infoo-tec.ga/
203 642 B IP
ASN #31624 Verotel International B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 49ec9f3410588d2101408a56aaa1cba5
2cb541702c208495acd687daa45bcffa0c3b504f
820fe0b2fcb1f45063c1da973719c5481c8b1fc2682c90960f7229ef8a074f10
Analyzer Verdict Alert fortinet Phishing
NIDS Severity Alert suricata medium ET INFO HTTP Request to a *.ga domain
GET / HTTP/1.1
Host: infoo-tec.ga
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 203
Server: nginx
Date: Tue, 14 Feb 2023 20:51:46 GMT
Content-Type: text/html;charset=UTF-8
Content-Length: 642
Connection: keep-alive
Cache-Control: no-cache
Pragma: no-cache
Expires: Thu, 01 Jan 1970 00:00:00 GMT
X-Server: ip-172-31-36-223
Set-Cookie: JSESSIONID=DA4323D7A2D6B81D7EF3810AABD6AAC9; Path=/; HttpOnly
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash e1e94f036b0e677a492e4238b9443034
862ebeb19164d77b65229976b12338c399ce0bd9
1875033f6e187cdb371b497b6640a3c9625283b6a4b12de5bbc5be326365b6a9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1875033F6E187CDB371B497B6640A3C9625283B6A4B12DE5BBC5BE326365B6A9"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5217
Expires: Tue, 14 Feb 2023 22:18:40 GMT
Date: Tue, 14 Feb 2023 20:51:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 8281405c524ff6eb1b0046b1c9661ce4
8233cad9810b06677bb8330dc7492dd5d1a65067
f9758415d785323b3f2108cb7762c5fc6cdc7f9fc49a46d05d691e56f93bc19f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F9758415D785323B3F2108CB7762C5FC6CDC7F9FC49A46D05D691E56F93BC19F"
Last-Modified: Tue, 14 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4712
Expires: Tue, 14 Feb 2023 22:10:15 GMT
Date: Tue, 14 Feb 2023 20:51:43 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 3534c46dafa4e959cb5f4aba0b1d8cd7
f4aa8774355b04bf1f074aeb73c56c52b32568ab
68b7b6679046611b607c073416e818c6d0391e2953ecc8781b02e57a9b5af306
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "68B7B6679046611B607C073416E818C6D0391E2953ECC8781B02E57A9B5AF306"
Last-Modified: Mon, 13 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6322
Expires: Tue, 14 Feb 2023 22:37:05 GMT
Date: Tue, 14 Feb 2023 20:51:43 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 14 Feb 2023 20:49:03 GMT
content-type: application/json
age: 160
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain
IP
File type PEM certificate\012- , ASCII text
Hash e76071a28ee566dababb3834f46d68ed
aebb4e68c1ba2de0f90025283e8ed8470944fde0
78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6
GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: Y2bdlYf4LdysSkODMygoWsmTjmynzDtv8NMkx/lHj8p+cHwzSsT7EjtxJmCnk1dSTbFUsNaktv1nBWQK9t/WfA==
x-amz-request-id: MJR2BZ67NA03BQMF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 14 Feb 2023 20:48:39 GMT
age: 184
last-modified: Sun, 29 Jan 2023 18:44:47 GMT
etag: "e76071a28ee566dababb3834f46d68ed"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 14 Feb 2023 20:51:43 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
domain.dot.tk/p/?d=INFOO-TEC.GA&i=91.90.42.154&c=47&ro=0&ref=unknown&_=1676407903284
301 Moved Permanently 0 B URL HTTP/1.0 domain.dot.tk/p/?d=INFOO-TEC.GA&i=91.90.42.154&c=47&ro=0&ref=unknown&_=1676407903284
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata medium ET POLICY HTTP Request to a *.tk domain
GET /p/?d=INFOO-TEC.GA&i=91.90.42.154&c=47&ro=0&ref=unknown&_=1676407903284 HTTP/1.1
Host: domain.dot.tk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://infoo-tec.ga/
Upgrade-Insecure-Requests: 1
HTTP/1.0 301 Moved Permanently
Date: Tue, 14 Feb 2023 20:53:22 GMT
Server: nginx/1.18.0
Content-Type: text/html; charset=ISO-8859-1
Content-Length: 0
Location: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Connection: close
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Expires, Retry-After, Content-Length, Content-Type, ETag, Cache-Control, Alert, Pragma, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 14 Feb 2023 20:14:53 GMT
age: 2210
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 188e06be43a4f1b02aa98f1762147970
5e6b7e3a172fb7327331fd8c7f74559d079bd4fb
89bd97cff26b8d656f26db21b59b02fbc3f671ac903e1e44735c7472ebd05090
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89BD97CFF26B8D656F26DB21B59B02FBC3F671AC903E1E44735C7472EBD05090"
Last-Modified: Mon, 13 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15995
Expires: Wed, 15 Feb 2023 01:18:19 GMT
Date: Tue, 14 Feb 2023 20:51:44 GMT
Connection: keep-alive
ocsp.sectigo.com/
200 OK 472 B IP
Hash ba7da914cab331cb560c0f7329a59b9f
13cc5af1bfc90308d34f384aa1d0aef28e0cbbee
250da2881a9a2d0cb46651c9c312b17f0e5451165b92809d11b2df148709756f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 14 Feb 2023 20:51:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 12 Feb 2023 10:02:37 GMT
Expires: Sun, 19 Feb 2023 10:02:36 GMT
Etag: "13cc5af1bfc90308d34f384aa1d0aef28e0cbbee"
Cache-Control: max-age=392452,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7998aef62dc30b49-OSL
www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
200 OK 2.9 kB URL HTTP/2 www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Hash 7f2a2d857762c4124e2220d7702056e6
6cb83718fea1ccc8ed46cae7d90285de58734033
1678ca6933c124b44fe8e816ffb134a299cf551412c46732e0f9994c2de9652e
GET /en/pagenotfound.html?_urlfwd=1&_=1676407224 HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://infoo-tec.ga/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: text/html
content-length: 2928
x-guploader-uploadid: ADPycdtAoAA7RHEm-qYhhxic4myn3q8CP8USzVBL2g_OYQUyUy3MHxu_d7CI1KcF7xaDerbSQ6uerxWeUgkbcOUDv34C5ZQbKV3M
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Tue, 07 Aug 2018 08:18:30 GMT
etag: "7f2a2d857762c4124e2220d7702056e6"
x-goog-generation: 1533629910554398
x-goog-metageneration: 43
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 2928
x-goog-meta-goog-reserved-file-mtime: 1533629651
content-language: en
x-goog-hash: crc32c=L9bXEQ==, md5=fyothXdixBJOIiDXcCBW5g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.sectigo.com/
200 OK 472 B IP
Hash ba7da914cab331cb560c0f7329a59b9f
13cc5af1bfc90308d34f384aa1d0aef28e0cbbee
250da2881a9a2d0cb46651c9c312b17f0e5451165b92809d11b2df148709756f
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 14 Feb 2023 20:51:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 12 Feb 2023 10:02:37 GMT
Expires: Sun, 19 Feb 2023 10:02:36 GMT
Etag: "13cc5af1bfc90308d34f384aa1d0aef28e0cbbee"
Cache-Control: max-age=392451,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb4
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7998aefabb910b49-OSL
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: s/oIxZRSrxn4Esoj4q0BsQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: GUnA3mQw4WkmwZKZCvKLHxdhDmg=
www.freenom.com/css/font-awesome.min.css
200 OK 27 kB URL HTTP/2 www.freenom.com/css/font-awesome.min.css
IP
File type ASCII text, with very long lines (26524), with CRLF line terminators
Hash 895edde9f15b1bb00acd7f3e7a6e25ee
8407f9aa4d39f3edda9f54b0e30225385d2f8b20
8ce35e7c8f6fb1f1a1cd07dbe5a7edc19d858ebfe8dbe6a04013236d5176c58a
GET /css/font-awesome.min.css HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: text/css
content-length: 26689
x-guploader-uploadid: ADPycdvnfaI3nEdJVyx10CPSCXtD2N3OT_y_AvMFY7bohsWGpZoqegKqgKtDDL1SCUL0vbgYM8PPcY1GNLgJJDqtJM4bOQ
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 24 Mar 2016 21:03:51 GMT
etag: "895edde9f15b1bb00acd7f3e7a6e25ee"
x-goog-generation: 1458853431597000
x-goog-metageneration: 68
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 26689
x-goog-meta-goog-reserved-file-mtime: 1467283521
x-goog-hash: crc32c=KEIgNw==, md5=iV7d6fFbG7AKzX8+em4l7g==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.freenom.com/css/style-2015.css
200 OK 37 kB URL HTTP/2 www.freenom.com/css/style-2015.css
IP
File type assembler source, ASCII text, with CRLF line terminators
Hash 7f167f69f709956a16a4dbde38036b9b
d1a60a8bd0f3a005ad9d616cc3a2d5fb064a8eec
b96fdf74eddef1994a12a884d6aaa2a80d7f0f2111e30aa6d303681463bd8cad
GET /css/style-2015.css HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: text/css
content-length: 36772
x-guploader-uploadid: ADPycdua7nstzuUgnfggqddNl-4evH5iWQNW5mZG3WwqdX7aS2GUFKjELamuTUNXZ6tIp3c9n2v9ocApI1CEjU0B0-_fWqGU0gLz
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 01 Sep 2016 13:39:19 GMT
etag: "7f167f69f709956a16a4dbde38036b9b"
x-goog-generation: 1472737159446000
x-goog-metageneration: 67
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 36772
x-goog-meta-goog-reserved-file-mtime: 1472737150
content-language: en
x-goog-hash: crc32c=zyW2Rg==, md5=fxZ/afcJlWoWpNveOANrmw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.freenom.com/css/reset.css
200 OK 795 B URL HTTP/2 www.freenom.com/css/reset.css
IP
File type ASCII text, with very long lines (738), with CRLF line terminators
Hash 182a9e59cb2d502fa68a9bb9e30e5ad8
f6a54c21086d495f2687e4a5fff3f1f59a8be8ad
ec34f5f4278bcc95f8e963777380ce5a20697dc357ae00c7f4f4c77468b5dba5
GET /css/reset.css HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: text/css
content-length: 795
x-guploader-uploadid: ADPycduqKcK_fPrh3Q4F73zPMgN0EXUWNr1Xrnn_pP-eJgPcbCuvoLPmZUwG-zZThHm6y51MOqKOiXS-e_KXKpbSxIx0Qw
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 22 Sep 2016 11:56:14 GMT
etag: "182a9e59cb2d502fa68a9bb9e30e5ad8"
x-goog-generation: 1474545374458000
x-goog-metageneration: 58
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 795
x-goog-meta-goog-reserved-file-mtime: 1474545367
content-language: en
x-goog-hash: crc32c=n0/UNQ==, md5=GCqeWcstUC+mipu54w5a2A==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.freenom.com/js/jquery.easing.min.js
200 OK 7.0 kB URL HTTP/2 www.freenom.com/js/jquery.easing.min.js
IP
File type ISO-8859 text, with very long lines (3601)
Hash ec64dc8377266f617caf00ebc5067a14
fb6ebf42d2da04eee38b8fabc0c09dd9e433a9e4
a7c016be6c9693535e2a8abce5814c71290f76bb8259e907dfa092f3c3633447
GET /js/jquery.easing.min.js HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: application/javascript
content-length: 7046
x-guploader-uploadid: ADPycduwpq5Is6KKeIoWChE2bS9xWY9o1rhaTeyv4aN9mko4OV9lvF81eDuV8A1z_BeQNA6Lr5jKofCN6rJ7t4_vJb2DIw
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 24 Mar 2016 21:04:33 GMT
etag: "ec64dc8377266f617caf00ebc5067a14"
x-goog-generation: 1458853473712000
x-goog-metageneration: 76
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 7046
x-goog-meta-goog-reserved-file-mtime: 1467283509
x-goog-hash: crc32c=924SHw==, md5=7GTcg3cmb2F8rwDrxQZ6FA==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.freenom.com/css/freenom.min.css
200 OK 53 kB URL HTTP/2 www.freenom.com/css/freenom.min.css
IP
File type Unicode text, UTF-8 text, with very long lines (396), with CRLF line terminators
Hash 12e8524e0e1cd523b89348f06dc07b09
ce46989028dd0a2759ad511229d470664cccd264
c390bac6e59b3fb9cb4b9ac6141fb422c5c31a0afcf04fc0185d22be344aa4b8
GET /css/freenom.min.css HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: text/css
content-length: 52912
x-guploader-uploadid: ADPycdsMJLtEdJHX2urs509aVhty5dK8jnJA-v_p1gCYBfYTa1hzR8SYnmYbqGZQqP6M75d3jiYl0EEz84XgbKKbvpkLAw
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 22 Sep 2016 11:56:14 GMT
etag: "12e8524e0e1cd523b89348f06dc07b09"
x-goog-generation: 1474545375012000
x-goog-metageneration: 58
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 52912
x-goog-meta-goog-reserved-file-mtime: 1474545367
content-language: en
x-goog-hash: crc32c=CfVXUA==, md5=EuhSTg4c1SO4k0jwbcB7CQ==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.freenom.com/images.v2/logo.png
200 OK 12 kB URL HTTP/2 www.freenom.com/images.v2/logo.png
IP
File type PNG image data, 344 x 84, 8-bit/color RGBA, non-interlaced\012- data
Hash 0d15ea0d66606463554b67000d2bf00b
1a2982d69bf466bf506cf6e3958aeb116c5380e8
8f5f28a19f79671426814c76e3b17cbc3d1b1e6346dbdf7905b1a516d314d5ad
GET /images.v2/logo.png HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: image/png
content-length: 12407
x-guploader-uploadid: ADPycdtdE60LHTCBSzBPjdnYV16BBJMos5RhpQ1zHmjW1w9-Y__LFiJ99ueBov86Yr32YPIiJiT6yLxS5CAEvTFij4QpFw
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 24 Mar 2016 21:04:18 GMT
etag: "0d15ea0d66606463554b67000d2bf00b"
x-goog-generation: 1458853458625000
x-goog-metageneration: 68
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 12407
x-goog-meta-goog-reserved-file-mtime: 1467283538
x-goog-hash: crc32c=qci8jQ==, md5=DRXqDWZgZGNVS2cADSvwCw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.freenom.com/js/jquery.rotating.backgrounds.js
200 OK 979 B URL HTTP/2 www.freenom.com/js/jquery.rotating.backgrounds.js
IP
File type ASCII text, with CRLF line terminators
Hash 8d685417c25ae3822c63b489b79575ab
dbfd3c26dc80d96c96c0b8fd97c176cf839631e3
b057931915715d603c8d72986402da1ff6e77c669b46326400cc32de8a6f1a28
GET /js/jquery.rotating.backgrounds.js HTTP/1.1
Host: www.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/en/pagenotfound.html?_urlfwd=1&_=1676407224
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.17.8
date: Tue, 14 Feb 2023 20:51:44 GMT
content-type: application/javascript
content-length: 979
x-guploader-uploadid: ADPycdv8d2DM9SEQk75uqMmrkSP8plbnqlUkjeXuP7FJq85dvTDNYrZosMlcNYL_Y3aRZ682-jfGhpkBrBc40y-H0kygrQ
cache-control: private, max-age=0, no-transform
expires: Tue, 14 Feb 2023 20:51:44 GMT
last-modified: Thu, 22 Sep 2016 11:56:18 GMT
etag: "8d685417c25ae3822c63b489b79575ab"
x-goog-generation: 1474545378683000
x-goog-metageneration: 66
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 979
x-goog-meta-goog-reserved-file-mtime: 1474545366
content-language: en
x-goog-hash: crc32c=r2XZGA==, md5=jWhUF8Ja44IsY7SJt5V1qw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 81a861ad34eebfde7b0fb8be89ae9a80
4e36dac83150fac2efa4cada5b72ae50fe7aa95c
f9dca744ee31eaffa8710d2e1863ce4ee0e0a206b0288b82a6631f4e424c561d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 20:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js
200 OK 29 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/2.0.3/jquery.min.js
IP
File type ASCII text, with very long lines (32023)
Hash 8b4eef92298453e0536f38127ed3dd35
e778ceb9964d0035f688bb1d8c3c30b36e90e261
2f6d9e04250c84e0541a29cb66bc978dc128edc99e187d4a2642fc64fb1050e4
GET /ajax/libs/jquery/2.0.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 29440
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 13 Feb 2023 17:25:10 GMT
expires: Tue, 13 Feb 2024 17:25:10 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 98794
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 81a861ad34eebfde7b0fb8be89ae9a80
4e36dac83150fac2efa4cada5b72ae50fe7aa95c
f9dca744ee31eaffa8710d2e1863ce4ee0e0a206b0288b82a6631f4e424c561d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 20:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 472 B IP
Hash 3c75eb0162e36dc079a86e08576ebb8a
ca70c84294dbc2ceff35f2512bbee47f0964dc5a
a0a39fdd94c80d42464b50bc72a7437d956a97974bb7ba01cb9d6df4d9bd9ed7
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 14 Feb 2023 20:51:44 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Sun, 12 Feb 2023 12:00:50 GMT
Expires: Sun, 19 Feb 2023 12:00:49 GMT
Etag: "ca70c84294dbc2ceff35f2512bbee47f0964dc5a"
Cache-Control: max-age=399544,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7998aefb5c510b49-OSL
register.freenom.com/js/login.js
200 OK 948 B URL HTTP/1.1 register.freenom.com/js/login.js
IP
File type ASCII text, with very long lines (948), with no line terminators
Hash 98236fa777091f2ca39919f59bc0b637
e212fc0877d911b499d1937d2d4e4c47898d1884
1de89c9d7f8cfadcf197686751cbe5ee65c4d75762447f9999b1b003a45e8b6d
GET /js/login.js HTTP/1.1
Host: register.freenom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/1.1 200 OK
Server: nginx/1.14.2
Date: Tue, 14 Feb 2023 20:51:44 GMT
Content-Type: application/x-javascript
Content-Length: 948
Connection: keep-alive
Last-Modified: Tue, 02 Sep 2014 09:21:44 GMT
ETag: "b8c158-3b4-54058c28"
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2dea84b056fe03cf91ce514618731475
5eaa44bbf7d4864cb50950e90c5832027fb8a18f
5f05224b4c2683bf0d1eca2b00cb5ace1f985e8dbc9f4b5461b0a21c2d8e2398
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 20:51:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.freenom.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 14 Feb 2023 19:53:27 GMT
expires: Tue, 14 Feb 2023 21:53:27 GMT
cache-control: public, max-age=7200
age: 3497
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2dea84b056fe03cf91ce514618731475
5eaa44bbf7d4864cb50950e90c5832027fb8a18f
5f05224b4c2683bf0d1eca2b00cb5ace1f985e8dbc9f4b5461b0a21c2d8e2398
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 14 Feb 2023 20:51:45 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google-analytics.com/j/collect?v=1&_v=j99&a=1370195688&t=pageview&_s=1&dl=https%3A%2F%2Fwww.freenom.com%2Fen%2Fpagenotfound.html%3F_urlfwd%3D1%26_%3D1676407224&dr=http%3A%2F%2Finfoo-tec.ga%2F&ul=en-us&de=UTF-8&dt=Page%20not%20found&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=963303727&gjid=1957728236&cid=1623859931.1676407905&tid=UA-13022573-13&_gid=372156705.1676407905&_r=1&_slc=1&z=1835690278
200 OK 3 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=1370195688&t=pageview&_s=1&dl=https%3A%2F%2Fwww.freenom.com%2Fen%2Fpagenotfound.html%3F_urlfwd%3D1%26_%3D1676407224&dr=http%3A%2F%2Finfoo-tec.ga%2F&ul=en-us&de=UTF-8&dt=Page%20not%20found&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=963303727&gjid=1957728236&cid=1623859931.1676407905&tid=UA-13022573-13&_gid=372156705.1676407905&_r=1&_slc=1&z=1835690278
IP
File type ASCII text, with no line terminators
Hash dec002daa3f9abe33f5ab1a61ba58e91
b286614a767c86a75059fb1d4557be706e7c3812
1cffc2b3146584685cd72751d7f28aa030ab9ae2f1bc78f2c27909f8d8287b26
POST /j/collect?v=1&_v=j99&a=1370195688&t=pageview&_s=1&dl=https%3A%2F%2Fwww.freenom.com%2Fen%2Fpagenotfound.html%3F_urlfwd%3D1%26_%3D1676407224&dr=http%3A%2F%2Finfoo-tec.ga%2F&ul=en-us&de=UTF-8&dt=Page%20not%20found&sd=24-bit&sr=1280x1024&vp=1280x939&je=0&_u=IEBAAEABAAAAACAAI~&jid=963303727&gjid=1957728236&cid=1623859931.1676407905&tid=UA-13022573-13&_gid=372156705.1676407905&_r=1&_slc=1&z=1835690278 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://www.freenom.com
Connection: keep-alive
Referer: https://www.freenom.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.freenom.com
date: Tue, 14 Feb 2023 20:51:45 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 3
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Wed, 15 Feb 2023 01:05:29 GMT
Date: Tue, 14 Feb 2023 20:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Wed, 15 Feb 2023 01:05:29 GMT
Date: Tue, 14 Feb 2023 20:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Wed, 15 Feb 2023 01:05:29 GMT
Date: Tue, 14 Feb 2023 20:51:45 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash a4c52624ced1d0cd7f733a09232cd07b
fee2a6f4ba6ea7efb77d544fc90054c9c6e1e740
e790bce4501a807d30f73eab877f1c84fbe14281e1858757a8b6b6b6fffe3888
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E790BCE4501A807D30F73EAB877F1C84FBE14281E1858757A8B6B6B6FFFE3888"
Last-Modified: Mon, 13 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15224
Expires: Wed, 15 Feb 2023 01:05:29 GMT
Date: Tue, 14 Feb 2023 20:51:45 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg
200 OK 8.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash dfbb7efa6627641ed50ee7738b2e2561
a759d26d6c811f964125ccba6e11498bca6b64c8
d1b2ea74eb288c5530c761830023830e43a6e8441594252736d6aa130dfd6520
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F74073173-a5a0-46f8-b23e-201ea802ab67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8419
x-amzn-requestid: d19bc4f6-4174-4563-a1ef-c27ba0a9e3ed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zuHdGIAMFQlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace4-5e914df75bfda625564e1142;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e0GAkTbo83Kf6PvNKGWEeTfnGeFsgaNYwkTj6wLZcvSY_Ax4cW8jjA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:14:48 GMT
age: 81417
etag: "a759d26d6c811f964125ccba6e11498bca6b64c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e24473b3e335f2046f72ea198a1a9ac8
346f3744c1fd32467ac8c1783f7c28c0ffd3cc4b
87fb8a02fb286ccd1d04abe4052fb08617fc68692515aa6daed2895e83827ccd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F31b064cd-e914-46c4-9261-f5cf1e300786.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10677
x-amzn-requestid: 7fbf05af-939a-443c-9add-f856b5ab4b1c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zFH3hoAMFUkg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace0-0676c24e496661ff545249f0;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ASk3lL6xNgUz-lLwE7lpLLh_PK_Iq-PSAz3VSOZrEweutYlfUggXTg==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:26:35 GMT
etag: "346f3744c1fd32467ac8c1783f7c28c0ffd3cc4b"
content-type: image/jpeg
age: 80710
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee02a15-8482-4f95-a7be-3d184d8c9d77.jpeg
200 OK 2.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee02a15-8482-4f95-a7be-3d184d8c9d77.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4976933e30a4a44e68d08c00ffae17d1
70a5fda7f3515776a08d7063619eb4a8a61efba0
4adeae7a16af1167e6ffab1beab81feaec2dbdc0c90e5beb081c7bfcea0e5443
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faee02a15-8482-4f95-a7be-3d184d8c9d77.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2360
x-amzn-requestid: f2e6dc22-444c-42af-947c-6d9d6f0253de
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_0iFhHIAMFjXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace9-18f8bade4f2ddbd0018c2117;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KnF84pWgZ03u1BhryzomWqZhN25K5_BjXzKpSRLhbI0T7yp7tQNAzg==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Feb 2023 16:29:31 GMT
etag: "70a5fda7f3515776a08d7063619eb4a8a61efba0"
content-type: image/jpeg
age: 15734
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ba070e2-295e-485b-8bb9-cf35a649e9d1.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ba070e2-295e-485b-8bb9-cf35a649e9d1.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b8526505043a5b3a1a8a3e86f80dd796
121031f827508bc441ab34387ffdf9bf878c43a9
70e9f640c8339aea888ceea9fd2ef74fa2c3ea210f69fa22442155dca61a799e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9ba070e2-295e-485b-8bb9-cf35a649e9d1.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10635
x-amzn-requestid: 98a6b744-d08f-4e53-a0b0-735b336c8513
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_zjG9boAMFchQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaace3-5d86345a4ee7009e61291369;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:34:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: KJ56reDkEbXg0bE7sE4pB1n7Lkn1nLiKblbKM9aFYCow4tpHrIqGnw==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:26:43 GMT
etag: "121031f827508bc441ab34387ffdf9bf878c43a9"
content-type: image/jpeg
age: 80702
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91e917d5-5bd9-45a9-9efe-44668da5acf2.jpeg
200 OK 3.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91e917d5-5bd9-45a9-9efe-44668da5acf2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 032ab41cb998f8ca7df3566febdc3b96
053e722fae75cd6804681ac6a6bc3e5d55782409
5fe68ae5f94612f7b5451667555da115b3d51324ebc2c687c8151d3e08f3aa7e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F91e917d5-5bd9-45a9-9efe-44668da5acf2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3193
x-amzn-requestid: 39f3d3dd-a7f7-44b8-b001-24e2cd08b4c5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AMa1oHN5oAMFxYg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e80b56-458ee3f05470336728bf1f11;Sampled=0
x-amzn-remapped-date: Sat, 11 Feb 2023 21:40:38 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: GMiG5gVQgPIxnVcHxKf7o6vVlu786rq_AjIwwuoK3z0cBnZglOg5gQ==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 14 Feb 2023 18:04:03 GMT
age: 10062
etag: "053e722fae75cd6804681ac6a6bc3e5d55782409"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02747389-fc16-42b4-9ec9-cf0c387a8d9c.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02747389-fc16-42b4-9ec9-cf0c387a8d9c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a368a0f4d91a04ece485fa6939b93ed0
34edb57e9f33babf053565c546089c2ffb80974a
35c141b46fad3913dfae10e1f6406a849bddcd0fb2c86d35561243aefe3bc54b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F02747389-fc16-42b4-9ec9-cf0c387a8d9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8676
x-amzn-requestid: 1a72201f-c7b0-4215-81a6-e89ad432444d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: AS_6WEqgIAMFRMQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63eaad0e-322b9c2c03c0f7662edaf161;Sampled=0
x-amzn-remapped-date: Mon, 13 Feb 2023 21:35:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: DDwIjAsONLHS0unVWg9E_pGKIFW5qHZFprQ_oOuRD1MHawmwpBQ7wA==
via: 1.1 1b0911478686968732f973d6e5e31d10.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 13 Feb 2023 22:14:48 GMT
etag: "34edb57e9f33babf053565c546089c2ffb80974a"
content-type: image/jpeg
age: 81417
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
195.20.53.242
35.241.9.150
104.155.8.167
104.18.32.68
23.36.77.32