linux4.cloudserve.pw/
207.180.212.249200 OK 5.5 kB IP 207.180.212.249:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (478)
Hash 8b251e7c7e94089ca90a300337f5a741
a872a6367ab3c3af507448f43b78b4cf4bf0e0b6
739dd95df399d5fc942217c2391e934611597a6a73b3a9a462c5064036b8ba6f
Analyzer Verdict Alert fortinet Malware
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET / HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: text/html
Content-Length: 5454
Last-Modified: Sun, 24 Jan 2021 22:28:06 GMT
Connection: keep-alive
ETag: "600df476-154e"
X-Powered-By: PleskLin
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 81713f952b51a865ad9764cde68e3fdb
278c3a9c4bb2a0ffb7375f90d89a1ba6e90a766a
c2eb0d8a24ecb51af28f1c71db4b9a95c568dcf6c94b41ee8c78787a4ebebcef
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C2EB0D8A24ECB51AF28F1C71DB4B9A95C568DCF6C94B41EE8C78787A4EBEBCEF"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7393
Expires: Sat, 04 Feb 2023 14:24:44 GMT
Date: Sat, 04 Feb 2023 12:21:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18117
Expires: Sat, 04 Feb 2023 17:23:28 GMT
Date: Sat, 04 Feb 2023 12:21:31 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6398
Expires: Sat, 04 Feb 2023 14:08:09 GMT
Date: Sat, 04 Feb 2023 12:21:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Alert, Retry-After, Content-Length, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 04 Feb 2023 11:43:37 GMT
content-type: application/json
age: 2274
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: oJYXh06P5Ue+rk06mSPfDpN2P0gu0e+57f2mW7Rp+5RYomYSBhlXfe19jclak7o4AEt/wBrYDMQ=
x-amz-request-id: NTPEH9AB61SQT292
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 04 Feb 2023 11:23:58 GMT
age: 3453
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
linux4.cloudserve.pw/css/style.css
207.180.212.249200 OK 7.4 kB URL HTTP/1.1 linux4.cloudserve.pw/css/style.css
IP 207.180.212.249:0
Hash 57f41a54c8c34de3b3271b7025e59933
4a2c63df8f357f69e03cdf6fba82fb4d5eb34580
e20e724a7f0bd02f347e3af4f4494f3b04166ac5e4eaf4821a184f31dca43394
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /css/style.css HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: text/css
Content-Length: 7366
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-1cc6"
X-Powered-By: PleskLin
Accept-Ranges: bytes
fonts.googleapis.com/css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese
142.250.74.106200 OK 683 B URL HTTP/1.1 fonts.googleapis.com/css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese
IP 142.250.74.106:0
Hash de9c94484e44b4bc78f62411bf1b805f
39713343e05d428f90e12ac6ed3dda9416667690
177aa23e39767ba7ed72838fe483ffbfd243a37f5ca2031f3720bc3baff33302
GET /css?family=Open+Sans:300,400,600&subset=latin,latin-ext,cyrillic,cyrillic-ext,greek,greek-ext,vietnamese HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
HTTP/1.1 200 OK
Content-Type: text/css; charset=utf-8
Access-Control-Allow-Origin: *
Timing-Allow-Origin: *
Link: <http://fonts.gstatic.com>; rel=preconnect; crossorigin
Expires: Sat, 04 Feb 2023 12:21:31 GMT
Date: Sat, 04 Feb 2023 12:21:31 GMT
Cache-Control: private, max-age=86400
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin-allow-popups
Content-Encoding: gzip
Transfer-Encoding: chunked
Server: ESF
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
X-Content-Type-Options: nosniff
linux4.cloudserve.pw/img/globe.png
207.180.212.249200 OK 50 kB URL HTTP/1.1 linux4.cloudserve.pw/img/globe.png
IP 207.180.212.249:0
File type PNG image data, 546 x 480, 8-bit/color RGB, non-interlaced\012- data
Hash 396b2938f45c3eee4188c34fc1c5021e
0716af0793e6a9f2b62a6c21038f703b88656c09
49c6d2c4fc8143dd2389df5d6da8ff30128a1257a72ce2ddc922e4267bcb2f92
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/globe.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 49609
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-c1c9"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/knowledge-base.png
207.180.212.249200 OK 1.5 kB URL HTTP/1.1 linux4.cloudserve.pw/img/knowledge-base.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 0c1ea46ae67d053a893854c4c4d4cc84
dd1d9378fde23fb9da4dcfaf43431a420ab11f45
3e070b868ea022d3950d2c9d5cdbea9901b15fae3bc2a3bf9cf4ce6a585d9203
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/knowledge-base.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 1495
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-5d7"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/facebook.png
207.180.212.249200 OK 1.9 kB URL HTTP/1.1 linux4.cloudserve.pw/img/facebook.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash cb76fd023bb8bfb9dabae1b74019fd66
ca91a9cb8662e8af82146cf507c8380bab9e11ab
6216c4e00e4557d3db7efbe6d44b68bcc46823d60ffcad289b409a9dd73ff813
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/facebook.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 1933
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-78d"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/twitter.png
207.180.212.249200 OK 2.3 kB URL HTTP/1.1 linux4.cloudserve.pw/img/twitter.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 49f00313f6add19cd5da23ea1409fe05
0bec70d41ddd47e300b16ce0d0895c1c3c745191
039ac96482995b80fa192cd487bc668e2acec3f84b3fb908a9624e9888acbc10
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/twitter.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 2302
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-8fe"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/linkedin.png
207.180.212.249200 OK 737 B URL HTTP/1.1 linux4.cloudserve.pw/img/linkedin.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit colormap, non-interlaced\012- data
Hash 8ee7e0a3a9ae1040a9b53725d2caed7c
285751bc16a373c05d92eadcafbce62bd981b527
e62ac2523b7b620400d81820050aa6cdde9ab60585b6c648bac7e0520e604637
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/linkedin.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 737
Connection: keep-alive
X-Accel-Version: 0.01
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
ETag: "2e1-59f8b23863faf"
Accept-Ranges: bytes
X-Powered-By: PleskLin
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-regular-65e877.woff2
185.76.9.17200 OK 24 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-regular-65e877.woff2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 23484, version 1.0\012- data
Hash b4d2c4c39853ee244272c04999b230ba
c82e22dde9716c40ba20e6c7ed03a1b66556de15
c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1
GET /static/default-website-content/public/fonts/lato-v16-latin-regular-65e877.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: font/woff2
content-length: 23484
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-5bbc"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: DBC0:0517:F72459:162AA4A:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1665-BMA
x-cache-hits: 1
x-timer: S1672661272.433515,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 6936522a81aa24969a54dbe6f027c05b5c3986c2
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ2tB0//8wAAAA
x-77-nzt-ray: c0a4cc28f00c6b8fcb4dde63f981152b
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-f1405b.woff2
185.76.9.17200 OK 23 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-f1405b.woff2
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 22992, version 1.0\012- data
Hash 1efbd38aa76ddae2580fedf378276333
8a49976f2470ba2a1db6144245355d3b889312e4
8d3ca80fa271e94b0c36cf3053b0f806b7a42bb3395b424c99dc0bd218f0ac20
GET /static/default-website-content/public/fonts/lato-v16-latin-700-f1405b.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: font/woff2
content-length: 22992
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-59d0"
expires: Mon, 02 Jan 2023 12:14:51 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: FD44:183A:1090A39:174A79E:63B2C862
via: 1.1 varnish
age: 181
x-served-by: cache-bma1665-BMA
x-cache-hits: 1
x-timer: S1672661272.438761,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: dabf319c42146a6e8c941a8a980d8e6d1551d72f
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ0pPNL/8wAAAA
x-77-nzt-ray: c0a4cc28f00c6b8fcb4dde63a2d6602b
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/guy-cc224f.png
185.76.9.17200 OK 10 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/guy-cc224f.png
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type PNG image data, 144 x 286, 8-bit/color RGBA, non-interlaced\012- data
Hash 508c30a08de6e9a033e045a6979f76d7
8bbde0114d14ef4e0687fab5cc70e3bd4d96c233
40d72d259fff82a177cd2c2f2a1bd0024ec04a2cd5a19d5596187755cc2ae5f2
GET /static/default-website-content/public/img/guy-cc224f.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/png
content-length: 9999
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-270f"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 899A:056E:10B5F31:176F340:63B2C818
via: 1.1 varnish
age: 417
x-served-by: cache-bma1668-BMA
x-cache-hits: 1
x-timer: S1672661433.453218,VS0,VE3
vary: Accept-Encoding
x-fastly-request-id: 1c2d56590b13c82842e6a7296b1bc2908b1fcab7
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ3/WOD/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde634ff6532b
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-domain-page-98961e.png
185.76.9.17200 OK 192 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-domain-page-98961e.png
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type PNG image data, 998 x 840, 8-bit/color RGBA, non-interlaced\012- data
Size 192 kB (191877 bytes)
Hash 15b75d100a555e3f0d84c59d81dd46e8
435e0f337cf2fb81d65fa4aa1c14caaa109f5bc6
f2fd07b6c6a69ba71eb8513377f052f5b692d610a2e890151084e7fcfb09799d
GET /static/default-website-content/public/img/header-domain-page-98961e.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/png
content-length: 191877
permissions-policy: interest-cohort=()
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-2ed85"
expires: Mon, 02 Jan 2023 12:16:13 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 2152:D7EF:12F8BD9:13E7EEB:63B2C918
via: 1.1 varnish
age: 0
x-served-by: cache-bma1670-BMA
x-cache-hits: 0
x-timer: S1672661272.422092,VS0,VE124
vary: Accept-Encoding
x-fastly-request-id: cbb84f7d76d0d40b351b27dda087b982939ce23e
x-accel-expires: @1675513891
server: CDN77-Turbo
x-77-nzt: AblMCQ0v6djepAIAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63342f512b
x-cache: REVALIDATED
x-age: 676
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
linux4.cloudserve.pw/img/php.png
207.180.212.249200 OK 2.7 kB URL HTTP/1.1 linux4.cloudserve.pw/img/php.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 5abb55bb92e559b1f2bc9cdc60fcde0f
eac4fb611e27717456fe1b870f6f49ce913a9f45
031a4f0056658d99cbc6ce65b9a690f5f1ebecb80a328a9b394ad964eabac309
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/php.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 2695
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-a87"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/ssi.png
207.180.212.249200 OK 1.7 kB URL HTTP/1.1 linux4.cloudserve.pw/img/ssi.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 36c1301e51a319d54151bc8fb4128a14
2b7aab55d57bf5846fe67f7abcd24ca12ded4547
614b9e2e11cbc04c95e8a3ab508246fd5e653e6672277b59e2983eb2aa9a3f04
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/ssi.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 1706
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-6aa"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/blog.png
207.180.212.249200 OK 2.3 kB URL HTTP/1.1 linux4.cloudserve.pw/img/blog.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash f7891a5403c402960ecb0ae37decbc65
105e9ffa2949e7460075e120277b61a4d656e495
68c47af57438cc7a864c4ed04ceffc2d66ace8792792f5ba66f6b4caedcced2b
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/blog.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 2328
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-918"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/forum.png
207.180.212.249200 OK 3.4 kB URL HTTP/1.1 linux4.cloudserve.pw/img/forum.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a403551d727257944069360bff39127
66c59ee0139f2cd96077c09d2ff988c183931aad
f29b7727a1739d8a376f15794144bf71711378c36e185090f5929f16283db008
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/forum.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 3425
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-d61"
X-Powered-By: PleskLin
Accept-Ranges: bytes
linux4.cloudserve.pw/img/fastcgi.png
207.180.212.249200 OK 3.5 kB URL HTTP/1.1 linux4.cloudserve.pw/img/fastcgi.png
IP 207.180.212.249:0
File type PNG image data, 64 x 64, 8-bit/color RGBA, non-interlaced\012- data
Hash 88f914b6f6b89e824c09740e2fad4435
bcd2269a1c973a83ab15dced6200e01e2ff82a8c
18d6f33ca2f57b6a0d2bbe9088a5a2390ce38372d8ac90c09fa13c99ad71c685
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/fastcgi.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/css/style.css
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 3521
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-dc1"
X-Powered-By: PleskLin
Accept-Ranges: bytes
assets.plesk.com/static/default-website-content/public/favicon-2d0e10.ico
185.76.9.17200 OK 114 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/favicon-2d0e10.ico
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
File type MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 114 kB (113459 bytes)
Hash 1db747255c64a30f9236e9d929e986ca
384023452346aa087d40c93c23ca2f5e32ff1b1f
88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544
GET /static/default-website-content/public/favicon-2d0e10.ico HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/vnd.microsoft.icon
content-length: 113459
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: "63b2c75a-1bb33"
expires: Mon, 02 Jan 2023 12:13:42 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1F7E:2669:1152023:180B499:63B2C81E
via: 1.1 varnish
age: 0
x-served-by: cache-bma1654-BMA
x-cache-hits: 0
x-timer: S1672661023.725150,VS0,VE103
vary: Accept-Encoding
x-fastly-request-id: 7e7d9532e8899dd5c7acc2a59c2fe301e39dd97b
x-accel-expires: @1675513891
server: CDN77-Turbo
x-77-nzt: AblMCQ3XZsHepAIAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde636f656e2f
x-cache: REVALIDATED
x-age: 676
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Last-Modified, Cache-Control, Pragma, ETag, Backoff, Content-Type, Alert, Expires
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 04 Feb 2023 12:07:19 GMT
age: 853
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8604
Expires: Sat, 04 Feb 2023 14:44:56 GMT
Date: Sat, 04 Feb 2023 12:21:32 GMT
Connection: keep-alive
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fa08a81a10ae5cf15ca540daefa48635
c5136f56887c7404c0d1b361233f6f803c0faf79
02e9ec4a0f33f33264d96ef795653bd345d53ee1a6742d493403553237edf0f5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=153952
Date: Sat, 04 Feb 2023 12:21:32 GMT
Etag: "63ddeda1-1d7"
Expires: Mon, 06 Feb 2023 07:07:24 GMT
Last-Modified: Sat, 04 Feb 2023 05:31:13 GMT
Server: ECS (bsa/EB24)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 9Rd8ySSJU1PVP67WSXLpns6Sj8OqrsOv89fj9dLY_ugFQsIrblk7UA==
Age: 5771
ocsp.sca1b.amazontrust.com/
54.230.245.118200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.118:0
Hash fa08a81a10ae5cf15ca540daefa48635
c5136f56887c7404c0d1b361233f6f803c0faf79
02e9ec4a0f33f33264d96ef795653bd345d53ee1a6742d493403553237edf0f5
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 04 Feb 2023 12:21:32 GMT
Last-Modified: Sat, 04 Feb 2023 11:56:57 GMT
Server: ECS (bsa/EB16)
X-Cache: Miss from cloudfront
Via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: egsT3GGp7b5JI1AJNZbzAuE67swSMYGhgrG6bVPSyDxbujbMh4EIXw==
Age: 1475
firehose.us-west-2.amazonaws.com/
35.89.72.88200 OK 20 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP 35.89.72.88:0
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
OPTIONS / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Referer: http://linux4.cloudserve.pw/
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: d271c359-593c-34a4-8e29-935538fc2e54
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Content-Length: 20
Date: Sat, 04 Feb 2023 12:21:31 GMT
push.services.mozilla.com/
52.39.11.89101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.11.89:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RoY0ljx4lZ/nXctew/NY/w==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: eajsCrnm9JQX5WyQRUjNMq3HYXc=
firehose.us-west-2.amazonaws.com/
35.89.72.88200 OK 247 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP 35.89.72.88:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bec1689bc30891656a898ef897b76220
7806bc067c88ad60ead241ca61491a64b96b6c33
b24414d157368ea52ba5e13a5694689fc20a5fca0336eacfc4b8fd23f3dbc870
POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.1286.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: 1f552030bd1cff516334773c7ce736e97dae7e214076c453fbd3e971d76e7299
X-Amz-Date: 20230204T122207Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJL6JKBNRGP/20230204/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=d70bcf19ae554d1ffc14893e25cb73f0968145e165da36d0da9098c13776e35f
Content-Length: 108
Origin: http://linux4.cloudserve.pw
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: f393134b-4f89-28d9-afcb-43472e493229
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: pwqO6LX3a4EaZwwlqiOr+x70xhxEmsIAw9C3eWVeA+faHUlWYatGlWFV75N/W+sJGbCnEG97Wv+1TuuoVOG22Gllj8fCkPD3
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 247
Date: Sat, 04 Feb 2023 12:21:32 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12780
Expires: Sat, 04 Feb 2023 15:54:33 GMT
Date: Sat, 04 Feb 2023 12:21:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12780
Expires: Sat, 04 Feb 2023 15:54:33 GMT
Date: Sat, 04 Feb 2023 12:21:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12780
Expires: Sat, 04 Feb 2023 15:54:33 GMT
Date: Sat, 04 Feb 2023 12:21:33 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c14d3cf8ade0150a711f094be32ac474
11e7fb5487d364c5392e1594e09f5b49831043ea
2a98ce39894b7d9befdba3916467bc95962376d0b308103e0a1eea36c0bc2302
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2A98CE39894B7D9BEFDBA3916467BC95962376D0B308103E0A1EEA36C0BC2302"
Last-Modified: Fri, 03 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12780
Expires: Sat, 04 Feb 2023 15:54:33 GMT
Date: Sat, 04 Feb 2023 12:21:33 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e5b4e4f15da3323c73974c3f1cdb5d74
1f14971d0cf979cc34ff191849dc43d86e8ac463
5893d7e5b2fd9de92829b303c42d0c07ff32b3f6b8705b6f5b4a784315c8808e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2ec84086-8ac2-4887-bc81-86003255ab99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5174
x-amzn-requestid: 35630c70-3bad-47b4-94bb-09c873632194
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EFAHIAMFQQQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-317b1fbb3bee0f377697bf3d;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: OD5cy75AkNMwTIvIool2nKbKgr5Jpo1Plm_X_YPr3rdPbg86_V2fdA==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:00:26 GMT
age: 51667
etag: "1f14971d0cf979cc34ff191849dc43d86e8ac463"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6661b7263315f5eb3cd2465f671e1fcd
b7b5831c6b3ccc41d7a980b6088adc10ff8785f1
eb25507950d81db4b54a1af7fadaceee1bcff780eb28b6a04dbfb3886785f5b7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a6c7026-85a2-4419-bd6b-ba1bac463dda.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8527
x-amzn-requestid: 6a8c6487-6069-47d1-afa1-648626f85439
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyDqqGg5oAMFV-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd7fdd-0a772cde1e6fba6d7da97435;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:42:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: CHWhIpyzhoPtMUplzh1430Q9FfCM1wkTc_hQsgQk6InM9tYBPGYnNg==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 22:05:44 GMT
age: 51349
etag: "b7b5831c6b3ccc41d7a980b6088adc10ff8785f1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ac51fd6789cbe19c2d484c9022b0e39
bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9
300b5e50cb910f9f4905ee7313d98763b68f85f5874db499cc94469fb14cabfe
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b2d6920-2a79-45a8-b007-d36cc875c52f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9500
x-amzn-requestid: 8fe94388-e8d9-4329-b73a-e9a356df76bb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD9QEA1IAMF3Ug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8054-51f954ac4bec16d1055e38f5;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:52 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FkTJ6wQ4eFYBPDyS0l5vLeWvHHiQIx-cYyFzT4ggHJ8M5Gg3dozFxQ==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:59:51 GMT
age: 51702
etag: "bcba22a7b7f5dd1f59fffd1027e5d7002cecb6e9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e366b32074025aaf60bbae8bdb08d330
a52c2883bad98fa20333aa639a5dd3a5bf544c8e
9d661c26effaec9efee16833f6459d6ecbe4f77b822c9c46e2a6433bda816e5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F64144d1c-f524-496f-8b52-ba63714dbfc5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11565
x-amzn-requestid: 87a84ffd-1176-4656-aac4-e98f38ec2cd9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboIrFGboAMFyyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d48704-162ed8114aa1809204500548;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:23:00 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: lsQxPtozrh2Ty1T-3d-1crDfi8HgVKRafOXb1UFl033bCx3kAzTS7w==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 04 Feb 2023 06:20:04 GMT
age: 21689
etag: "a52c2883bad98fa20333aa639a5dd3a5bf544c8e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
34.120.237.76200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f7101f6e43855cb76ce48271a847ffbd
8e674830a97d8ce3818132fda197db4f0289d316
e78a83a4024e238bcdec3b9c4d5c12a99f49aabd57e34952f6a4cc8ed4422f55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcae6042d-d677-4e39-b4e4-858988eb847b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9141
x-amzn-requestid: ed7db574-6bca-4f3e-8879-c3e836549339
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD8zE5lIAMF1HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8051-4480112f11d4ced0037d1ad8;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: aKr85ooofBPeKkeJIDO5W_X5Rn6xnJlRHmVrs8tgBMYe3HQhobsm3w==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:56:07 GMT
age: 51926
etag: "8e674830a97d8ce3818132fda197db4f0289d316"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 518bba9a8770e8ff15229a68be5bddc3
139f944b3f4279e640901f7a6b993f1a49b51a22
0591e73dec2190752677f06525bc993dc8c7a5aa20984a5eda64c323188e2b1d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2a517af0-06bb-4ad2-b66e-3627ca6b60a3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9743
x-amzn-requestid: b6c1caa9-72e4-476f-9c3d-4a746c410ba3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fyD7EHLJoAMF_TA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dd8046-1289ef383fbad59621eda6d0;Sampled=0
x-amzn-remapped-date: Fri, 03 Feb 2023 21:44:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: i7ZNMlYetTGgoM0beS97MTxveM1H7CI4JdAvPhYdqe9pyCCQugjgNg==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Fri, 03 Feb 2023 21:58:58 GMT
age: 51755
etag: "139f944b3f4279e640901f7a6b993f1a49b51a22"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
linux4.cloudserve.pw/img/logo.png
207.180.212.249200 OK 0 B URL HTTP/1.1 linux4.cloudserve.pw/img/logo.png
IP 207.180.212.249:0
NIDS Severity Alert suricata low ET INFO HTTP Request to a *.pw domain
GET /img/logo.png HTTP/1.1
Host: linux4.cloudserve.pw
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
HTTP/1.1 200 OK
Server: nginx
Date: Sat, 04 Feb 2023 12:21:31 GMT
Content-Type: image/png
Content-Length: 18187
Last-Modified: Thu, 27 Feb 2020 09:13:48 GMT
Connection: keep-alive
ETag: "5e57884c-470b"
X-Powered-By: PleskLin
Accept-Ranges: bytes
assets.plesk.com/static/default-website-content/public/img/question-mark-circle-2b854e.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/question-mark-circle-2b854e.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/question-mark-circle-2b854e.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-1ce"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A284:3610:1101362:17BAB89:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1627-BMA
x-cache-hits: 1
x-timer: S1672661272.418127,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: b355c6d2043a3a420143779d7f593e3d45325fa1
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ2XOqf/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63e4a5e029
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/facebook-2e0b41.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/facebook-2e0b41.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/facebook-2e0b41.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-318"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: A72C:3A7D:1067C6E:17203F0:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1636-BMA
x-cache-hits: 1
x-timer: S1672661272.425064,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 5475f005409e5b42c2ebccbea3195834e995ad94
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ3+UGD/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63742ec92a
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-bg-6827b7.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-bg-6827b7.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/header-bg-6827b7.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-132"
expires: Mon, 02 Jan 2023 12:12:52 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 6AFE:3368:1076653:172EEDA:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1620-BMA
x-cache-hits: 1
x-timer: S1672661272.423126,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 9fd0f92ef84bb1b9feb2a74c3914aefd99673fdf
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ0wbkb/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63161b4f2b
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/video-guides-0ca174.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/video-guides-0ca174.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/video-guides-0ca174.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-509"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0DD4:0517:F7244E:162AA3A:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1645-BMA
x-cache-hits: 1
x-timer: S1672661272.421947,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: cb1efebc7ec168a0536c9ca7c9b043648ca04043
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ0WR7n/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63e5a0c52a
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/bundle.js
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/bundle.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/bundle.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-47d12"
expires: Mon, 02 Jan 2023 12:11:58 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 7CA6:B0F7:1134214:121891B:63B2C7F7
via: 1.1 varnish
age: 39
x-served-by: cache-bma1637-BMA
x-cache-hits: 1
x-timer: S1672661023.668638,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: c33dccaae3d0e8ce14780d795c995f7ff1a4f353
x-accel-expires: @1675513876
server: CDN77-Turbo
x-77-nzt: AblMCQ2H/bf/DwAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63427fef2a
x-cache: HIT
x-age: 15
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/default-website-index.js
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/default-website-index.js
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/default-website-index.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-61d9"
expires: Mon, 02 Jan 2023 12:14:06 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 9530:1371:1051493:170A5D7:63B2C873
via: 1.1 varnish
age: 282
x-served-by: cache-bma1633-BMA
x-cache-hits: 1
x-timer: S1672661390.678028,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 887dc4c31dba35cac1454f887e39d5346f0329ef
x-accel-expires: @1675513400
server: CDN77-Turbo
x-77-nzt: AblMCQ29mLn/6wEAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63480cb821
x-cache: HIT
x-age: 491
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/forum-a9076c.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/forum-a9076c.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/forum-a9076c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-1569"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 80AE:6E39:117806B:1831353:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1633-BMA
x-cache-hits: 1
x-timer: S1672661272.418608,VS0,VE10
vary: Accept-Encoding
x-fastly-request-id: 9bcbace3cee9b6c237d856c16166635c4f59a885
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ2JPE7/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63bbedbc2a
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/logo-ebb972.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/logo-ebb972.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/logo-ebb972.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-86f"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 6AFE:3368:107664D:172EED4:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1635-BMA
x-cache-hits: 1
x-timer: S1672661272.420688,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 1d9a84d28a0c886a46dc54243246a7fcdc981381
x-accel-expires: @1675513876
server: CDN77-Turbo
x-77-nzt: AblMCQ0HVZz/DwAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63307dd429
x-cache: HIT
x-age: 15
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/try-online-demo-e76f32.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/try-online-demo-e76f32.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/try-online-demo-e76f32.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-6e9"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 4F06:0131:1023AB1:16DC696:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1648-BMA
x-cache-hits: 1
x-timer: S1672661272.420282,VS0,VE2
vary: Accept-Encoding
x-fastly-request-id: 268716ab91509c24e675ba2ace1f3b7671d0f741
x-accel-expires: @1675513876
server: CDN77-Turbo
x-77-nzt: AblMCQ0knnH/DwAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63f80cfb29
x-cache: HIT
x-age: 15
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/plesk-guides-466bdb.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/plesk-guides-466bdb.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/plesk-guides-466bdb.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-8e6"
expires: Mon, 02 Jan 2023 12:14:30 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: F256:4C6A:105BBDD:171424C:63B2C84E
via: 1.1 varnish
age: 202
x-served-by: cache-bma1645-BMA
x-cache-hits: 1
x-timer: S1672661272.417270,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 2b2354ee1aa528887dad6d6b1300c06dd92b10f6
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ2p1BH/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde63ac0b052a
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/knowlede-base-e4cf57.svg
185.76.9.17200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/knowlede-base-e4cf57.svg
IP 185.76.9.17:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/knowlede-base-e4cf57.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://linux4.cloudserve.pw/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 04 Feb 2023 12:21:31 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Mon, 02 Jan 2023 12:00:26 GMT
access-control-allow-origin: *
etag: W/"63b2c75a-332"
expires: Mon, 02 Jan 2023 12:13:36 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 7D10:79F0:10B2413:176B918:63B2C818
via: 1.1 varnish
age: 256
x-served-by: cache-bma1661-BMA
x-cache-hits: 1
x-timer: S1672661272.420944,VS0,VE3
vary: Accept-Encoding
x-fastly-request-id: 33970a693e694459f9b0fa1d4faef5cae5227753
x-accel-expires: @1675513648
server: CDN77-Turbo
x-77-nzt: AblMCQ1iYvL/8wAAAA
x-77-nzt-ray: c0a4cc282afcef8dcb4dde6387663c2a
x-cache: HIT
x-age: 243
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: gzip
X-Firefox-Spdy: h2