www.surveyandgift.com/c/b7b0532dc9db5459
52.51.27.131302 Found 445 B URL HTTP/1.1 www.surveyandgift.com/c/b7b0532dc9db5459
IP 52.51.27.131:0
File type HTML document, ASCII text, with very long lines (443)
Hash 54ee7e105a399384bce156735a8778d8
a9e04e53c379a51159df4ada44af5a64e2cbb9d5
c246318b8219c55d2c36447d05d34481a8606a92cd142356208ea4653a422a9a
Analyzer Verdict Alert fortinet Phishing
GET /c/b7b0532dc9db5459 HTTP/1.1
Host: www.surveyandgift.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: unique_id=6331fbff00020a1d; unique_id2=6331fbff0002138a; 6331fbff0002138a_sl=[208413]; GoogleAccountsLocale_session=en; googtrans=/en/en; fp_js=9e4947f35751465411fd1a4f5c358c78; tid=jjohf63320443000d247f
Upgrade-Insecure-Requests: 1
HTTP/1.1 302 Found
Server: nginx
Date: Mon, 26 Sep 2022 20:53:22 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 445
Connection: keep-alive
Location: https://www.myprotectionsurveys.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_tmp
Set-Cookie: impression=; Path=/; Expires=Mon, 26 Sep 2022 20:53:22 GMT
tid=nathr63321142000181ca; Path=/; Expires=Tue, 31 Aug 2027 20:53:22 GMT
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Backoff, Content-Type, Retry-After, Alert
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Mon, 26 Sep 2022 20:15:21 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 71c98156ae29b36a903974f9dd2568f8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: PoCrz3_3XzHySqfu7Ec0-h7jOAasbOjctWvCBfWzkH8Qq-NCoctnLA==
Age: 2281
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6656
Expires: Mon, 26 Sep 2022 22:44:18 GMT
Date: Mon, 26 Sep 2022 20:53:22 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Mon, 26 Sep 2022 04:35:16 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6HfrNH7Te_Z5ekDDhWzOP4EWDrI7WaocGpABZg09Qv_JW8j4KEmAIw==
age: 58687
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash f13a18df03ecb1aed1b8f5d9204f84a7
a599a70a231139f90e5b7f4093657ac6e6a2cd92
4ba16aac27323c0ce7e42fd3ee6f3e18d477db5c46c6dc4ba764d6a2857477e5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4BA16AAC27323C0CE7E42FD3EE6F3E18D477DB5C46C6DC4BA764D6A2857477E5"
Last-Modified: Sat, 24 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14921
Expires: Tue, 27 Sep 2022 01:02:03 GMT
Date: Mon, 26 Sep 2022 20:53:22 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 20:53:22 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.myprotectionsurveys.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_tmp
52.19.101.114200 OK 415 B URL HTTP/2 www.myprotectionsurveys.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_tmp
IP 52.19.101.114:0
File type HTML document, ASCII text, with very long lines (415), with no line terminators
Hash 58a6ec4fa85ebdc207bca934e46ca2d3
1cb815cb5511256fdd2396c6a716ff6676350906
0f91c5e375306fc94b810e228fb67dd9ba8b4e4ab6deade3cdfb8a4c2f780cf4
GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_tmp HTTP/1.1
Host: www.myprotectionsurveys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 20:53:22 GMT
content-type: text/html; charset=utf-8
content-length: 415
X-Firefox-Spdy: h2
www.myprotectionsurveys.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_final
52.19.101.114200 OK 241 B URL HTTP/2 www.myprotectionsurveys.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_final
IP 52.19.101.114:0
File type HTML document, ASCII text, with no line terminators
Hash 0998a1d9d9d4dbe06b2037d0fec08166
7f1c8c2ea079217f78166bd824441d591836646a
2d38ad005b747f9fa55548d7bf2cdeae3faa4c32186d0721b4ca2347afa1645e
GET /redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_final HTTP/1.1
Host: www.myprotectionsurveys.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.myprotectionsurveys.com/redirect/index?type=script&to=aHR0cHM6Ly93d3cubXlwcm90ZWN0aW9uc3VydmV5cy5jb20=&data=aHR0cHM6Ly91aDRkNGQ2ZDQydWguYXhkc3oucHJvLz9hZmZfc3ViPSZjbGlja2lkPW5hdGhyNjMzMjExNDIwMDAxODFjYSZkYXRhMT0mcmlkPS03RUJOUUNnUUFBSENjYkFRQUJnRUJFUkVLRVFrS0VRMUNFUTBTQUFGX1lXUmpiMjFpYndFeCZzMT0mczM9JnM0PSZzNT0mczY9JnNpZDE9JnN1YjE9JnN1Yl9pZD0mc3ViX2lkXzE9JnN1YmFjYzI9JnN1YmlkMT0=&action=action_tmp
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx
date: Mon, 26 Sep 2022 20:53:22 GMT
content-type: text/html; charset=utf-8
content-length: 241
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9c0dba84910a3340bf1e8043663e3779
8f54cf3b102fe310394dddd1d1415086ea6c5fa0
3c618a463dcad26ec479949ab4c0a00aea99dad99495a2b9982031778434367f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3C618A463DCAD26EC479949AB4C0A00AEA99DAD99495A2B9982031778434367F"
Last-Modified: Mon, 26 Sep 2022 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5663
Expires: Mon, 26 Sep 2022 22:27:46 GMT
Date: Mon, 26 Sep 2022 20:53:23 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Mon, 26 Sep 2022 20:10:46 GMT
Expires: Mon, 26 Sep 2022 20:29:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8GvNYH6smHv7_zxMMQY-x6e-W4tQ4YDmXJKfVP7ItX6sZ1JDxtgFPA==
Age: 2557
uh4d4d6d42uh.axdsz.pro/?aff_sub=&clickid=nathr63321142000181ca&data1=&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1=
88.208.35.20302 Found 429 B URL HTTP/2 uh4d4d6d42uh.axdsz.pro/?aff_sub=&clickid=nathr63321142000181ca&data1=&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1=
IP 88.208.35.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document, ASCII text, with very long lines (427)
Hash f7f2cd76c9d0422a365fadf12b6701b6
b0fa93a206610bca310615b0b172446d89e75539
c71adbd238b10a16e70f2b6a8cbf60d8d306403d2d0bade005c3bc9a9c30a8a6
GET /?aff_sub=&clickid=nathr63321142000181ca&data1=&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1= HTTP/1.1
Host: uh4d4d6d42uh.axdsz.pro
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.myprotectionsurveys.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 302 Found
server: openresty
date: Mon, 26 Sep 2022 20:53:23 GMT
content-type: text/html; charset=utf-8
content-length: 429
location: http://it.bluestonee.cc/azRqyosBET/aWvC9Jio0Q4UPhk/?aff_sub=&clickid=nathr63321142000181ca&data1=&esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&oi=1&osc=1&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1=
x-node: slave-nl1
referrer-policy: unsafe-url
cache-control: private, no-transform,no-cache
x-edge-node: slave-nl1
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 5adb7eb1d103eadeeafac36e663ffdd3
23b784388dd634fa736cd60aed71570661e73d02
5c95ba48bc342887b4f7ef697bd4def50f6f2f472f654169179e5ac44df883d9
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3802
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:23 GMT
Last-Modified: Mon, 26 Sep 2022 19:50:01 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
it.bluestonee.cc/azRqyosBET/aWvC9Jio0Q4UPhk/?aff_sub=&clickid=nathr63321142000181ca&data1=&esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&oi=1&osc=1&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1=
88.208.35.20200 OK 24 kB URL HTTP/1.1 it.bluestonee.cc/azRqyosBET/aWvC9Jio0Q4UPhk/?aff_sub=&clickid=nathr63321142000181ca&data1=&esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&oi=1&osc=1&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1=
IP 88.208.35.20:0
ASN #39572 DataWeb Global Group B.V.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1548)
Hash fc3d60a282197e56698f274a31a6e92d
100e78cdf9422af4d5285d37215b9eb6d6bef953
8e5f2fba699e5539e954d1fd90f843655ea404eb3686ee9dd2efe057dca62cb5
GET /azRqyosBET/aWvC9Jio0Q4UPhk/?aff_sub=&clickid=nathr63321142000181ca&data1=&esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&oi=1&osc=1&rid=-7EBNQCgQAAHCcbAQABgEBEREKEQkKEQ1CEQ0SAAF_YWRjb21ibwEx&s1=&s3=&s4=&s5=&s6=&sid1=&sub1=&sub_id=&sub_id_1=&subacc2=&subid1= HTTP/1.1
Host: it.bluestonee.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: openresty
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Set-Cookie: previous_uniq=1664225603; Expires=Thu, 10-Nov-2022 20:53:23 GMT; Path=/
adc_299151101177505=1; Expires=Thu, 10-Nov-2022 20:53:23 GMT; Path=/
Cache-Control: private, no-transform, no-cache
X-Node: slave-nl1
Referrer-Policy: unsafe-url
Content-Encoding: gzip
X-Edge-Node: slave-nl1
brumolat.com/content/shared/js/sender.min.js
92.223.97.97200 OK 993 B URL HTTP/1.1 brumolat.com/content/shared/js/sender.min.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (2070), with no line terminators
Hash c6d0f649ffa7ba22df234ed74929ea4d
2b7f39245ebed50fa15cfe4ed3d1549442558894
39bfc7e0860b187ddc97883581602e3120f8cb3f3d09bdaf4bde00473a724a0d
GET /content/shared/js/sender.min.js HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 01 Jun 2021 06:03:47 GMT
Vary: Accept-Encoding
ETag: W/"60b5cdc3-816"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: HIT
X-Cached-Since: 2022-09-23T04:55:59+00:00
X-ID: sto5-up-gc14
Content-Encoding: gzip
brumolat.com/content/shared/js/jquery-1.12.4.min.js
92.223.97.97200 OK 39 kB URL HTTP/1.1 brumolat.com/content/shared/js/jquery-1.12.4.min.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (65536), with no line terminators
Hash b47352544c5f7ce6fa372bd966688b9e
e24ed7f752694c0dc09506bd6241b633867f0ed9
3c64f902926243928f542f628c24c2d711e40cbaadda3f55ecc083c00b6c002a
GET /content/shared/js/jquery-1.12.4.min.js HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 01 Jun 2021 06:03:47 GMT
Vary: Accept-Encoding
ETag: W/"60b5cdc3-1795d"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: HIT
X-Cached-Since: 2022-09-24T21:57:28+00:00
X-ID: sto5-up-gc12
Content-Encoding: gzip
brumolat.com/content/shared/js/js.cookie.min.js
92.223.97.97200 OK 953 B URL HTTP/1.1 brumolat.com/content/shared/js/js.cookie.min.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (1883), with no line terminators
Hash 9083d9701e1f2a66985991f912bc2d4f
ab6402bbf16a7e493d9b7db215365f8ac5e301c2
30d02cc32e0c7cf97b565ff40c588aac15c4e9e4686a58b86c575ac01e52ae86
GET /content/shared/js/js.cookie.min.js HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 01 Jun 2021 06:03:47 GMT
Vary: Accept-Encoding
ETag: W/"60b5cdc3-75b"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: HIT
X-Cached-Since: 2022-09-26T09:16:03+00:00
X-ID: sto5-up-gc10
Content-Encoding: gzip
brumolat.com/content/_presets/9_12.min.js
92.223.97.97200 OK 16 kB URL HTTP/1.1 brumolat.com/content/_presets/9_12.min.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type Unicode text, UTF-8 text, with very long lines (40789), with no line terminators
Hash 4cc36f313e9728666e3825097a1515d6
6dcf27f82fd990e55ef536252d8481a6a45ff7fa
9d9cad31ec5676827b53244f44b4620900b1d8464727ad39851f67b5b1d4735a
GET /content/_presets/9_12.min.js HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 21 Sep 2022 14:44:38 GMT
Vary: Accept-Encoding
ETag: W/"632b2356-b10e"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: HIT
X-Cached-Since: 2022-09-25T06:51:50+00:00
X-ID: sto5-up-gc13
Content-Encoding: gzip
brumolat.com/content/!common_files/js/fingerprint2.2.1.0.min.js
92.223.97.97200 OK 12 kB URL HTTP/1.1 brumolat.com/content/!common_files/js/fingerprint2.2.1.0.min.js
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type ASCII text, with very long lines (29428)
Hash 5c2cf1221a5716459cad45289d6e607e
a97503e3704f3945d85bc0806cb663ee331d385a
510196e0f3a05e04f45088eb3ac9462290615d618b3b121419f6626ce587523f
GET /content/!common_files/js/fingerprint2.2.1.0.min.js HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Thu, 16 Jan 2020 09:58:32 GMT
Vary: Accept-Encoding
ETag: W/"5e2033c8-73a6"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: HIT
X-Cached-Since: 2022-09-26T17:23:39+00:00
X-ID: sto5-up-gc14
Content-Encoding: gzip
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/css/media.css
92.223.97.97200 OK 1.5 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/css/media.css
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
Hash 1187ee59498673bf0b80f1b0a5338e3d
de214b22105a12ca63a3faa331bc4d79fc6fce70
e8177039966842ae2c736672569d851de8fd9fed8f848dffc96e2d0a339216e9
GET /content/aWvC9Jio0Q4UPhk/css/media.css HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:48 GMT
Vary: Accept-Encoding
ETag: W/"60069ad4-15f4"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc15
Content-Encoding: gzip
brumolat.com/content/aWvC9Jio0Q4UPhk/css/style.css
92.223.97.97200 OK 5.5 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/css/style.css
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
Hash 76a546a140a11ff7014975d70660dc55
11b4b8a07ac2a8f209fb9a5dc3ea061b96e85677
b21a3aa9dd9b59fbcb394c9316696933d2548d828399a91179982d8d9a7ba067
GET /content/aWvC9Jio0Q4UPhk/css/style.css HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 09 Feb 2021 15:46:28 GMT
Vary: Accept-Encoding
ETag: W/"6022ae54-5de2"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Content-Encoding: gzip
push.services.mozilla.com/
34.210.107.213101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.210.107.213:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: RBIwy+aOQrOkxdKiM08zFw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: MpJ0Yv9Y1ZlNbUT4YyEER4KTpcM=
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash bfc8c650e23854f708a3dd54fca4393f
b54c061cf5a5306a68112d403471914e839a68c8
84b8c36947944ea94b27e053f2abb944e6951157e256991f8b1523b9cacfe362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-in-heand-left.jpg
92.223.97.97200 OK 29 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-in-heand-left.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 355x327, components 3\012- data
Hash 7949c34749b16e87a5184774a9457d35
d82e2d537f0982ecc513ec28875dd277066773fb
97f28d4dd763a367e84538fbfe7858c81f64e4bcc8443e691aa246aa5a215226
GET /content/aWvC9Jio0Q4UPhk/img/prod-in-heand-left.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 29244
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-723c"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-in-heand-right.jpg
92.223.97.97200 OK 20 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-in-heand-right.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 245x327, components 3\012- data
Hash cb1185318cbfcd94c24f0f2b57c48424
ce2a99523870db4bc4ef72d0f9c3d3eaca0198b9
518e84cb59f1063fdf92406a5815b2e61af67d5e3b8721a44640ed1f7bf45ab8
GET /content/aWvC9Jio0Q4UPhk/img/prod-in-heand-right.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 19485
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-4c1d"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc15
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-duet-right.jpg
92.223.97.97200 OK 13 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-duet-right.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 325x372, components 3\012- data
Hash a125d098481c86c79f697c87d9146ad5
e3d9e8380c5ce7b77cc7b065382451e6412b7cd0
17ca77aa94c76cff6132023acdb9fea7d2d3744dba75e1b4164a5850f845be79
GET /content/aWvC9Jio0Q4UPhk/img/prod-duet-right.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 13178
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-337a"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/table-sildenafil.jpg
92.223.97.97200 OK 8.3 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/table-sildenafil.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 119x114, components 3\012- data
Hash 02d24ce498ff089f8e6229f169a78548
d0117c96a193ddf0b3ca8872e6830943c4e7b507
23e70a5c0d753faf09682d0033633104896a62feed0be3c88a973f4d51cf88ac
GET /content/aWvC9Jio0Q4UPhk/img/table-sildenafil.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 8288
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-2060"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-duet-left.jpg
92.223.97.97200 OK 17 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/prod-duet-left.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 328x372, components 3\012- data
Hash f9f8bab325b39adb44932d0841845b86
5d5934b93d91930197a3cde6037d93a9d377dc94
560640356bb548256e77e866fb3bf0f51f7ca183215d7713a342ca566da03f1e
GET /content/aWvC9Jio0Q4UPhk/img/prod-duet-left.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 16702
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-413e"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc14
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/happy-man.jpg
92.223.97.97200 OK 45 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/happy-man.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 659x446, components 3\012- data
Hash 5628f06222503cd3387949b2d8d0b863
2997763b16846c63199aa59f8a4b802f4f58b271
81c51e364760802a40eee121371e880a68ab4de25cfde1fe5261dfc36e3d5dee
GET /content/aWvC9Jio0Q4UPhk/img/happy-man.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 45108
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-b034"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/scientists.jpg
92.223.97.97200 OK 51 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/scientists.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 659x446, components 3\012- data
Hash de4fc6a7041a0f6a1ebe6d161132256c
566bd207821b7d56cb620776913a6a4d07e5ab93
66e37798264639cc51ab7d084d78d406112379ee905e4d7852061279776c8082
GET /content/aWvC9Jio0Q4UPhk/img/scientists.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 50968
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-c718"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,400;0,500;0,600;0,700;0,900;1,400;1,700&display=swap
142.250.74.10200 OK 967 B URL HTTP/2 fonts.googleapis.com/css2?family=Montserrat:ital,wght@0,400;0,500;0,600;0,700;0,900;1,400;1,700&display=swap
IP 142.250.74.10:0
Hash c8f10fe367d91b7d3e7053d5867379a9
793396aa1fdded4f732eabcef54611b30721e9f3
816f37e67fb68fc85027ca704ab5f56098843f59a7304b6bd6399522f5f353ae
GET /css2?family=Montserrat:ital,wght@0,400;0,500;0,600;0,700;0,900;1,400;1,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.bluestonee.cc/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 26 Sep 2022 20:53:23 GMT
date: Mon, 26 Sep 2022 20:53:23 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
viposidn.com/content/aWvC9Jio0Q4UPhk/img/banner.jpg
92.223.97.97200 OK 14 kB URL HTTP/1.1 viposidn.com/content/aWvC9Jio0Q4UPhk/img/banner.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 613x83, components 3\012- data
Hash a64cedb37c7c0e38b5ba1f5cb509e7ac
8c088c5494ac6d8cb11bea9b3046a48cf0744eb1
6da796ecacb6acd8417e6a63c095820b3a82618db2742761d16dc77efa4f4ebc
GET /content/aWvC9Jio0Q4UPhk/img/banner.jpg HTTP/1.1
Host: viposidn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://brumolat.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 13923
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-3663"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc11
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/logo.png
92.223.97.97200 OK 3.4 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/logo.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 139 x 81, 8-bit colormap, non-interlaced\012- data
Hash b9ae78095153e660cf8952046c0233b9
af62862e8e14aee3ed14654808ac49b4c6c1e2ce
25a8d4870e9df40b600415ac5f4bfb2bc0e78e1d80621d396d01afcca61eab2d
GET /content/aWvC9Jio0Q4UPhk/img/logo.png HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/png
Content-Length: 3415
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-d57"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc15
Accept-Ranges: bytes
viposidn.com/content/aWvC9Jio0Q4UPhk/img/quote.png
92.223.97.97200 OK 8.2 kB URL HTTP/1.1 viposidn.com/content/aWvC9Jio0Q4UPhk/img/quote.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 110 x 83, 8-bit/color RGBA, non-interlaced\012- data
Hash d6e45c03d48bd2dbc23ac3d4e05e4a34
47d71a53d4163627c58ccd453e921409ed1c0365
d3e520ec9710e802d4cf1f56cb47f004292fe8c5019fd0814ec67fd9b8eaaf9c
GET /content/aWvC9Jio0Q4UPhk/img/quote.png HTTP/1.1
Host: viposidn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://brumolat.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/png
Content-Length: 8223
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-201f"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside2.jpg
92.223.97.97200 OK 14 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside2.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=79, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=126], progressive, precision 8, 121x76, components 3\012- data
Hash 72ebadb1a5ed726e9ac519b04c14a424
5912a3cb809ed0bef6322e41e370c9be3625fa0c
9bd03fa10c917ebfe3e61d39cada1740fbd7e5710edb2882e2dd42c111759e89
GET /content/aWvC9Jio0Q4UPhk/img/aside2.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 14332
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-37fc"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 5e1e2f37f030327f34f1a557ccec3683
e38d251d9116cedc38ca4ea80ae8900726785f41
bcc4ca21dd22ffd626a852a77c80e66750a3887ae447144395b4db2b49ff54cb
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BCC4CA21DD22FFD626A852A77C80E66750A3887AE447144395B4DB2B49FF54CB"
Last-Modified: Sat, 24 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12516
Expires: Tue, 27 Sep 2022 00:21:59 GMT
Date: Mon, 26 Sep 2022 20:53:23 GMT
Connection: keep-alive
viposidn.com/content/aWvC9Jio0Q4UPhk/img/sel.png
92.223.97.97200 OK 1.0 kB URL HTTP/1.1 viposidn.com/content/aWvC9Jio0Q4UPhk/img/sel.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 12 x 7, 8-bit/color RGBA, non-interlaced\012- data
Hash 58595c23ac754a21f2af08b089348007
75273cc6ec4b7baf73321c8f47c6be06b307948d
0378b4e5cac3e0a2032e333e95b057ec94b59756b109d7fd76a6759367dd1e32
GET /content/aWvC9Jio0Q4UPhk/img/sel.png HTTP/1.1
Host: viposidn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://brumolat.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/png
Content-Length: 1033
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-409"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc15
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/table-prod.jpg
92.223.97.97200 OK 4.0 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/table-prod.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 96x103, components 3\012- data
Hash f32eed5cf0680b520bdc1db556f734a5
4d3a57644951d38be41703fb4f7f49ee2a3d137b
456ae712c607c3935b88004331e93c917f57bf22380574adebb220a62d48aa47
GET /content/aWvC9Jio0Q4UPhk/img/table-prod.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 3986
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-f92"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
viposidn.com/content/aWvC9Jio0Q4UPhk/img/aside-banner.jpg
92.223.97.97200 OK 17 kB URL HTTP/1.1 viposidn.com/content/aWvC9Jio0Q4UPhk/img/aside-banner.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 317x344, components 3\012- data
Hash f6a426e946fbf760c0a00ac522dbd28c
4787c718796064fcc713406dc695799238234708
611e4cdc4be4c576f4f2c2ddb42dada7126faf5d65ec8ee3e6d991f0d7cfadc6
GET /content/aWvC9Jio0Q4UPhk/img/aside-banner.jpg HTTP/1.1
Host: viposidn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://brumolat.com/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 17233
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-4351"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc14
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/trouble.jpg
92.223.97.97200 OK 55 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/trouble.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 659x283, components 3\012- data
Hash 7f3345ef3cb9b2e11294515d095068ec
371a64654f9f88d72790c88c3d7c977b62a565ea
e100f88477f39f5abbc0f06f633b26d6c0e37ca34f580ca042b0bdb834613bf0
GET /content/aWvC9Jio0Q4UPhk/img/trouble.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 54885
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-d665"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
user-actrk.com/trk/sawpp.jpg
88.208.35.20404 Not Found 0 B URL HTTP/2 user-actrk.com/trk/sawpp.jpg
IP 88.208.35.20:0
ASN #39572 DataWeb Global Group B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trk/sawpp.jpg HTTP/1.1
Host: user-actrk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://it.bluestonee.cc/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
server: openresty
date: Mon, 26 Sep 2022 20:53:23 GMT
content-type: image/jpeg
content-length: 0
x-node: slave-nl1
x-edge-node: slave-nl1
X-Firefox-Spdy: h2
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm1.jpg
92.223.97.97200 OK 2.6 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm1.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 36077292f6e2a9226caba5cf365874bd
7cdb548e377dd74019655e9f3d4415cf533121ff
0d56253f86c50fbc03e69942740b30239875d20bad35f2ff1919637bfed5d716
GET /content/aWvC9Jio0Q4UPhk/img/comm1.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2551
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-9f7"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/form-prod.jpg
92.223.97.97200 OK 25 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/form-prod.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 219x404, components 3\012- data
Hash 9e3a6d43f8a5c61dac34bfccd860febb
98a47747613a5bef3952dd445d69dd70f7911583
8bb6eb3d8da898e723d1834de36300dcd964e1b94fdbf22ca8cee6842d005b99
GET /content/aWvC9Jio0Q4UPhk/img/form-prod.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 25413
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-6345"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm2.jpg
92.223.97.97200 OK 2.6 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm2.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash e24de0846d6808a08b69b011574bc07d
e7fb3d95bfb5493901a8e943b67b3a7393ab8c3b
64af5c6891a1709a161849748f97119ae0028ca098ae5e1898cb13ab8639ec5c
GET /content/aWvC9Jio0Q4UPhk/img/comm2.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2576
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-a10"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm3.jpg
92.223.97.97200 OK 2.3 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm3.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 186b054b82c5b4b9e5e4c71fb82e0bf1
fed2ca723690ed1dbc23587b12d0feba1540799e
73ab09b0f9dcabb804ed3a4cad134df9af83750de7dcb4a7213d3207cf1aacc3
GET /content/aWvC9Jio0Q4UPhk/img/comm3.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2289
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-8f1"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm4.jpg
92.223.97.97200 OK 2.4 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm4.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 7842fa5b109deba983a5ca4ff3686a21
1c35be35b0ea5bc3f74c7db331866f9f3de1893d
895eb49897df9724ddc02eb94b337d7122b9fd8c40666baaa1dfdc265b8b545c
GET /content/aWvC9Jio0Q4UPhk/img/comm4.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2379
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-94b"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm5.jpg
92.223.97.97200 OK 2.2 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm5.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 3f7e5629bff5deb32e1910a18f33168b
24db719b897bfb7b2ba117d238c31510a5d8beca
9e701f6037c71d4b5373a272c0606415c91badbc1b6fad3c30c906d7069437a9
GET /content/aWvC9Jio0Q4UPhk/img/comm5.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2227
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-8b3"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm7.jpg
92.223.97.97200 OK 1.5 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm7.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 80d4b4b88a1887a56c96b114f2c23b59
49f25cde49c00a267a0ef3fa24bf2747fb978a3f
306011e71690ced2a09a998349a4c8edff6fd8af65813aa588acc485032f6975
GET /content/aWvC9Jio0Q4UPhk/img/comm7.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 1500
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-5dc"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm6.jpg
92.223.97.97200 OK 1.6 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm6.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 6f12ef58383a7f0b0aa4acb4181e811c
566b0435f3a619c7cee2ed7af68041344988cb4a
96c0c436b36404ae7646d706371e909b87411c052a523d7d577bb156209c577e
GET /content/aWvC9Jio0Q4UPhk/img/comm6.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 1610
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-64a"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
142.250.74.163200 OK 31 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Hash ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780
GET /s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://it.bluestonee.cc
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 30928
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 22 Sep 2022 16:40:18 GMT
expires: Fri, 22 Sep 2023 16:40:18 GMT
cache-control: public, max-age=31536000
age: 360785
last-modified: Mon, 11 Jul 2022 18:57:39 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm8-1.jpg
92.223.97.97200 OK 14 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm8-1.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x334, components 3\012- data
Hash b18631ea8840a1121893db4c0734de90
04b5a153c0387aac55f13bf160edba71da4bf54d
7bfbb3d4a00d4ade8b809b136604329e5290ecfa659139af6616b2cb238fb436
GET /content/aWvC9Jio0Q4UPhk/img/comm8-1.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 13569
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-3501"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm8.jpg
92.223.97.97200 OK 1.1 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm8.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash 7527f190fbc3a7793251beb701c67003
eabc0f1cde6aed53d54383f70e1b1c6b3beded98
3221243aa2895fd32cbcef99df65e054a1591bc747f1b43844c610189457c31a
GET /content/aWvC9Jio0Q4UPhk/img/comm8.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 1081
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-439"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm10.jpg
92.223.97.97200 OK 2.1 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm10.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash df3f56eb9d8cc8c1b5b213ab7e4a0c5d
bf21a6beeea9418485cff75701caaf1b8b5f3968
b02bee0f6352f2b78b2d1ebbe0a4ce1704b99b96a396b2bc21f826c991949cc1
GET /content/aWvC9Jio0Q4UPhk/img/comm10.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2146
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-862"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm3-1.jpg
92.223.97.97200 OK 24 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm3-1.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 346x314, components 3\012- data
Hash 3529275894ad12ff4319cb8d15bda257
79c170cd385bf1d459b33d9226f5be431270b1c1
dd0a4bf0b08d255096a76a0714f9e0f153299ed99cd867f22d666ecc9d6cf287
GET /content/aWvC9Jio0Q4UPhk/img/comm3-1.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 24382
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-5f3e"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm10-1.jpg
92.223.97.97200 OK 13 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm10-1.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 362x358, components 3\012- data
Hash 51b548b92cd5e6f322a56a83d457b586
e218e732ae64ac814061ffec82fe157cddde1933
e0f9f9ed6bb9768383bcf652b5710b77a0613a65cfa9e36f6b2a9b9e97e0109f
GET /content/aWvC9Jio0Q4UPhk/img/comm10-1.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 13036
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-32ec"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm9.jpg
92.223.97.97200 OK 2.2 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/comm9.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 51x51, components 3\012- data
Hash d7028d7a84265e2cc9b12259c764c1e1
99534fc2f0e5782d041267cb8066c3d507977bc1
9a645a4406fe129aad815c66cf705dda8c5b27df1b008f972a3a20712d0bf70b
GET /content/aWvC9Jio0Q4UPhk/img/comm9.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 2170
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-87a"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside3.jpg
92.223.97.97200 OK 15 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside3.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=79, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=126], progressive, precision 8, 121x76, components 3\012- data
Hash 77e060c3c66a6e3dec99f708c35650cb
6e0a76232613f1817a475c051d1de06ccab34afc
c4c3f0fcb163904ca076215b83de83a0fe616a2135c2d5a3923e297bad453dbc
GET /content/aWvC9Jio0Q4UPhk/img/aside3.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 15259
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-3b9b"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside1.jpg
92.223.97.97200 OK 8.2 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside1.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 276x186, components 3\012- data
Hash 451462c646c0ae0c5e2a40ef4438dcb2
d84bbe6dbefa28a9574089fe08582975c606c293
e59c4bfb181c1bc05dfe1704e7a8048988e78c9a0db91ce4588748f2494865d0
GET /content/aWvC9Jio0Q4UPhk/img/aside1.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:23 GMT
Content-Type: image/jpeg
Content-Length: 8240
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-2030"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:23 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside4.jpg
92.223.97.97200 OK 14 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside4.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=79, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=126], progressive, precision 8, 121x76, components 3\012- data
Hash 97ebd5abc0378eb7b90a5bd9f5c1d70d
c979bcc5afdb241091980fbfdc0e0f19d070dc39
cc9eaf791186f0db79c1b85c99eebed95b1fb4ecb0d01b7f38132712503732ca
GET /content/aWvC9Jio0Q4UPhk/img/aside4.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/jpeg
Content-Length: 13583
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-350f"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:24 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside5.jpg
92.223.97.97200 OK 23 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside5.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=79, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=126], progressive, precision 8, 121x76, components 3\012- data
Hash daad0b2ec6780783640c64ceecbb7717
cdbee2d0845cb448b87d4fcea7e5cb6164757af3
ca8a648a0f596c6fc3983d9bd20b3f14a36640a8a965eac5f7929520493be308
GET /content/aWvC9Jio0Q4UPhk/img/aside5.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/jpeg
Content-Length: 22990
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-59ce"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:24 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc10
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside-prod.png
92.223.97.97200 OK 14 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/aside-prod.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 141 x 225, 8-bit colormap, non-interlaced\012- data
Hash 658e7f87cb0247b943c9a164cb5cf292
42aedb2fad93c4d5caf3dba8b60bc4f7749b6296
f599965a420afa669534284cb9490f5a66a71a5f0c0537ac8f94d3ffd793963a
GET /content/aWvC9Jio0Q4UPhk/img/aside-prod.png HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/png
Content-Length: 14035
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-36d3"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:24 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
142.250.74.163200 OK 32 kB URL HTTP/2 fonts.gstatic.com/s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 31760, version 1.0\012- data
Hash fda4d0b623999af43148ba34c3b1ff73
ca5496af89720cc3e94e6279132f252b7cd471a6
33befdbbb24930584f5ac94ea3117adcd56518f20ab1619d05de83ffd1821d38
GET /s/montserrat/v25/JTUQjIg1_i6t8kCHKm459WxRyS7m.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://it.bluestonee.cc
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 31760
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 19 Sep 2022 22:19:01 GMT
expires: Tue, 19 Sep 2023 22:19:01 GMT
cache-control: public, max-age=31536000
age: 599663
last-modified: Mon, 11 Jul 2022 18:54:16 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/img/author-ava.jpg
92.223.97.97200 OK 2.0 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/author-ava.jpg
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 40x40, components 3\012- data
Hash 76ff4c58d16a70eaeb63bf21df577135
59279344a8b90bea09a63a944f19b65d1e62b4bb
d5649162deb90bfcbeb6ab8b7ef21c516e4cc6814a74bca4bc61edf84071b3c6
GET /content/aWvC9Jio0Q4UPhk/img/author-ava.jpg HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/jpeg
Content-Length: 1971
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-7b3"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:24 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc15
Accept-Ranges: bytes
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 737756d717fd215d94458a21028ae486
ee3c3097bcb2ff3f5482b0dc6056b1549afa8f1f
8e705bae2060960e1b2f79c42ebc445d52f307aeac41b34d3a1789879e51b85a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 26 Sep 2022 20:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
brumolat.com/content/aWvC9Jio0Q4UPhk/img/fb-messenger.png
92.223.97.97200 OK 237 B URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/fb-messenger.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 30 x 18, 8-bit colormap, non-interlaced\012- data
Hash c836d45a6c0cedecaf3c42ac0149b6e5
c4c819b7a4e546ce52a6e3bd9f88f38f6cae03f0
63081d59bde1ccfb2c807ab461938e20a8a43d730140d2a38039ef0f8c5746da
GET /content/aWvC9Jio0Q4UPhk/img/fb-messenger.png HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/png
Content-Length: 237
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-ed"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:24 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc13
Accept-Ranges: bytes
brumolat.com/content/aWvC9Jio0Q4UPhk/img/favicon.png
92.223.97.97200 OK 2.4 kB URL HTTP/1.1 brumolat.com/content/aWvC9Jio0Q4UPhk/img/favicon.png
IP 92.223.97.97:0
ASN #199524 G-Core Labs S.A.
File type PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced\012- data
Hash b36653a1d05b110f6431e3b067beb773
46affb4f598c7a3e5e841222bdd63f6da710262d
e244620aa4d9537938f1f54d426731c8d740444a7c15886d6290329a6c92a8f4
GET /content/aWvC9Jio0Q4UPhk/img/favicon.png HTTP/1.1
Host: brumolat.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/png
Content-Length: 2390
Connection: keep-alive
Last-Modified: Tue, 19 Jan 2021 08:39:47 GMT
ETag: "60069ad3-956"
Pragma: public
X-Edge-Node: slave-nl1
Expires: Mon, 26 Sep 2022 21:53:24 GMT
Cache-Control: max-age=3600
Access-Control-Allow-Origin: *
Cache: MISS
X-ID: sto5-up-gc12
Accept-Ranges: bytes
pixel.tomono.com/ac/v2?esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&offer_id=29915&land_id=77505&type=landing
31.172.81.190200 OK 68 B URL HTTP/1.1 pixel.tomono.com/ac/v2?esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&offer_id=29915&land_id=77505&type=landing
IP 31.172.81.190:0
ASN #44066 diva-e Datacenters GmbH
File type PNG image data, 1 x 1, 8-bit gray+alpha, non-interlaced\012- data
Hash 91e42db1c66c0b276abf6234dc50b2eb
c1986af3c26609b8b7d8933f99c51c1a89e9ea6b
63ef318d96b5d0d0ceba6e04a4e622b1158335cdc67c49e27839132c6f655058
GET /ac/v2?esub=-7EBRQCgQAAHMDK5xsBAPbdAMzgTfBLgGCAgADD0MRMmMRDRoRDSIRDUIRDVoDTk8Hbmwxf2FkY29tYm__ZWlNOHdoMzAAA2M0&offer_id=29915&land_id=77505&type=landing HTTP/1.1
Host: pixel.tomono.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://it.bluestonee.cc/
HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Mon, 26 Sep 2022 20:53:24 GMT
Content-Type: image/png
Content-Length: 68
Last-Modified: Thu, 01 Oct 2020 09:45:48 GMT
Connection: keep-alive
ETag: "5f75a54c-44"
Accept-Ranges: bytes
fonts.gstatic.com/s/roboto/v16/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v16/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14748, version 1.0\012- data
Hash 4b218fc7ca179e548471ff37e3060081
b1ac29b8b6ee764d417496103951c8eea340222e
266b4cce701b1c27f1c62a9bd5b6ab64fcf74859400e6fabac2d7e11f96103d0
GET /s/roboto/v16/RxZJdnzeo3R5zSexge8UUVtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://it.bluestonee.cc
Connection: keep-alive
Referer: http://it.bluestonee.cc/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14748
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 24 Sep 2022 14:04:11 GMT
expires: Sun, 24 Sep 2023 14:04:11 GMT
cache-control: public, max-age=31536000
age: 197353
last-modified: Mon, 17 Apr 2017 21:21:20 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v16/d-6IYplOFocCacKzxwXSOFtXRa8TVwTICgirnJhmVJw.woff2
142.250.74.163200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v16/d-6IYplOFocCacKzxwXSOFtXRa8TVwTICgirnJhmVJw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 14680, version 1.0\012- data
Hash aa3e87117db2b3c27801cbb8dfe40c6c
a1118c5362e2dd34ac5cf34e135042c3ad827b58
36eea693231e39de5efd21718fea8fc98005b580b264522ffbef360939b8d75c
GET /s/roboto/v16/d-6IYplOFocCacKzxwXSOFtXRa8TVwTICgirnJhmVJw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://it.bluestonee.cc
Connection: keep-alive
Referer: http://it.bluestonee.cc/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14680
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 26 Sep 2022 20:05:03 GMT
expires: Tue, 26 Sep 2023 20:05:03 GMT
cache-control: public, max-age=31536000
age: 2901
last-modified: Mon, 17 Apr 2017 21:22:29 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9474
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 20:53:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9474
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 20:53:24 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9474
Expires: Mon, 26 Sep 2022 23:31:18 GMT
Date: Mon, 26 Sep 2022 20:53:24 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
34.120.237.76200 OK 5.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2fe8c4f0c70fb6c1f4259eabedc7015e
85e378d0fff856832a8dd01743516b9476fed8c6
508a1c7d350fcf82d1ece0b99f8557b2f300c7c1148f28c3ae9fece20530e4b6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Febd85aa2-fe15-49c2-aa3e-38b97cb99849.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5157
x-amzn-requestid: b5748f49-693f-4bc3-a850-cb68e770de24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUG9GUHIAMF7pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd5f-5d2aaa212cf1be2506593746;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:51:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4h9lb_7egxb2hBbxjcS_cpZ5lDq6Lx-c_WUZyRHdUA0YTwr6kgDuiQ==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:10:16 GMT
age: 81788
etag: "85e378d0fff856832a8dd01743516b9476fed8c6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 3-257, spot sensor temperature 0.000000, unit celsius, color scheme 0, show scale bar, calibration: offset 0.000000, slope 241253891388563521536.000000\012- data
Hash b3a72e81317074689a71dac7059e4b6a
b6d56333d7f1ea7ddc8838d84de498ff913c5464
e665a8821b5e7b2e78787647a08d629bf70cbf4cbfee2057c8601cf0565154a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1deb918e-bcb0-4629-aaa7-0ae0322969be.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12826
x-amzn-requestid: f075cf62-acfc-4bc1-be14-7c3dafb7aaed
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YfVRNFP-oAMFgrA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6322cf3a-184b678042d64ac9266b1128;Sampled=0
x-amzn-remapped-date: Thu, 15 Sep 2022 07:07:38 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rN_8rm10Pxb0AUKW6ECfNulcYxBaS7FgGD15gT14dX-FlsGJfqahxA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 21:37:35 GMT
age: 83749
etag: "b6d56333d7f1ea7ddc8838d84de498ff913c5464"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d02ede0c964f3346fd53ae2950bf2a62
e49306a3713cb724be024a4ddb5e90645718a718
c0e653d89656016c55aca9b198b9191620f1ae9a3c45742a90744bd74c4f9505
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9723d426-a6ee-4860-8067-0b8d98143233.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8637
x-amzn-requestid: 07dc23e0-000f-4f6c-8d2b-0e65d88be270
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSvvEenoAMFr0Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cb31-520803124760abc216152d7b;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:42:09 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: HCJ483GPdpPhC7oYm1GrA02BqqST9sfqfCBSA93rZqaQYl-jezgP5Q==
via: 1.1 27a84054de24e45f952ea4056a821764.cloudfront.net (CloudFront), 1.1 2ab6211e66998c8b58132661a7e3cade.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:20:40 GMT
age: 81164
etag: "e49306a3713cb724be024a4ddb5e90645718a718"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 968b9c138702fb5994d1d9eab1a697fa
9660bb2d38079182efbd11d7a687bfc7f9d30751
5ba74820ad451747c8ed25529f06b037bebf4c0616a1f2165c9197c1171db7a6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7838a122-2b2e-4e4c-9bcc-7c6b46a93b1e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11728
x-amzn-requestid: bf60e58f-c4f4-45c7-923b-0d1539f720f5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCUCGGw7oAMF3wQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cd40-32043c1b1411544f5d00edc0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:50:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: H4KXhBaRw3SvzBrbl30mV6R_vJ8bXBkyicb8fQiTp6YSBHjE8iFkNQ==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:49:56 GMT
etag: "9660bb2d38079182efbd11d7a687bfc7f9d30751"
content-type: image/jpeg
age: 79408
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
34.120.237.76200 OK 6.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef17205adb2b478d3bff54b048208d22
12aac1bd22e675f09a220de08b4656e801c2e647
620fe39cf421ed3a21e968570f7e863d69224113be867ec2457ed3850ea113f6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff3689ec8-63b4-42ae-b7d5-a9b4b63af788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5980
x-amzn-requestid: fbf0c390-da24-49e2-8492-43e29e5d4bb3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCTHCGJVoAMFgxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330cbc6-1f9b1b7d63467c58702e6d7e;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:44:38 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Iy0oyFx_T6CEuOQckEzvUQOUo307Jm_OgJzomWlMz9BhgD3eOaysdA==
via: 1.1 ec2a2c75c16156e4d43504606c118b90.cloudfront.net (CloudFront), 1.1 5954c6394458ffb44c970b3819d7ff2a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 26 Sep 2022 18:14:05 GMT
age: 9559
etag: "12aac1bd22e675f09a220de08b4656e801c2e647"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a90590f26bae9ad9e95ffdfbfb7dd21d
cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3
33fe3394213e01d11c3e005cb5a678ba74511704d4132fc2bd9f7ad4e1b7dbfc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdc9985e6-5fe2-4d64-8060-3ea9e7ea528d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10318
x-amzn-requestid: 6a205445-8a9e-4f25-b144-ba6e6934d383
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZCSlhFNAIAMFmBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6330caef-61ecbf9154cd56131b940ac0;Sampled=0
x-amzn-remapped-date: Sun, 25 Sep 2022 21:41:04 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qP5-TglQAoTGc78-rIK27mKRTS_WthN0OpiiMqSF-y2rmWxVOyfNVw==
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Sun, 25 Sep 2022 22:02:10 GMT
age: 82274
etag: "cde7845f38c4c077f1f1cfda1d1e3b00065d3ac3"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2