aablue.temp.swtest.ru/index1.php
77.222.40.105200 OK 2.6 kB URL HTTP/1.1 aablue.temp.swtest.ru/index1.php
IP 77.222.40.105:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (996)
Hash d0815dd82ea45906207c9b68ff3ed4bd
2f076fcba0c4dd484fa1a275fd9448bd385db047
15394249b9363e31b6764769762a9335995af3d0878643708e02405e1418a598
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index1.php HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:25 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
X-Powered-By: PHP/7.1.33
Set-Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8; path=/
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14738
Expires: Wed, 01 Feb 2023 14:31:04 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7e05c8461bd2dc5a149f71e2c465ea29
705983959c887e243cb55a8a1796757b579ee977
4d9ea085d5dda9dabed11af9847c2b0aa6182358673b356a4e2bd631e22a9922
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4D9EA085D5DDA9DABED11AF9847C2B0AA6182358673B356A4E2BD631E22A9922"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8977
Expires: Wed, 01 Feb 2023 12:55:03 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Wed, 01 Feb 2023 09:43:25 GMT
content-type: application/json
age: 2521
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09ee4b0fe6cf4ca5ed31b24452338d00
7e62b6e20f0d4737f4a8d94f9818a0883027839e
56da08e18a408d7313de4e598984a251a0ecf85bbba98b421be9aebeb98835af
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "56DA08E18A408D7313DE4E598984A251A0ECF85BBBA98B421BE9AEBEB98835AF"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4787
Expires: Wed, 01 Feb 2023 11:45:13 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: tW6YzJZi3kX/zE71Tnkqmm51CYzfukjOEr0JfVNhXqQmv7JZcQXyscuZ8zDuKVD11Vxj+iYX2CN6jId7y/1IPw==
x-amz-request-id: JBGBK1DH7CVY4K42
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 01 Feb 2023 10:22:37 GMT
age: 169
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Wed, 01 Feb 2023 10:25:26 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
access-control-allow-credentials: true
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
aablue.temp.swtest.ru/index_files/password-68b329da9893e34099c7d8ad5cb9c940.css
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/password-68b329da9893e34099c7d8ad5cb9c940.css
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
GET /index_files/password-68b329da9893e34099c7d8ad5cb9c940.css HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/webcomponents.esm-1f5f3d9c71b67350c64ec55c2acbadc3.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/webcomponents.esm-1f5f3d9c71b67350c64ec55c2acbadc3.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/webcomponents.esm-1f5f3d9c71b67350c64ec55c2acbadc3.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/rn9x46512eq4qogi.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/rn9x46512eq4qogi.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/rn9x46512eq4qogi.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/commons.bundle-2538c7403a35e5210ba22639e7ea5da1.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/commons.bundle-2538c7403a35e5210ba22639e7ea5da1.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/commons.bundle-2538c7403a35e5210ba22639e7ea5da1.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/login-layout.bundle-0ffae2a40defd1bb5020c2f27d2c420d.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/login-layout.bundle-0ffae2a40defd1bb5020c2f27d2c420d.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/login-layout.bundle-0ffae2a40defd1bb5020c2f27d2c420d.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/commons-d5b596036e661ac38f22c70a7cd50323.css
77.222.40.105200 OK 56 kB URL HTTP/1.1 aablue.temp.swtest.ru/index_files/commons-d5b596036e661ac38f22c70a7cd50323.css
IP 77.222.40.105:0
File type ASCII text, with very long lines (65455)
Hash c961c6c5fcbbd05937b9791400903efb
e8355cdd2f199ad41bda9895830683ed756c123a
28e7580f89c9f93acab6e685df09f4b71d2addcfaf2d89862fceaef25ded936c
Analyzer Verdict Alert openphish Swisscom IT Services AG
GET /index_files/commons-d5b596036e661ac38f22c70a7cd50323.css HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding
Last-Modified: Sun, 29 Jan 2023 12:59:22 GMT
ETag: W/"4105790-5af98-5f366aadfcb97"
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/username.bundle-bbb6eb130f6bd8f1ed56bc3c6520a305.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/username.bundle-bbb6eb130f6bd8f1ed56bc3c6520a305.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/username.bundle-bbb6eb130f6bd8f1ed56bc3c6520a305.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 01cec024e44d9f39b4b4fe6a71677ffa
7f52f95da87156a582662a4155e0475fa00e704f
ab324f350af903a1e54aea39afd4e761d15dd380434d77b10a53da7f0b44ed65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 10:25:26 GMT
Last-Modified: Wed, 01 Feb 2023 08:55:22 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
aablue.temp.swtest.ru/index_files/webmail_logo.png
77.222.40.105200 OK 562 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/webmail_logo.png
IP 77.222.40.105:0
File type PNG image data, 52 x 36, 8-bit/color RGBA, non-interlaced\012- data
Hash 2a6185f01f8bdc7147d221fd776e534d
b400c663338d05eea95654f34f907210e6c022da
f07b8927a11190e0d9988dd003bb5079a5905678ad8951eb424ab7c71dcaba33
Analyzer Verdict Alert openphish Swisscom IT Services AG
GET /index_files/webmail_logo.png HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 200 OK
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: image/png
Content-Length: 562
Connection: keep-alive
Keep-Alive: timeout=10
Last-Modified: Sun, 29 Jan 2023 12:59:19 GMT
ETag: "4105791-232-5f366aab6a857"
Accept-Ranges: bytes
aablue.temp.swtest.ru/index_files/login-layout.bundle-0ffae2a40defd1bb5020c2f27d2c420d.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/login-layout.bundle-0ffae2a40defd1bb5020c2f27d2c420d.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/login-layout.bundle-0ffae2a40defd1bb5020c2f27d2c420d.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 01cec024e44d9f39b4b4fe6a71677ffa
7f52f95da87156a582662a4155e0475fa00e704f
ab324f350af903a1e54aea39afd4e761d15dd380434d77b10a53da7f0b44ed65
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5404
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Wed, 01 Feb 2023 10:25:26 GMT
Last-Modified: Wed, 01 Feb 2023 08:55:22 GMT
Server: ECS (ska/F709)
X-Cache: HIT
Content-Length: 280
aablue.temp.swtest.ru/index_files/username.bundle-bbb6eb130f6bd8f1ed56bc3c6520a305.js.t%C3%A9l%C3%A9chargement
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/username.bundle-bbb6eb130f6bd8f1ed56bc3c6520a305.js.t%C3%A9l%C3%A9chargement
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/username.bundle-bbb6eb130f6bd8f1ed56bc3c6520a305.js.t%C3%A9l%C3%A9chargement HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
23.36.79.17200 OK 3.1 kB URL HTTP/1.1 ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 6a95966e914076ed0d4904835252bdb2
6f8f0a061b1dd8773df3a330b9608b6c8df24798
5a06d04691d3f2af8fb689f3259e3af8313bb2b5bbc9f8f0aad3f6a40c7dacf4
POST /ACD03AC2C25755916911CC706A59388A8CAC9C3D HTTP/1.1
Host: ocsp.swisssign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3147
Last-Modified: Wed, 01 Feb 2023 10:25:07 GMT
ETag: "6f8f0a061b1dd8773df3a330b9608b6c8df24798"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Content-Type: application/ocsp-response
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 01 Feb 2023 11:25:26 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
23.36.79.17200 OK 3.1 kB URL HTTP/1.1 ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 6a95966e914076ed0d4904835252bdb2
6f8f0a061b1dd8773df3a330b9608b6c8df24798
5a06d04691d3f2af8fb689f3259e3af8313bb2b5bbc9f8f0aad3f6a40c7dacf4
POST /ACD03AC2C25755916911CC706A59388A8CAC9C3D HTTP/1.1
Host: ocsp.swisssign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3147
Last-Modified: Wed, 01 Feb 2023 10:25:07 GMT
ETag: "6f8f0a061b1dd8773df3a330b9608b6c8df24798"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Content-Type: application/ocsp-response
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 01 Feb 2023 11:25:26 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
23.36.79.17200 OK 3.1 kB URL HTTP/1.1 ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 6a95966e914076ed0d4904835252bdb2
6f8f0a061b1dd8773df3a330b9608b6c8df24798
5a06d04691d3f2af8fb689f3259e3af8313bb2b5bbc9f8f0aad3f6a40c7dacf4
POST /ACD03AC2C25755916911CC706A59388A8CAC9C3D HTTP/1.1
Host: ocsp.swisssign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3147
Last-Modified: Wed, 01 Feb 2023 10:25:07 GMT
ETag: "6f8f0a061b1dd8773df3a330b9608b6c8df24798"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Content-Type: application/ocsp-response
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 01 Feb 2023 11:25:26 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
23.36.79.17200 OK 3.1 kB URL HTTP/1.1 ocsp.swisssign.net/ACD03AC2C25755916911CC706A59388A8CAC9C3D
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 6a95966e914076ed0d4904835252bdb2
6f8f0a061b1dd8773df3a330b9608b6c8df24798
5a06d04691d3f2af8fb689f3259e3af8313bb2b5bbc9f8f0aad3f6a40c7dacf4
POST /ACD03AC2C25755916911CC706A59388A8CAC9C3D HTTP/1.1
Host: ocsp.swisssign.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 87
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3147
Last-Modified: Wed, 01 Feb 2023 10:25:07 GMT
ETag: "6f8f0a061b1dd8773df3a330b9608b6c8df24798"
X-Frame-Options: SAMEORIGIN
Strict-Transport-Security: max-age=16070400
X-XSS-Protection: 1; mode=block
X-Content-Type-Options: nosniff
Referrer-Policy: same-origin
Feature-Policy: autoplay 'self'; camera 'self'; display-capture 'self'; document-domain 'self'; encrypted-media 'self'; fullscreen 'self'; geolocation 'self'; microphone 'self'; midi 'self'; payment 'self'; xr-spatial-tracking 'self'
Content-Type: application/ocsp-response
Cache-Control: public, no-transform, must-revalidate, max-age=3600
Expires: Wed, 01 Feb 2023 11:25:26 GMT
Date: Wed, 01 Feb 2023 10:25:26 GMT
Connection: keep-alive
aablue.temp.swtest.ru/index_files/saved_resource.html
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/saved_resource.html
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/saved_resource.html HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
aablue.temp.swtest.ru/index_files/ffYndB0YMKVYINMV.html
77.222.40.105404 Not Found 707 B URL HTTP/1.1 aablue.temp.swtest.ru/index_files/ffYndB0YMKVYINMV.html
IP 77.222.40.105:0
File type XML 1.0 document text\012- XHTML document text (version 1.0)\012- broken XHTML document text (version 1.0)\012- HTML document text\012- XML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text
Hash d2895e4e2a22577a020223fd0e302cf0
439ae168d88b7d2b0897429641dbf72526f18810
efc88423b0bf6eae680b75ab8aaae4ac36a3365cc4b40e5fa9cc841cdd13679c
Analyzer Verdict Alert openphish Swisscom IT Services AG
fortinet Phishing
GET /index_files/ffYndB0YMKVYINMV.html HTTP/1.1
Host: aablue.temp.swtest.ru
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/index1.php
Cookie: PHPSESSID=9f4e16766746f6a9a2adc4e34306efe8
Upgrade-Insecure-Requests: 1
HTTP/1.1 404 Not Found
Server: nginx/1.19.1
Date: Wed, 01 Feb 2023 10:25:26 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Vary: Accept-Encoding, accept-language,accept-charset
Content-Language: en
Content-Encoding: gzip
login.scl.swisscom.ch/lifeform-spritesheet-db5b9234be03de8612bb31c38e09fcf7.png
195.186.211.241200 OK 38 kB URL HTTP/1.1 login.scl.swisscom.ch/lifeform-spritesheet-db5b9234be03de8612bb31c38e09fcf7.png
IP 195.186.211.241:0
File type PNG image data, 3600 x 40, 8-bit colormap, non-interlaced\012- data
Hash db5b9234be03de8612bb31c38e09fcf7
025c237758f5f3a815dc1bed0919e93e508bff8f
f9adb57dca9cbd2514ed249714b613d65e78a81cadda2882679a9672c812d25e
GET /lifeform-spritesheet-db5b9234be03de8612bb31c38e09fcf7.png HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 38448
Content-Type: image/png
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"db5b9234be03de8612bb31c38e09fcf7"
Last-Modified: Mon, 30 Jan 2023 15:44:38 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 970d778c-b6a0-47dd-4e32-977c933bbbd1
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=56cbaa81-d1af-49c0-bf10-b21d97e89e00; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584da1cdfe71ac5d36c33c4d0cc9a343d28607cc7f737e236cd852d536d4d038c71cba555bdf429523c6fbe78eb4305c93a0c; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584da1cdfe71ac5d36c33c4d0cc9a343d28607cc7f737e236cd852d536d4d038c71cba555bdf429523c6fbe78eb4305c93a0c; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000fa04eeeabaffeedca6b4ba76a23c6966084a89fe831c42c1369c01a4349121f3088fb1d6b21130006380b412100fbb6b33a24054d96b8d86d33b46513d58743ab6d6a30ffd8783469b427dc6f64baebae15c91c685af53df; Secure; Path=/; HttpOnly
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Wed, 01 Feb 2023 09:41:42 GMT
age: 2624
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2251
Expires: Wed, 01 Feb 2023 11:02:58 GMT
Date: Wed, 01 Feb 2023 10:25:27 GMT
Connection: keep-alive
push.services.mozilla.com/
54.213.114.144101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.213.114.144:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MTDPfL136LXw3R8rNCl/1A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 34bYy0g2dOR//eaclbaTubezh3M=
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2363
Expires: Wed, 01 Feb 2023 11:04:51 GMT
Date: Wed, 01 Feb 2023 10:25:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2363
Expires: Wed, 01 Feb 2023 11:04:51 GMT
Date: Wed, 01 Feb 2023 10:25:28 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 43bc5afe1d7330aa521e0efc78185a92
f53e9daa0a32e0acf7a10d9494fb383c1d039305
429d5a3a918137cae61e9dee0f05b0d5b4c799517aa6ae30e041a2a3e7f05cac
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "429D5A3A918137CAE61E9DEE0F05B0D5B4C799517AA6AE30E041A2A3E7F05CAC"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2363
Expires: Wed, 01 Feb 2023 11:04:51 GMT
Date: Wed, 01 Feb 2023 10:25:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23db22ce2120fbb0ae6109e1a046062d
2068c8d9a5bc30a17be658e198e26c64a80703cf
f307ba6c4929d9f0c9354334b7baea878da379138489d9689bb777c4da308dab
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffc960001-158a-4a74-b6ce-f28cd110ca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8735
x-amzn-requestid: f466c962-7b12-4923-a4be-7ff9fce372a0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foJaWFP_IAMF9wA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9890e-7a8c027d58f5b9132bb68a33;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 21:33:02 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: XtqfgDxskGIUmZdRj2nrGDpo9KvECk528eLZV29xNx3h7CLOu49mnQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 21:42:19 GMT
age: 45789
etag: "2068c8d9a5bc30a17be658e198e26c64a80703cf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27e95b7912edc909d6b031e36fe83534
eb27fae0bb17dbe0929a620002195233ef50c1d0
b32e7e1a2eee367c5bf9e99bcb38f4c74c4e9e7bdfe7fb0f8f2a657060c0624c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F82a4ade3-0c43-4f21-9738-0bc1dbb9a6a6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8597
x-amzn-requestid: e7bf4ac9-d86d-4ee9-9e10-8a42e5dfe2c6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fcRaNEW4IAMFatA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d4c90d-7731312f630b00ba028836ca;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 07:04:45 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: z3ZJ7bq6LuJd-9I9D22VIs0avctNGVDKnYmt-fxevCheQibivmUomQ==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 13:15:35 GMT
age: 76193
etag: "eb27fae0bb17dbe0929a620002195233ef50c1d0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
34.120.237.76200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2998f7f50ac0eec931c348e8a0fb0c60
f5e411cda74cb7fb4a662f4787e9543b9749c8b5
0c81413a819e379212bf757b1c9469415aec2ac8fdf47f94ff23c420a1da20e1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb28b8703-d49a-4e2e-80e7-cf4d081d6dba.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5736
x-amzn-requestid: 895ee89b-8d2e-42f9-a392-466557f8a0d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffEtEGk_oAMFYPA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5e7ed-026a1b0d79dc7eb572317bd2;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 03:28:45 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 64EbarGrn6AIpXOE8TIfiBeGFQinx-P9lUIvmiQ1ivZgFrxl7_W4EQ==
via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 31 Jan 2023 10:37:05 GMT
age: 85703
etag: "f5e411cda74cb7fb4a662f4787e9543b9749c8b5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 02:29:58 GMT
age: 28530
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg
34.120.237.76200 OK 6.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d2189ff7eee65e0fde9be79c994b1d1e
c82caabf73415755643b9ab874364162e798f58c
f0d08ab954f728a73a30d22c874019789d55b64a6160d5dafe4d08249f2e9ed4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb48b6dde-a831-4a2a-91f4-75df52be0b31.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6773
x-amzn-requestid: b3b6b388-dd50-4a4d-83e0-219b0d285f4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: foee_GcdoAMFRWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d9aac6-286883827020ff9a1412030c;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 23:56:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 59jJ-7FGO_UqZi7pUGx6h9imXp1a5bOeAbKFkDQBC91qQ2lnyyl11w==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 00:13:02 GMT
etag: "c82caabf73415755643b9ab874364162e798f58c"
content-type: image/jpeg
age: 36746
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e4354120b504a8b1d1c3f4e206eb4611
ba854dec74347525b20dbf3b4e5c13876d56aa1c
bc921fe78a71864819998207c13b5c3ca7913275a4503119c5d105ad7827c377
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F49ea501c-c491-40c1-82ec-c750680af9df.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9282
x-amzn-requestid: f448477b-b445-46fa-8aee-8c5c527ee95b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: feqp8FuToAMFxDw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d5be3f-30fbf0dd70d17878651809a0;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 00:30:55 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XGTtVMp42cyJ-Xmh0D-ECG50tJe_AZWIir602PjdJ1CwsAygJpbJyA==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 04:00:34 GMT
age: 23094
etag: "ba854dec74347525b20dbf3b4e5c13876d56aa1c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
login.scl.swisscom.ch/TheSansB_400_-4bbcd055023eeb44538a47d343e0966f.ttf
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_400_-4bbcd055023eeb44538a47d343e0966f.ttf
IP 195.186.211.241:0
GET /TheSansB_400_-4bbcd055023eeb44538a47d343e0966f.ttf HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 182908
Content-Type: application/x-font-ttf
Date: Wed, 01 Feb 2023 10:25:27 GMT
Etag: W/"4bbcd055023eeb44538a47d343e0966f"
Last-Modified: Mon, 30 Jan 2023 21:56:18 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 1356e18f-892b-4d4d-6538-0827e7d12de2
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=d9f133ee-87ab-48ff-a490-3bed4d7de30c; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:27 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584da2c44a3da295cc96862996114f11bd66eacc84623fc7c2852028d557f5d0c14251ee720229fcd4120568a3cf5cbc1e13b; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584da2c44a3da295cc96862996114f11bd66eacc84623fc7c2852028d557f5d0c14251ee720229fcd4120568a3cf5cbc1e13b; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab20009e6ebf6cbdc1f70dc813cd1b51b53849e52d85353ee91fb431b26c0fd3d657ff085ea611ec113000c164d77ac68e63005e989a4d770a06954604dff2fdd6363642dc637696af7d01f807cbf8c25f9b0399b49acab71c021b; Secure; Path=/; HttpOnly
zupimages.net/up/22/19/zl6k.png
104.21.233.198301 Moved Permanently 0 B URL HTTP/2 zupimages.net/up/22/19/zl6k.png
IP 104.21.233.198:0
GET /up/22/19/zl6k.png HTTP/1.1
Host: zupimages.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 301 Moved Permanently
date: Wed, 01 Feb 2023 10:25:26 GMT
location: https://www.zupimages.net/up/22/19/zl6k.png
cache-control: max-age=3600
expires: Wed, 01 Feb 2023 11:25:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2FpPir8NaFpiaFHcK9ZI%2B7jS5Iwcum2Tc0uTPFtMlc2t8rI0zrsTZcL4513wBDKx%2Faq8DqivnSwBCADCNOK9aIu%2FfWXhmbEmd9cC6fSG4OhVS5SMzdkx8cN8EbohVeisL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7929fbac394edcc7-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
login.scl.swisscom.ch/TheSansB_400_-4f0d59a18ca1c88dcfbbce6510b21da5.woff2
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_400_-4f0d59a18ca1c88dcfbbce6510b21da5.woff2
IP 195.186.211.241:0
GET /TheSansB_400_-4f0d59a18ca1c88dcfbbce6510b21da5.woff2 HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 50708
Content-Type: application/font-woff2
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"4f0d59a18ca1c88dcfbbce6510b21da5"
Last-Modified: Mon, 30 Jan 2023 15:44:38 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 077589fc-06fa-4fd1-62dd-7501d2eea503
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=a568c9b8-5228-458e-8c76-895db66086df; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584da6895acc4896e72cfb943bb05447fa2fd8e069e63432555e4ef0f42d08be829e93c861cfb45dd6e842f8975ec0ee430e0; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584da6895acc4896e72cfb943bb05447fa2fd8e069e63432555e4ef0f42d08be829e93c861cfb45dd6e842f8975ec0ee430e0; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab20000938a0ef0a336f2ccd57dda8711240df7c2d6da99cdcdda99a8ec876fb4233b50887155ab911300045c952cb59ac0e2b33a24054d96b8d8657a198d49ea0efc56fdb4447685c519076ab6316725015fdb0823bf57783e19b; Secure; Path=/; HttpOnly
login.scl.swisscom.ch/TheSansB_700_-7dac4ba6f5bfb4ba199e7fe3454a6780.woff2
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_700_-7dac4ba6f5bfb4ba199e7fe3454a6780.woff2
IP 195.186.211.241:0
GET /TheSansB_700_-7dac4ba6f5bfb4ba199e7fe3454a6780.woff2 HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 49592
Content-Type: application/font-woff2
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"7dac4ba6f5bfb4ba199e7fe3454a6780"
Last-Modified: Mon, 30 Jan 2023 15:44:38 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 2f3e9781-e2fb-48a1-5931-0645beca0fed
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=ef4a63a1-6c15-4904-a7fa-d88a678233c5; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584da4741060d344d3b53398142afdff5239fbcdfbe50a458b90e37fb3502a0067a8aa84192180f38dd45b5fafe75c3273a52; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584da4741060d344d3b53398142afdff5239fbcdfbe50a458b90e37fb3502a0067a8aa84192180f38dd45b5fafe75c3273a52; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000cedfadc8ec17298e54bf684540650f635be5941bdee5f16ac19130b3f7356b640817865ac1113000914d81b1fb0806ab33a24054d96b8d86a6747d383b85ae0f4c5fd065a3e0c780be1f628e22e431b0919eaf4b545691e2; Secure; Path=/; HttpOnly
login.scl.swisscom.ch/TheSansB_300_-725d06aefcb68dc767cf1bc91d7b5c1e.woff2
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_300_-725d06aefcb68dc767cf1bc91d7b5c1e.woff2
IP 195.186.211.241:0
GET /TheSansB_300_-725d06aefcb68dc767cf1bc91d7b5c1e.woff2 HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 55864
Content-Type: application/font-woff2
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"725d06aefcb68dc767cf1bc91d7b5c1e"
Last-Modified: Mon, 30 Jan 2023 15:44:38 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 97c0ab2c-8d5e-471c-56be-312c6bb7f513
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=97d4789e-703e-4e85-baca-b6cc2870586c; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584daf337f47e800fe451af66f5d041a46211612545cedb0aa1a72ba63f1d319ef8b574c22300c6c44119297d101bf02457b3; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584daf337f47e800fe451af66f5d041a46211612545cedb0aa1a72ba63f1d319ef8b574c22300c6c44119297d101bf02457b3; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000ae9a34fd8b27045218adbb7e433168bcae883158d89cee23cea35ae7aa98befc08f5b38e531130001f43f96cd1eb1b6333a24054d96b8d8659e97159a7eeebdb90a1f72b3accab1e35c594b9d9d319e275bef7066b695fc0; Secure; Path=/; HttpOnly
login.scl.swisscom.ch/TheSansB_700_-12f304077148a6519764ab53cef73e8a.woff
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_700_-12f304077148a6519764ab53cef73e8a.woff
IP 195.186.211.241:0
GET /TheSansB_700_-12f304077148a6519764ab53cef73e8a.woff HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 89821
Content-Type: application/font-woff
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"12f304077148a6519764ab53cef73e8a"
Last-Modified: Mon, 30 Jan 2023 21:56:14 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 9c80dce6-55ce-423e-4977-324a7c979d42
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=0bf933b3-ea1e-49fa-b4a4-abc2be6c0203; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584dabdba564166c23cfde198d808c15dbade409c686c53aafdd12cf87ea3eeb1080e2eff7619ac6480aeb0a0ce7a74dc86dc; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584dabdba564166c23cfde198d808c15dbade409c686c53aafdd12cf87ea3eeb1080e2eff7619ac6480aeb0a0ce7a74dc86dc; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000ccfd5b1c0d51af1c33d4ded71380337752b628d04f5fa4226d87dedf95819d3a083b88efab1130000021516a1c81d16c33a24054d96b8d86981aaf0632c7593dd4dae4ab405700f4ec5c11070b988b2765f7a31db3a0bc2c; Secure; Path=/; HttpOnly
login.scl.swisscom.ch/TheSansB_700_-389285ef4123a6da054df3bf191c4c25.ttf
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_700_-389285ef4123a6da054df3bf191c4c25.ttf
IP 195.186.211.241:0
GET /TheSansB_700_-389285ef4123a6da054df3bf191c4c25.ttf HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 186552
Content-Type: application/x-font-ttf
Date: Wed, 01 Feb 2023 10:25:27 GMT
Etag: W/"389285ef4123a6da054df3bf191c4c25"
Last-Modified: Mon, 30 Jan 2023 21:56:18 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: e16398fe-3542-4c9a-4f9f-ce0b14aae831
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=be274a20-64e2-4fbc-a867-3bcd7736e732; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:27 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584daf34c74920b68665a2cdd5dd1a6e00b029f7a61893471cf52333432f49b669f6c0611315d91565821729e6d7d2bc04296; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584daf34c74920b68665a2cdd5dd1a6e00b029f7a61893471cf52333432f49b669f6c0611315d91565821729e6d7d2bc04296; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000fe91a4604d12b4a09e26a504cd8ac237934d06897ad9d6de8e1ae0414bf105180834c5b3f611300069d56918658f04905e989a4d770a0695530ee7848dc20cfb39b82c519703bdce8d40e0fd89d2b5c908111383132dc15a; Secure; Path=/; HttpOnly
www.zupimages.net/up/22/19/zl6k.png
104.21.233.198200 OK 0 B URL HTTP/2 www.zupimages.net/up/22/19/zl6k.png
IP 104.21.233.198:0
GET /up/22/19/zl6k.png HTTP/1.1
Host: www.zupimages.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://aablue.temp.swtest.ru/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Wed, 01 Feb 2023 10:25:26 GMT
content-type: image/png
content-disposition: filename="zl6k.png"
strict-transport-security: max-age=15768000
x-xss-protection: 1; mode=block
cache-control: max-age=2678400
cf-cache-status: EXPIRED
last-modified: Wed, 01 Feb 2023 03:51:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eU1rolpt%2BRs8sbFt9aQ599o7XIkiE7hEjoIAKp87NgVbjhnCGe8jtlHdU9H5Eh3owGUeAx1376hfPubXtqrMVpX%2FJBcOtr4z%2FCut6g4aCyTP0HuD6HE4lHY9JLcsIAbnLw0qHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7929fbaca9dedcc7-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
login.scl.swisscom.ch/TheSansB_400_-f5ebe8b3d957cb3898cdfcd302368b82.woff
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_400_-f5ebe8b3d957cb3898cdfcd302368b82.woff
IP 195.186.211.241:0
GET /TheSansB_400_-f5ebe8b3d957cb3898cdfcd302368b82.woff HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 87428
Content-Type: application/font-woff
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"f5ebe8b3d957cb3898cdfcd302368b82"
Last-Modified: Mon, 30 Jan 2023 21:56:17 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 5ade1e88-a637-4e1d-4e8a-31c96d710eff
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=6bc6773c-3455-4738-ab56-5e0415440193; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584dacaaafc62b13fbba59e6b9f59940bead2cc8ff6e60aec8629b54dc65b321270a237bfc1e37e2742f9e9a0f3e8bc10abd9; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584dacaaafc62b13fbba59e6b9f59940bead2cc8ff6e60aec8629b54dc65b321270a237bfc1e37e2742f9e9a0f3e8bc10abd9; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000181ad669f025859e3f3b2d0fe81c6db094a2b04377eec0ddf6664ae0757bc48e08997d43351130001e813209753305ab33a24054d96b8d86ed84ae35530d52990c24f32ef4aa37f39971e2601d24fb1d6dfb8ee999cc83ae; Secure; Path=/; HttpOnly
login.scl.swisscom.ch/TheSansB_300_-241175cc22247923e2aa4702856fa27e.woff
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_300_-241175cc22247923e2aa4702856fa27e.woff
IP 195.186.211.241:0
GET /TheSansB_300_-241175cc22247923e2aa4702856fa27e.woff HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 96196
Content-Type: application/font-woff
Date: Wed, 01 Feb 2023 10:25:26 GMT
Etag: W/"241175cc22247923e2aa4702856fa27e"
Last-Modified: Mon, 30 Jan 2023 21:56:19 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: b50a8da5-cd3d-410b-446c-68b71c2f7bc4
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=3714dc77-4892-431c-8d2c-6fa185e73dcb; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:26 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584da4394f03a21a9e7ab9a0f5b18f05a35d6f2184aa0dc65f32ee726ed0737f00de715e1671f6ab918bf364cf1d3ad68110a; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584da4394f03a21a9e7ab9a0f5b18f05a35d6f2184aa0dc65f32ee726ed0737f00de715e1671f6ab918bf364cf1d3ad68110a; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000f0de5ca03c5d030d415e1a23165d30d839c8f36f555128f2033eb6ccb78485a5089c0c017711300074e710b8b1e634a333a24054d96b8d86ab8ab1570d8060a00310e474d49679c7991457dfae4966b7a1fb8007c7b465ce; Secure; Path=/; HttpOnly
login.scl.swisscom.ch/TheSansB_300_-ea4a24d490218e110e072acdf4832f9a.ttf
195.186.211.241200 OK 0 B URL HTTP/1.1 login.scl.swisscom.ch/TheSansB_300_-ea4a24d490218e110e072acdf4832f9a.ttf
IP 195.186.211.241:0
GET /TheSansB_300_-ea4a24d490218e110e072acdf4832f9a.ttf HTTP/1.1
Host: login.scl.swisscom.ch
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://aablue.temp.swtest.ru
Connection: keep-alive
Referer: http://aablue.temp.swtest.ru/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=604800
Content-Length: 200428
Content-Type: application/x-font-ttf
Date: Wed, 01 Feb 2023 10:25:27 GMT
Etag: W/"ea4a24d490218e110e072acdf4832f9a"
Last-Modified: Mon, 30 Jan 2023 21:56:08 GMT
Strict-Transport-Security: max-age=16070400; includeSubDomains
Vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
X-Content-Type-Options: nosniff
X-Frame-Options: DENY
X-Vcap-Request-Id: 692abeb9-1b91-49d7-6e88-eaaae9a7061b
X-Xss-Protection: 1; mode=block
Set-Cookie: SCL-CID=c8810b0d-5ae6-4c54-b6ef-4ccb04232304; Max-Age=2592000; Expires=Fri, 03 Mar 2023 10:25:27 GMT; Domain=scl.swisscom.ch; Secure; HttpOnly; SameSite=Lax
TS01af9fe4=01603584da8ef74ddbc82bacdc0b26fa1512deae5852eadecf8dca534d3c326ea7c91d41e903ab8e5aee47703a3d931eb1dd4716fe; Path=/; Domain=.login.scl.swisscom.ch; Secure; HttpOnly
TS01979991=01603584da8ef74ddbc82bacdc0b26fa1512deae5852eadecf8dca534d3c326ea7c91d41e903ab8e5aee47703a3d931eb1dd4716fe; path=/; domain=scl.swisscom.ch; Secure; HttpOnly
TS3da8ba27027=08d727f06cab2000c9cb49b9e8a17236517e444bfaf823c86a1e8f7b00aef95e2ac9231a863035250891ad253a113000add6b6112fcbbe885e989a4d770a069501997e741e8a5e9d72bdc7bf3410f7f1e4eff5e84390befc2452899becec140d; Secure; Path=/; HttpOnly