-29T18:42:51Z	2022-12-27T23:56:10Z	1.3 kB	1.5 kB	192.0.78.24
0.gravatar.com	6977	2012-05-21T09:08:47Z	2023-03-13T08:29:51Z	381 B	289 B	192.0.73.2
stats.wp.com	2711	2017-01-30T06:06:59Z	2023-03-13T05:11:02Z	359 B	356 B	192.0.76.3
jemscafe.com	unknown	2021-11-10T23:21:16Z	2023-01-20T23:17:15Z	786 B	637 B	192.0.78.24
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.7 kB	9.8 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.88.218.181
pixel.wp.com	2545	2017-01-30T06:31:40Z	2023-03-13T05:11:03Z	1.3 kB	478 B	192.0.76.3
r-login.wordpress.com	138134	2012-05-21T09:12:00Z	2023-03-13T07:38:45Z	591 B	341 B	192.0.78.18

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-05	medium	jemscafe.com/	Phishing
2023-02-05	medium	jemscafe.com/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (20)

	URL	Size	First Seen	Last Seen
	r-login.wordpress.com/remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001	79 B	2023-03-12	2023-03-13
Pretty URL r-login.wordpress.com/remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001 IP 192.0.78.18 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 09:31:04 Last Seen2023-03-13 18:02:04 Times Seen1 Hash 771ca91f4a487ecab48a835650397d43 22f548f1692e885f3d2bb9278fe30d688ff45d81 f7f61343f9cba69fab34ce0915aa6a5d8e858dec4725a3d2cd37e27f7ef003d9 Loading...

	s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329	11 kB	2023-03-07	2023-05-26
Pretty URL s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 IP 192.0.77.32 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2023-05-26 18:09:00 Times Seen63 Hash b55ceb26841797ed2c8a7e6a0828cb3f 7771812aca2a48801021f603f319e3cd4be0fc41 963611a5916c6de2cd9580b3ec43a961b9171c5d0fe8a7177181a8335924a88b Loading...

	jemscafelasalle.com/	261 B	2023-03-07	2024-04-26
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2024-04-26 01:43:31 Times Seen809 Hash 045d9793bea2147d49e2091523bca32f add12c4d76b79a2ac35faec35f62d29a95aba30f e08353fd145bf9e8bfd944b3d6f4ccfa8ee927eda9209edeb5b1744e3b3a85b7 Loading...

	jemscafelasalle.com/	2.2 kB	2023-03-13	2023-03-14
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 07:31:07 Last Seen2023-03-14 07:53:25 Times Seen1 Hash a89cfc70cfd40e6e6f2632fe75729a68 bf0469f61bb6ca54075a3d34895923887c0dfdd4 f84b904a0b0585ed1a7d162308850402d9500fcbf93559082a64cc082ee83eb8 Loading...

	s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134	19 kB	2023-03-07	2024-04-26
Pretty URL s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134 IP 192.0.77.32 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-26 01:56:03 Times Seen38055 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h	868 B	2023-03-07	2023-05-28
Pretty URL s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h IP 192.0.77.32 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2023-05-28 18:41:26 Times Seen126 Hash 3ec4c2fa9048a88f911f8782c4d1faa0 a64aa719cbd6f889d29925703689f10fafc7f029 9a90398fe43db7f3effe146858ff7f8c16d1402a2d28090223edd0c50da27087 Loading...

	0.gravatar.com/js/gprofiles.js?ver=202305z	24 kB	2023-03-07	2023-05-02
Pretty URL 0.gravatar.com/js/gprofiles.js?ver=202305z IP 192.0.73.2 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:49:13 Last Seen2023-05-02 07:05:44 Times Seen256 Hash f6657906cfdd038662a1c24aa61ca8ba 3cbc263ef767cd036571d3c81bf14a3518bdd8f2 1a72c573becfb1e8529cc987d0508245574afed28a710b3ca816d0f52028c66d Loading...

	jemscafelasalle.com/	146 B	2023-03-07	2024-04-23
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2024-04-23 20:28:20 Times Seen573 Hash 72f439fe6bf6582d8adf0d55188233de 378d954e6f18090933d44d706389c0c06a71be6f cef4c937f7ca9c40f6229250024c340ec4ddaf281d22416866f8a34b9cc933c3 Loading...

	jemscafelasalle.com/	31 B	2023-03-07	2024-04-23
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2024-04-23 20:28:20 Times Seen480 Hash 4157bf26a5609634f3f2c1a8377c9deb db23b4aed4cb5b8fea2e78d0568308d0b8bba67f 27b2ab69381ccff549a515e554b6255aa0d071150c1b9578714ebcf8c243ce85 Loading...

	jemscafelasalle.com/	485 B	2023-03-07	2023-10-24
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2023-10-24 19:24:33 Times Seen173 Hash 9f710a1e580543f2bc0dad63e401b854 13d6b9b7024d7c83b805036644df451512165600 7f6cdfa3a61a33ba44f275c0171237e572759d54425e261227d8df81f16cc086 Loading...

	jemscafelasalle.com/	155 B	2023-03-07	2024-04-15
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2024-04-15 15:39:14 Times Seen93 Hash 5bb2f84c1c503a9bbfe5f1aaa7bd8fe1 409399316b097ad8c7d0b23cde36d685478a21a7 e0b70d1692b1f2cb966761a772028f9430981943b7839557fd44d68352c3c18e Loading...

	jemscafelasalle.com/	441 B	2023-03-07	2024-04-26
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2024-04-26 01:43:33 Times Seen873 Hash 23ca0b3a0fde2fc9a555587728c5957c 7f0efa6919fb0217494430cb6bf1d363de29cb22 bf6041d623e98d8ce3224e766a2c61ac436ddefaab7f3363096553c1eb553114 Loading...

	jemscafelasalle.com/	5.5 kB	2023-03-13	2023-03-13
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:02:04 Last Seen2023-03-13 18:02:04 Times Seen1 Hash 6d33592b862dae899ee09799b9fb918b 7002a635f72707b93cb28a7dfb2491f7f4381a07 aeb281367d66ec30557e5f72ce4259e31683299ad860486a5abefd1e92fe69e9 Loading...

	s0.wp.com/_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ	113 kB	2023-03-13	2023-03-13
Pretty URL s0.wp.com/_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ IP 192.0.77.32 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:02:04 Last Seen2023-03-13 18:02:04 Times Seen1 Hash 88c8bc39d9521296e69e080e6f83d124 05e27517ee9bd7dd0b0f43a9b019127ee40476f2 3f21b60b7e8ea589fa2af75382fa85b3335171ae7c9a513cc15f626ead6825ba Loading...

	jemscafelasalle.com/	792 B	2023-03-07	2024-04-25
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2024-04-25 16:30:05 Times Seen455 Hash 428e7e32cb2aa31b23ff61053c640eaa 60571b5600bbc843e699117baabaa1a713eb6fec 79de8aae5d5cedc30ab538730eab164f13563253e9340c03b04a50d7624ac2dc Loading...

	jemscafelasalle.com/	562 B	2023-03-13	2023-03-13
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:02:04 Last Seen2023-03-13 18:02:04 Times Seen1 Hash fee1be8ddaab8fbcd6ca6787471c0f1f 0f4e7c7db69cb68f56cae2fd964f1624791e45a1 ba9935fbcead5d10b862e1a27ac695121ed723c25d65789d1d1f62a521293a06 Loading...

	jemscafelasalle.com/	575 B	2023-03-07	2023-07-29
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:43 Last Seen2023-07-29 16:27:24 Times Seen230 Hash d14b696f639bf06fcf50f3a588bc54c1 c3fa02c02c3656a281222c14a7d664cc55bd05eb e5824f6c2d4c5605f1f879f7c6fc629a2c00a18a45e8b35ef549d9e59ddb7e2c Loading...

	jemscafelasalle.com/	728 B	2023-03-13	2023-03-13
Pretty URL jemscafelasalle.com/ IP 192.0.78.24 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:02:04 Last Seen2023-03-13 18:02:04 Times Seen1 Hash 868f0dc8e245bdd56ecdb942880c6403 6b76dd9b23001bc14f3f01d62ee5f0ea7e18768a 964b23d9afdf24bc754b5dbf0545b25b1636efbbe58a46060a9561a62b336be7 Loading...

	s0.wp.com/_static/??-eJyFykEOgyAQheELOVIlsmt6FrVTMwQGHCDq7asJXbjq6iXv/9QWYQ6ckbOySfkwkUMoCWVczg+IP6G1qVF3Jy5DlLAfv0Y8u/LGdEW7FpSjTuuJ/yLwtMiYseKXf3bGGD30+tHZL48zO4Y=	120 kB	2023-03-08	2023-09-19
Pretty URL s0.wp.com/_static/??-eJyFykEOgyAQheELOVIlsmt6FrVTMwQGHCDq7asJXbjq6iXv/9QWYQ6ckbOySfkwkUMoCWVczg+IP6G1qVF3Jy5DlLAfv0Y8u/LGdEW7FpSjTuuJ/yLwtMiYseKXf3bGGD30+tHZL48zO4Y= IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:17:33 Last Seen2023-09-19 05:48:24 Times Seen2 Hash ff3eed1b6e06f4a9337fb2c238f106be 8ddfcc169849cd35b30d3621cd4260fec84be98a 7cc09f30072cbee0996a62474596b75c734bb43b24e7f17f53aa3cb23edd7062 Loading...

	stats.wp.com/w.js?63	11 kB	2023-03-07	2023-11-28
Pretty URL stats.wp.com/w.js?63 IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:02:33 Last Seen2023-11-28 01:58:37 Times Seen742 Hash a77d3cc9c20c3eba0e7ed84f921062b5 453e639bd1b42a43c13d950b06d5975e267b5f71 ec7c4c90e31092c6253cddb718655a1e3ac5f4f83425b1e16d54b25ff80f263f Loading...

HTTP Transactions (58)

URL IP Response Size

jemscafe.com/

192.0.78.24

301 Moved Permanently

162 B

URL HTTP/1.1
jemscafe.com/
IP
192.0.78.24:0
ASN
#2635 AUTOMATTIC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: jemscafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 23:50:00 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jemscafe.com/
X-ac: 3.arn _dca BYPASS

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7031
Expires: Mon, 06 Feb 2023 01:47:11 GMT
Date: Sun, 05 Feb 2023 23:50:00 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1cdc095521e9ee2606059be447d1fdd5
02b5d0a5b5823e2338daf7e144700babe2a213af
8bda3aabcf331c2bfcc4c7023cd797c760fd301dc353641bb95048e072f66c66

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8BDA3AABCF331C2BFCC4C7023CD797C760FD301DC353641BB95048E072F66C66"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9349
Expires: Mon, 06 Feb 2023 02:25:49 GMT
Date: Sun, 05 Feb 2023 23:50:00 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 23:33:59 GMT
content-type: application/json
age: 961
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13166
Expires: Mon, 06 Feb 2023 03:29:26 GMT
Date: Sun, 05 Feb 2023 23:50:00 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: vVyqTsLuM3qkTqR6MqEI5u6S3b0ygZ27AU+M6eyaOvyz60Bvr9JIKTpKcv0i9gZMoqzQpBvUhXs=
x-amz-request-id: JM65ASGYYBK3JVD9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 23:24:41 GMT
age: 1519
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:00 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
c174c9728c3248cad5debf950981184e
673ce87b65fb77b797e2235a57fc6fdc5d272f53
c1b68d277fbb86facb822994834c98e4cbebd3d9faefa729ea6b8499a51ec98c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C1B68D277FBB86FACB822994834C98E4CBEBD3D9FAEFA729EA6B8499A51EC98C"
Last-Modified: Sun, 05 Feb 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21513
Expires: Mon, 06 Feb 2023 05:48:34 GMT
Date: Sun, 05 Feb 2023 23:50:01 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 23:07:20 GMT
age: 2561
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11832
Expires: Mon, 06 Feb 2023 03:07:13 GMT
Date: Sun, 05 Feb 2023 23:50:01 GMT
Connection: keep-alive

jemscafelasalle.com/

192.0.78.24

301 Moved Permanently

162 B

URL HTTP/1.1
jemscafelasalle.com/
IP
192.0.78.24:0
ASN
#2635 AUTOMATTIC

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
162 B (162 bytes)
Hash
4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a

HTTP Headers

GET / HTTP/1.1
Host: jemscafelasalle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 23:50:01 GMT
Content-Type: text/html
Content-Length: 162
Connection: keep-alive
Location: https://jemscafelasalle.com/
X-ac: 3.arn _dca BYPASS

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
f6bd9184ac22fdcd7ec3d97ada499d2d
fdf46089158ac14c8c8964605ec571ae1dae1157
53d01e9fbeac79e9050eed8a7b0986dd4258bb071e3046717a7c8716d25a4640

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "53D01E9FBEAC79E9050EED8A7B0986DD4258BB071E3046717A7C8716D25A4640"
Last-Modified: Sat, 04 Feb 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7707
Expires: Mon, 06 Feb 2023 01:58:28 GMT
Date: Sun, 05 Feb 2023 23:50:01 GMT
Connection: keep-alive

push.services.mozilla.com/

52.88.218.181

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.88.218.181:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: JWfMwYZwwfiRlanGpRl7ZA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: K1qNgRR/0sutztsZCz2nI0ey8Q0=

pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.5049678329424203

192.0.76.3

200 OK

50 B

URL HTTP/2
pixel.wp.com/g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.5049678329424203
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?x_stats-initial-visibility=visible&v=wpcom-no-pv&rand=0.5049678329424203 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h

192.0.77.32

200 OK

2.4 kB

URL HTTP/2
s0.wp.com/wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
ASCII text, with very long lines (365)
Size
2.4 kB (2414 bytes)
Hash
dd86a3011524276cdbdc4b89fc1c3397
9b53772ac6eddd6a73ab309653b861be6884fa5f
1c1c9151eb64be59a0305deae8a1c282c201c165e6a615eff8a5e4d326106388

HTTP Headers

GET /wp-content/mu-plugins/gravatar-hovercards/wpgroho.js?m=1610363240h HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"5ffc31a9-465"
content-encoding: br
expires: Thu, 23 Nov 2023 13:57:44 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2

pixel.wp.com/g.gif?crypt=UE40eW5QN0p8M2Y%2FRE1mNzc2NTVTamdsd0xoLz9RQkM2K298TXY9bERQMXc2MjhEaVZfb2wwakRoSj0mUkp1THptM1NdbkV1WjZIcU9mVWQmPUIvMlN6Jk8wW3NYVEJ3dWZOWExuWD8laFNZd3pGZnl%2BanguW01wSWcwb21%2Ba05uOUJxc1lJVDg4ZVN5RjZrLEErVEFUfFpQWG93NnNRZV0vOFR4a054ODFYSFJPWn5XV3d5PXB5WkMzUkRMLndIME5iWy1hLStsWHJPS0xSby41NnNdYWc%2FVFhHY3pMNCx2Um1GJk4lNUdDMmVaZTBPcXhjVkgucyZmUTVUeUVUT2Q0ak4uLzUuWkRtM3k%3D&v=wpcom-no-pv&rand=0.29169840958072824

192.0.76.3

200 OK

50 B

URL HTTP/2
pixel.wp.com/g.gif?crypt=UE40eW5QN0p8M2Y%2FRE1mNzc2NTVTamdsd0xoLz9RQkM2K298TXY9bERQMXc2MjhEaVZfb2wwakRoSj0mUkp1THptM1NdbkV1WjZIcU9mVWQmPUIvMlN6Jk8wW3NYVEJ3dWZOWExuWD8laFNZd3pGZnl%2BanguW01wSWcwb21%2Ba05uOUJxc1lJVDg4ZVN5RjZrLEErVEFUfFpQWG93NnNRZV0vOFR4a054ODFYSFJPWn5XV3d5PXB5WkMzUkRMLndIME5iWy1hLStsWHJPS0xSby41NnNdYWc%2FVFhHY3pMNCx2Um1GJk4lNUdDMmVaZTBPcXhjVkgucyZmUTVUeUVUT2Q0ak4uLzUuWkRtM3k%3D&v=wpcom-no-pv&rand=0.29169840958072824
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?crypt=UE40eW5QN0p8M2Y%2FRE1mNzc2NTVTamdsd0xoLz9RQkM2K298TXY9bERQMXc2MjhEaVZfb2wwakRoSj0mUkp1THptM1NdbkV1WjZIcU9mVWQmPUIvMlN6Jk8wW3NYVEJ3dWZOWExuWD8laFNZd3pGZnl%2BanguW01wSWcwb21%2Ba05uOUJxc1lJVDg4ZVN5RjZrLEErVEFUfFpQWG93NnNRZV0vOFR4a054ODFYSFJPWn5XV3d5PXB5WkMzUkRMLndIME5iWy1hLStsWHJPS0xSby41NnNdYWc%2FVFhHY3pMNCx2Um1GJk4lNUdDMmVaZTBPcXhjVkgucyZmUTVUeUVUT2Q0ak4uLzUuWkRtM3k%3D&v=wpcom-no-pv&rand=0.29169840958072824 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/gif
content-length: 50
cache-control: no-cache
access-control-allow-origin: *
X-Firefox-Spdy: h2

fonts.wp.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2

192.0.77.32

200 OK

36 kB

URL HTTP/2
fonts.wp.com/s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
Web Open Font Format (Version 2), TrueType, length 35764, version 1.0\012- data
Size
36 kB (35764 bytes)
Hash
60f23230f1a8d5c3b7d25b73f5b5ce23
ed08ada85d017893b9bcb8224e99154c6708f5d2
22b6cdc450204c1cb32b31e679d812fea1c17ac506a7b78daeb12bd0ab25fde8

HTTP Headers

GET /s/playfairdisplay/v30/nuFiD-vYSZviVYUb_rj3ij__anPXDTzYgA.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 35764
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 313113
last-modified: Mon, 18 Jul 2022 19:06:36 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.wp.com/s/noticiatext/v15/VuJ2dNDF2Yv9qppOePKYRP12ZjtY.woff2

192.0.77.32

200 OK

22 kB

URL HTTP/2
fonts.wp.com/s/noticiatext/v15/VuJ2dNDF2Yv9qppOePKYRP12ZjtY.woff2
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
Web Open Font Format (Version 2), TrueType, length 22308, version 1.0\012- data
Size
22 kB (22308 bytes)
Hash
62f068b74262873a4d74204ba8adda0d
8e94f66968704917906f16b927baf5df8cd13ec1
2897aebfcf32bc6b5143fe09108dcfb0baef65a1323da456696b227d8a8112e6

HTTP Headers

GET /s/noticiatext/v15/VuJ2dNDF2Yv9qppOePKYRP12ZjtY.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 22308
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 428860
last-modified: Mon, 09 May 2022 18:56:09 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.wp.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

192.0.77.32

200 OK

31 kB

URL HTTP/2
fonts.wp.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 30928
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 314645
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.wp.com/s/noticiatext/v15/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvQ.woff2

192.0.77.32

200 OK

22 kB

URL HTTP/2
fonts.wp.com/s/noticiatext/v15/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvQ.woff2
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
Web Open Font Format (Version 2), TrueType, length 21972, version 1.0\012- data
Size
22 kB (21972 bytes)
Hash
868bfa10ad3250159aeb710cb8c21987
8261233327f981266a3ed92a18d803018d772dba
2cfad9bda812e5f8402ad1dbaf3ffbe77ec365d7fe15ecdda812d42404c0da8b

HTTP Headers

GET /s/noticiatext/v15/VuJpdNDF2Yv9qppOePKYRP1-3R5NuGvQ.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: font/woff2
content-length: 21972
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 593272
last-modified: Mon, 09 May 2022 18:42:50 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=50

192.0.72.20

200 OK

1.0 kB

URL HTTP/2
jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=50
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 50x50, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
1.0 kB (1018 bytes)
Hash
227f4fb234bb58e5205759f526dbe62b
a3391bbd4949d0b5cd0987149a99f876060c297c
db613242a1e8404b37dcbf8edca101aa043e5103b838c66880b11df8ece481f1

HTTP Headers

GET /2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=50 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/webp
content-length: 1018
last-modified: Tue, 11 Oct 2022 14:41:57 GMT
expires: Sat, 25 Feb 2023 16:44:51 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2022/10/img_2930.jpg?w=1180&h=530&crop=1

192.0.72.20

200 OK

146 kB

URL HTTP/2
jemscafe.files.wordpress.com/2022/10/img_2930.jpg?w=1180&h=530&crop=1
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x530, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
146 kB (145560 bytes)
Hash
419863375de7d89a72753a049b9a5643
e2d72b538b8980ae67c786ac3bd17a8972478018
00a57fed2a3bb35f94e6e50e23bed2aaa85f1b7f01ffef622be4b2be7221c18d

HTTP Headers

GET /2022/10/img_2930.jpg?w=1180&h=530&crop=1 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/webp
content-length: 145560
last-modified: Tue, 11 Oct 2022 14:45:17 GMT
expires: Fri, 03 Mar 2023 02:14:50 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2021/11/cropped-1798128_603984009681053_218311315_n.jpg?w=100

192.0.72.20

200 OK

2.7 kB

URL HTTP/2
jemscafe.files.wordpress.com/2021/11/cropped-1798128_603984009681053_218311315_n.jpg?w=100
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 100x100, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
2.7 kB (2744 bytes)
Hash
791b9a8e54cd1eaf3087f4955a4bc3cf
ad9c88142125fbefd40e31e9754f180ece72de90
042f8020681627e926e248645dd7db11e6fc996b161d9c298654478f4107754f

HTTP Headers

GET /2021/11/cropped-1798128_603984009681053_218311315_n.jpg?w=100 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/webp
content-length: 2744
last-modified: Wed, 10 Nov 2021 22:23:24 GMT
expires: Sat, 04 Mar 2023 07:03:38 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2022/10/img_2216.jpg

192.0.72.20

200 OK

191 kB

URL HTTP/2
jemscafe.files.wordpress.com/2022/10/img_2216.jpg
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x1090, components 3\012- data
Size
191 kB (190714 bytes)
Hash
fd217243e0bb8c8053149593313157a0
cc25430e7b2448002aba343c0f3aa11d9b9168bc
ccbfea087d001c05d5cd2436f1a72b3b6d3591accebd8026c7131efffc663f41

HTTP Headers

GET /2022/10/img_2216.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 190714
last-modified: Tue, 11 Oct 2022 14:45:14 GMT
expires: Tue, 07 Mar 2023 14:06:51 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2022/10/img_3472.jpg

192.0.72.20

200 OK

287 kB

URL HTTP/2
jemscafe.files.wordpress.com/2022/10/img_3472.jpg
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x1160, components 3\012- data
Size
287 kB (286908 bytes)
Hash
0db3093bee81ae6cba3d9ab8b0904d41
22f7ca3b3c55b3ef576133bebbf280ee6be15a7e
6f7016e03afc6137abf3484f042e07a51aa18f3ea69f75eee003c47cd7e28771

HTTP Headers

GET /2022/10/img_3472.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 286908
last-modified: Tue, 11 Oct 2022 14:45:19 GMT
expires: Tue, 28 Feb 2023 06:48:51 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2022/10/img_2930.jpg

192.0.72.20

200 OK

308 kB

URL HTTP/2
jemscafe.files.wordpress.com/2022/10/img_2930.jpg
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x997, components 3\012- data
Size
308 kB (308167 bytes)
Hash
cf566512d304285f7a45fc56a99c9ec2
22f6ca5b845af996a0fec9c2e46d53017a6c2237
4b43512c5ff7c3ac4ad1ce8bd85106c195793d66178d52ea0be3036e82d550bc

HTTP Headers

GET /2022/10/img_2930.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 308167
last-modified: Tue, 11 Oct 2022 14:45:17 GMT
expires: Thu, 09 Mar 2023 05:47:51 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2022/10/img_2538.jpg

192.0.72.20

200 OK

310 kB

URL HTTP/2
jemscafe.files.wordpress.com/2022/10/img_2538.jpg
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 216x216, segment length 16, baseline, precision 8, 1284x943, components 3\012- data
Size
310 kB (309652 bytes)
Hash
9afaef90324349c45c96cbcb462d6a74
7d0b95d00578787179722408928beb14e60f3f39
3c289302d8144eaedcf50ec745be25f9012beeb6099eb9bd5d7301ae3740fc49

HTTP Headers

GET /2022/10/img_2538.jpg HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: image/jpeg
content-length: 309652
last-modified: Tue, 11 Oct 2022 14:45:16 GMT
expires: Mon, 13 Mar 2023 19:16:48 GMT
x-orig-src: 01_mogdir
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3b4ea902c3e097daaa31810cb66d585a
97dfbd81d31b43196d8a4bd2fa3ff8a5cc115049
0291ed72c3115d6b6cf8c001b13bbc4ad517d76242b6cbed9db5ee1162572d3f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0291ED72C3115D6B6CF8C001B13BBC4AD517D76242B6CBED9DB5EE1162572D3F"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10830
Expires: Mon, 06 Feb 2023 02:50:32 GMT
Date: Sun, 05 Feb 2023 23:50:02 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d7cf8da-65c4-43dc-af2a-18f03b8da137.jpeg

34.120.237.76

200 OK

2.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d7cf8da-65c4-43dc-af2a-18f03b8da137.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
2.4 kB (2443 bytes)
Hash
ac3c07c326869964cf6a5ddb153d9587
dcf6f03648c20c9c5c0d6688c766d7e2f943b4cb
55548e23c11dfcd8ef3a5a4e000c041c1b6cfe423f4aed0df6fbb23dbed5f337

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5d7cf8da-65c4-43dc-af2a-18f03b8da137.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 2443
x-amzn-requestid: 9286f232-d186-458a-b956-fc919f1baf89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pDxEcWIAMFhOQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02217-473937042af885b73a64632f;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:39:35 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: AysPcQKKPCBmnBiZlH8u_Zv62m8TuhJXwzjgIokCmaq-J_LfaeBicA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:02 GMT
age: 7140
etag: "dcf6f03648c20c9c5c0d6688c766d7e2f943b4cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24980299-b46f-4879-99f8-3d6a5bcd2153.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (12459 bytes)
Hash
b2e321721a636309ac45c6722f71a5d5
8f4224824571577109bf32b1fa7646dbfb88e818
a52611068a9694594dec4dddb1bd29afdbba897a2e1f61dcf3ceb81e262912e8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F24980299-b46f-4879-99f8-3d6a5bcd2153.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12459
x-amzn-requestid: 5dd251ba-30e6-47aa-846a-9cefa9aa4928
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiPHlWIAMFnZw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-402585d71ebd0ebf75af210d;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: dMwyfVFayhAjpMMOiE96N2N5TwdvJ52UvscJ6miuz4W3qNKXVS9jaA==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:11:06 GMT
age: 5937
etag: "8f4224824571577109bf32b1fa7646dbfb88e818"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.9 kB (7851 bytes)
Hash
13572f84ad268caedcc897f2ad7b9baf
afb91ab43953e8915a2169618d2ab5e330cde0a1
0fb8b09608dc293b2084953b948cc7d8a7aa7bcb525090a7e44d5cb2a725fab3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8827daad-7b04-4c60-a6f6-c1b923025413.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7851
x-amzn-requestid: 11d3fe95-844b-4e5d-b31c-f99e96e2b608
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiRHeEIAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-602b91422dff88a750b8e3e9;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: F-bdQPU-zYhIlXtxcW_TiqE8ifPg3i0cg8gFuvJSfwoMDTe-Hqy1jg==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:02:47 GMT
age: 6436
etag: "afb91ab43953e8915a2169618d2ab5e330cde0a1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.wp.com/s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2

192.0.77.32

200 OK

36 kB

URL HTTP/2
fonts.wp.com/s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
Web Open Font Format (Version 2), TrueType, length 36104, version 1.0\012- data
Size
36 kB (36104 bytes)
Hash
32938cccb9665d3b8afe8689b88a9ea3
5834c8e5bf4a8daf23f518a5ccb2e8b8391f6190
b574669ac419e9857b34bd603555cc632152f8122f6b154d049e13cc0a167b35

HTTP Headers

GET /s/playfairdisplay/v30/nuFkD-vYSZviVYUb_rj3ij__anPXDTnogkk7.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: font/woff2
content-length: 36104
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 602832
last-modified: Mon, 18 Jul 2022 19:13:00 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (13230 bytes)
Hash
a24cf7b2db6d65c3fe5daf78b3309ced
a3653a9a7baea412808dd91572ff21e1a505c26f
f55ee98bab5ce53d6acc1cac7f54f089b42d5f2ffbe750d869c4f4a7bc26f715

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3288563a-8f6e-4597-833f-b5512e91e772.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 13230
x-amzn-requestid: 8171829a-cf6d-4c33-99a1-f3cef7cd4475
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiTH8GoAMFYLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-1597a0f06ef3db2534a101aa;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Nvfp0sEYw5bxnFHisq80WCXh6T-LdFlPqs95tyX2epjMfhM_hjUj0A==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 7200
etag: "a3653a9a7baea412808dd91572ff21e1a505c26f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8929 bytes)
Hash
d0c62c5956f36c9f1c5d2f17bc372d98
fca4d7140e4c391b02d734425ccc92acec568a70
eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:11:05 GMT
age: 5938
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3943 bytes)
Hash
d6107217bc206ebf204dfcf832cffc04
4f370e81106ef09ce9294eaa074ff6922197ded0
2cc25b8ddf56ceb274bd147d4e54f3fc386a97f984aa3a7bcc19f083fe68b94f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3943
x-amzn-requestid: 918fd8d6-0118-4548-9380-e3078577a876
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWBtEdKoAMFwnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de03a4-6d8ffde860d89fbc513a20f9;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:05:08 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: hPsc7zznCEVYwIcs20winuIWf7m2aX4mg9glVuoAepKrti2Oi_mAFw==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 07:09:31 GMT
age: 60032
etag: "4f370e81106ef09ce9294eaa074ff6922197ded0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

fonts.wp.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

192.0.77.32

200 OK

16 kB

URL HTTP/2
fonts.wp.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://fonts-api.wp.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: font/woff2
content-length: 15744
access-control-allow-origin: *
timing-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 0
cache-control: public, max-age=31536000
age: 440402
last-modified: Wed, 11 May 2022 19:24:48 GMT
x-nc: HIT arn 2
accept-ranges: bytes
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=32

192.0.72.20

200 OK

604 B

URL HTTP/2
jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=32
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 32x32, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
604 B (604 bytes)
Hash
2e8fe3c6abed181b98a0532f561c3e78
34418aa6a03c674b9363fc865fdf2b5669290cc8
83df105835b6e27a296032837170efa6fe973daacede39f1f07103a406ad96a8

HTTP Headers

GET /2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=32 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: image/webp
content-length: 604
last-modified: Tue, 11 Oct 2022 14:41:57 GMT
expires: Fri, 10 Mar 2023 11:37:07 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=192

192.0.72.20

200 OK

6.6 kB

URL HTTP/2
jemscafe.files.wordpress.com/2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=192
IP
192.0.72.20:0
ASN
#2635 AUTOMATTIC

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 192x192, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size
6.6 kB (6620 bytes)
Hash
3ce24323bf0cf281fa0f3c31e7aa3f8b
38c866117975ab57a96157e2c8c4dadc2dd63ad5
b4d8cc2fb6087893641dd6891d2e20949a96afc5dbfc740fbe70b84806bfb1d8

HTTP Headers

GET /2021/11/cropped-cropped-1798128_603984009681053_218311315_n.jpg?w=192 HTTP/1.1
Host: jemscafe.files.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: image/webp
content-length: 6620
last-modified: Tue, 11 Oct 2022 14:41:57 GMT
expires: Fri, 17 Mar 2023 02:07:08 GMT
x-orig-src: 0_imageresize
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-origin: https://jemscafe.wordpress.com
vary: Accept, Origin
x-nc: MISS arn 20 np
x-content-type-options: nosniff
X-Firefox-Spdy: h2

jemscafelasalle.com/

192.0.78.24

200 OK

0 B

URL HTTP/2
jemscafelasalle.com/
IP
192.0.78.24:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET / HTTP/1.1
Host: jemscafelasalle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding, Cookie
x-hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
host-header: WordPress.com
link: <https://wp.me/PdvYwj-2>; rel=shortlink
content-encoding: br
x-ac: 3.arn _dca MISS
X-Firefox-Spdy: h2

s0.wp.com/wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/themes/h4/global.css?m=1420737423h&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"5bffef56-1d7"
content-encoding: br
expires: Fri, 10 Nov 2023 15:10:55 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2

fonts-api.wp.com/css?family=Playfair+Display%3A400%2C400italic%2C700%2C700italic%7CNoticia+Text%3A400%2C400italic%2C700%2C700italic%7CMontserrat%3A400%2C700&subset=latin%2Clatin-ext

192.0.77.32

200 OK

0 B

URL HTTP/2
fonts-api.wp.com/css?family=Playfair+Display%3A400%2C400italic%2C700%2C700italic%7CNoticia+Text%3A400%2C400italic%2C700%2C700italic%7CMontserrat%3A400%2C700&subset=latin%2Clatin-ext
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Playfair+Display%3A400%2C400italic%2C700%2C700italic%7CNoticia+Text%3A400%2C400italic%2C700%2C700italic%7CMontserrat%3A400%2C700&subset=latin%2Clatin-ext HTTP/1.1
Host: fonts-api.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
x-nc: BYPASS arn 1
content-encoding: gzip
X-Firefox-Spdy: h2

s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?m=1652185836h&ver=6.2-alpha-55134 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"627a5af9-48b9"
content-encoding: br
expires: Thu, 25 Jan 2024 13:48:31 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca MISS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2

s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.js?v=20220329
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/mu-plugins/actionbar/actionbar.js?v=20220329 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"624b18ae-346d"
content-encoding: br
expires: Tue, 04 Apr 2023 16:11:34 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2

s0.wp.com/_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_static/??-eJydUctuAyEM/KESK0qV9FL1WxzWm5rFQDHk8fc1ag/RHqpVTwyeGVsew604n1Oj1EC6K7FfOCkEagX98vuHUvPUfeOcQAxFUhgm9M3NuQoEhfE6bQ/jdkFf4KmvsRNd2VO5r6mnkT6LWMlFXqx9WBXWxvZJYrLSz+AxYaHhCF+d6mM3R7pr5InqJtcPcv9ybZImvPIFR3qb5LpwsaXTYtn6rm7mv2LDSTi5M1YQ1EbVkGvVbjci+5D3/fF0eD0djm/78A1HnLeJ HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Wed, 11 Jan 2023 21:48:12 GMT
etag: W/"63bf2e9c-1ba28"
content-encoding: br
expires: Fri, 12 Jan 2024 16:23:33 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2

s0.wp.com/_static/??-eJyNj80OgjAQhF/IulEBvRgfxZRlqcV22/Qn6NsLxMQmeOC2k8w3OwOjF+g4ESewWXiTleYIAyUv8fnV4IPrMibtGO6aERQxBT1x8f+5xxh3UESnB1mK4HMLKFl6gpjehjb4Jgf0hl7R6I7CBmDut4SL0aOzK6JYqcgJ41Auw0oheiP1+lmBBmqNU9OploY/OUM3ez00dXOqLudjPXwAGRuFKA==?cssminify=yes

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/_static/??-eJyNj80OgjAQhF/IulEBvRgfxZRlqcV22/Qn6NsLxMQmeOC2k8w3OwOjF+g4ESewWXiTleYIAyUv8fnV4IPrMibtGO6aERQxBT1x8f+5xxh3UESnB1mK4HMLKFl6gpjehjb4Jgf0hl7R6I7CBmDut4SL0aOzK6JYqcgJ41Auw0oheiP1+lmBBmqNU9OploY/OUM3ez00dXOqLudjPXwAGRuFKA==?cssminify=yes
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_static/??-eJyNj80OgjAQhF/IulEBvRgfxZRlqcV22/Qn6NsLxMQmeOC2k8w3OwOjF+g4ESewWXiTleYIAyUv8fnV4IPrMibtGO6aERQxBT1x8f+5xxh3UESnB1mK4HMLKFl6gpjehjb4Jgf0hl7R6I7CBmDut4SL0aOzK6JYqcgJ41Auw0oheiP1+lmBBmqNU9OploY/OUM3ez00dXOqLudjPXwAGRuFKA==?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Mon, 27 Jun 2022 16:52:30 GMT
etag: W/"62b9e04e-13c3b"
content-encoding: br
expires: Wed, 09 Aug 2023 13:03:34 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2

jemscafelasalle.com/wp-admin/admin-ajax.php

192.0.78.24

200 OK

0 B

URL HTTP/2
jemscafelasalle.com/wp-admin/admin-ajax.php
IP
192.0.78.24:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /wp-admin/admin-ajax.php HTTP/1.1
Host: jemscafelasalle.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://jemscafelasalle.com/
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Origin: https://jemscafelasalle.com
Content-Length: 44
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000
vary: Accept-Encoding
x-hacker: If you're reading this, you should visit automattic.com/jobs and apply to join the fun, mention this header.
host-header: WordPress.com
access-control-allow-origin: https://jemscafelasalle.com
access-control-allow-credentials: true
x-robots-tag: noindex
x-content-type-options: nosniff
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
content-encoding: br
x-ac: 3.arn _dca BYPASS
X-Firefox-Spdy: h2

r-login.wordpress.com/remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001

192.0.78.18

200 OK

0 B

URL HTTP/2
r-login.wordpress.com/remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001
IP
192.0.78.18:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /remote-login.php?wpcom_remote_login=key&origin=aHR0cHM6Ly9qZW1zY2FmZWxhc2FsbGUuY29t&wpcomid=199713179&time=1675641001 HTTP/1.1
Host: r-login.wordpress.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding, Cookie
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
content-encoding: br
x-ac: 2.arn _dfw MISS
strict-transport-security: max-age=31536000
X-Firefox-Spdy: h2

s0.wp.com/_static/??-eJyNkVFuAjEMRC/UrFmVUvFR9SxJ1gqmdjaKE1Bu30BFtVBo+xNpbM3k2YZjMn6OBWMBqSZxDRQVjsnPYlSIsd2owas+wcJ28YTapcMceicjHMaXYTWM4CrxBI5n/2GYXLa5gZbG+B1E0XOdUGGvIDiRRUY5Ay1EYtswG8ZgfRuE4t/23lvqK9Nj+DNpD8OS7AnZtrkWEzJNN9j/jsi2UAz6aOpeAM9Wlbwpu46qd0kX1zntt9cl2Z9D/mL7OqNzKaOq6a9QlcuX3fcub+Pmdb3ebjfP4/4TXrrKXQ==?cssminify=yes

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/_static/??-eJyNkVFuAjEMRC/UrFmVUvFR9SxJ1gqmdjaKE1Bu30BFtVBo+xNpbM3k2YZjMn6OBWMBqSZxDRQVjsnPYlSIsd2owas+wcJ28YTapcMceicjHMaXYTWM4CrxBI5n/2GYXLa5gZbG+B1E0XOdUGGvIDiRRUY5Ay1EYtswG8ZgfRuE4t/23lvqK9Nj+DNpD8OS7AnZtrkWEzJNN9j/jsi2UAz6aOpeAM9Wlbwpu46qd0kX1zntt9cl2Z9D/mL7OqNzKaOq6a9QlcuX3fcub+Pmdb3ebjfP4/4TXrrKXQ==?cssminify=yes
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_static/??-eJyNkVFuAjEMRC/UrFmVUvFR9SxJ1gqmdjaKE1Bu30BFtVBo+xNpbM3k2YZjMn6OBWMBqSZxDRQVjsnPYlSIsd2owas+wcJ28YTapcMceicjHMaXYTWM4CrxBI5n/2GYXLa5gZbG+B1E0XOdUGGvIDiRRUY5Ay1EYtswG8ZgfRuE4t/23lvqK9Nj+DNpD8OS7AnZtrkWEzJNN9j/jsi2UAz6aOpeAM9Wlbwpu46qd0kX1zntt9cl2Z9D/mL7OqNzKaOq6a9QlcuX3fcub+Pmdb3ebjfP4/4TXrrKXQ==?cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Mon, 23 Jan 2023 18:47:25 GMT
etag: W/"63ced63d-28a5f"
content-encoding: br
expires: Tue, 23 Jan 2024 19:03:57 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2

s0.wp.com/_static/??/wp-content/mu-plugins/comment-likes/css/comment-likes.css,/i/noticons/noticons.css?m=1436783281j&cssminify=yes

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/_static/??/wp-content/mu-plugins/comment-likes/css/comment-likes.css,/i/noticons/noticons.css?m=1436783281j&cssminify=yes
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /_static/??/wp-content/mu-plugins/comment-likes/css/comment-likes.css,/i/noticons/noticons.css?m=1436783281j&cssminify=yes HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://jemscafelasalle.com
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/css;charset=utf-8
vary: Accept-Encoding
last-modified: Thu, 29 Nov 2018 13:53:31 GMT
etag: W/"5bffef5b-9278"
content-encoding: br
expires: Fri, 10 Nov 2023 15:10:56 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 2
X-Firefox-Spdy: h2

fonts-api.wp.com/css?family=Roboto:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Rubik:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|

192.0.77.32

200 OK

0 B

URL HTTP/2
fonts-api.wp.com/css?family=Roboto:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Rubik:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black|Rubik:thin,extralight,light,regular,medium,semibold,bold,italic,bolditalic,extrabold,black| HTTP/1.1
Host: fonts-api.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:02 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
vary: Accept-Encoding, Accept-Encoding
x-nc: BYPASS arn 1
content-encoding: gzip
X-Firefox-Spdy: h2

jemscafe.com/

192.0.78.24

301 Moved Permanently

0 B

URL HTTP/2
jemscafe.com/
IP
192.0.78.24:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: jemscafe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 301 Moved Permanently
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: text/html; charset=utf-8
location: http://jemscafelasalle.com/
strict-transport-security: max-age=31536000
vary: Cookie
x-ac: 3.arn _dca MISS
X-Firefox-Spdy: h2

0.gravatar.com/js/gprofiles.js?ver=202305z

192.0.73.2

200 OK

0 B

URL HTTP/2
0.gravatar.com/js/gprofiles.js?ver=202305z
IP
192.0.73.2:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/gprofiles.js?ver=202305z HTTP/1.1
Host: 0.gravatar.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
last-modified: Thu, 15 Sep 2022 11:48:47 GMT
etag: W/"6323111f-5deb"
content-encoding: br
expires: Sun, 12 Feb 2023 23:50:01 GMT
cache-control: max-age=604800
X-Firefox-Spdy: h2

stats.wp.com/w.js?63

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/w.js?63
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /w.js?63 HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"61dc645f-2a3d"
content-encoding: br
expires: Fri, 10 Nov 2023 15:20:42 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.css?v=20210915

192.0.77.32

200 OK

0 B

URL HTTP/2
s0.wp.com/wp-content/mu-plugins/actionbar/actionbar.css?v=20210915
IP
192.0.77.32:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /wp-content/mu-plugins/actionbar/actionbar.css?v=20210915 HTTP/1.1
Host: s0.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://jemscafelasalle.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:50:03 GMT
content-type: text/css
vary: Accept-Encoding
etag: W/"61439ab3-4620"
content-encoding: br
expires: Fri, 10 Nov 2023 15:10:54 GMT
cache-control: max-age=31536000
x-ac: 4.arn _dca BYPASS
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
timing-allow-origin: *
x-nc: HIT arn 1
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML