greendildofinance.com/
200 OK 432 B IP
ASN #21499 Host Europe GmbH
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 65edd685f7730040640937cc4975d7f6
bde67e6c0da4c907d28aad4ca5ac5b99b0caf20d
87429cf57d09aa62609da54414f9e4160dcc073459562296987fc532a98798ab
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: greendildofinance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 02 Oct 2022 14:33:12 GMT
Content-Type: text/html
Content-Length: 432
Connection: keep-alive
Last-Modified: Mon, 13 Sep 2021 15:09:26 GMT
ETag: "1b0-5cbe1d9d13580"
Accept-Ranges: bytes
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 02 Oct 2022 14:03:10 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 242a81711c4fc113f186d0cca0b5bb94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: LZPZ36j6sRp7GX67joYjxJFPpWD9mKOZgXMFlr3nUk89wGfFklYYxg==
Age: 1803
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 24cdc937930ac2ef9c8f46ba1deabcc5
397417929951bf20f235d5f91510163ac213dc71
eb128aec099dbf1919ee5d965221e904ad3a2162583683cec44518640b505447
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EB128AEC099DBF1919EE5D965221E904AD3A2162583683CEC44518640B505447"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6007
Expires: Sun, 02 Oct 2022 16:13:20 GMT
Date: Sun, 02 Oct 2022 14:33:13 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 02 Oct 2022 03:33:17 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 9fedc4d43d76bf30a3fb8278d99d39aa.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: ZAu5EMF-bxY4IxlYLzaaqRUvb92HhacannIax-e-HSXOrEKT9tWCnA==
age: 39597
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-regular-b4d2c4.woff2
200 OK 24 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-regular-b4d2c4.woff2
IP
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 23484, version 1.0\012- data
Hash b4d2c4c39853ee244272c04999b230ba
c82e22dde9716c40ba20e6c7ed03a1b66556de15
c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1
GET /static/default-website-content/public/fonts/lato-v16-latin-regular-b4d2c4.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://greendildofinance.com
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: font/woff2
content-length: 23484
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-5bbc"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 401C:3740:2D5377:345862:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.023326,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 3e6170d6400f8fc3835c53daa19a90ec307f5a88
x-accel-expires: @1664721520
server: CDN77-Turbo
x-77-nzt: AblMCRSl/gz/EQEAAA
x-77-nzt-ray: zP0oBD2jq7Y
x-cache: HIT
x-age: 273
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-1efbd3.woff2
200 OK 23 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-1efbd3.woff2
IP
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 22992, version 1.0\012- data
Hash 1efbd38aa76ddae2580fedf378276333
8a49976f2470ba2a1db6144245355d3b889312e4
8d3ca80fa271e94b0c36cf3053b0f806b7a42bb3395b424c99dc0bd218f0ac20
GET /static/default-website-content/public/fonts/lato-v16-latin-700-1efbd3.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://greendildofinance.com
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: font/woff2
content-length: 22992
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-59d0"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1FFE:A2DF:72F904:79FDB7:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1670-BMA
x-cache-hits: 1
x-timer: S1653304043.055162,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 77597007a4434ed5f30a6a0efb9caf1c4ebcaeb0
x-accel-expires: @1664721520
server: CDN77-Turbo
x-77-nzt: AblMCRQhyab/EQEAAA
x-77-nzt-ray: G7opjgorH50
x-cache: HIT
x-age: 273
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-domain-page-15b75d.png
200 OK 192 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-domain-page-15b75d.png
IP
ASN #60068 Datacamp Limited
File type PNG image data, 998 x 840, 8-bit/color RGBA, non-interlaced\012- data
Size 192 kB (191877 bytes)
Hash 15b75d100a555e3f0d84c59d81dd46e8
435e0f337cf2fb81d65fa4aa1c14caaa109f5bc6
f2fd07b6c6a69ba71eb8513377f052f5b692d610a2e890151084e7fcfb09799d
GET /static/default-website-content/public/img/header-domain-page-15b75d.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/png
content-length: 191877
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-2ed85"
expires: Mon, 23 May 2022 11:15:35 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: B038:8A57:FDC5B0:1075642:628B6A7F
via: 1.1 varnish
age: 108
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.201739,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: aabbe9bc697ada4e73c5910722c114837a19bc75
x-accel-expires: @1664721206
server: CDN77-Turbo
x-77-nzt: AblMCRQrc4//SwIAAA
x-77-nzt-ray: g/JfiuKlIOI
x-cache: HIT
x-age: 587
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/favicon-1db747.ico
200 OK 114 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/favicon-1db747.ico
IP
ASN #60068 Datacamp Limited
File type MS Windows icon resource - 7 icons, 256x256 with PNG image data, 256 x 256, 8-bit/color RGBA, non-interlaced, 32 bits/pixel, -128x-128, 32 bits/pixel\012- data
Size 114 kB (113459 bytes)
Hash 1db747255c64a30f9236e9d929e986ca
384023452346aa087d40c93c23ca2f5e32ff1b1f
88baf40feb43463a8f6aa6543e88bdbe33f0db9a317486e786eee1e5c76a9544
GET /static/default-website-content/public/favicon-1db747.ico HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/vnd.microsoft.icon
content-length: 113459
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-1bb33"
expires: Mon, 23 May 2022 11:15:35 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 51AE:F41A:4F31FD:5200AF:628B6A7F
via: 1.1 varnish
age: 116
x-served-by: cache-bma1624-BMA
x-cache-hits: 1
x-timer: S1653304052.583034,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: d13b1907e23db30d9c140200d8f6b99fdaf87fdb
x-accel-expires: @1664721638
server: CDN77-Turbo
x-77-nzt: AblMCRRI5Cf/mwAAAA
x-77-nzt-ray: iOSWwXTH4Eo
x-cache: HIT
x-age: 155
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Expires, Backoff, ETag, Last-Modified, Pragma, Cache-Control, Content-Length, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
X-Content-Type-Options: nosniff
Date: Sun, 02 Oct 2022 14:32:55 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Sun, 02 Oct 2022 14:32:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 bfad1bfbe8b9892941877774853e07da.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR50-P3
X-Amz-Cf-Id: wJy4SyIrTbPQJi1NvCg2fnfyuFt4wugXiHDe5hdvat7wPb8t-3NOnA==
Age: 20
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ec6d2806160db2a1cfcf0ab731e172c7
9f7bcdba66bc48f8c47194a5eeb4bd6703ec4875
27c341da48937db61b68e2b1c62990ac6746f7ff95777fc140dfdd29f19d7c09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 14:33:13 GMT
Last-Modified: Sun, 02 Oct 2022 14:15:37 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 2965ddce35e344439e974765012649ae.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P2
X-Amz-Cf-Id: MSe0ZsUHuzf0XildYN3WWKz8ieDmmFGG0mByeYlXmO-8_oV5Th15ag==
Age: 1056
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash ec6d2806160db2a1cfcf0ab731e172c7
9f7bcdba66bc48f8c47194a5eeb4bd6703ec4875
27c341da48937db61b68e2b1c62990ac6746f7ff95777fc140dfdd29f19d7c09
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 02 Oct 2022 14:33:13 GMT
Last-Modified: Sun, 02 Oct 2022 14:15:37 GMT
Server: ECS (nyb/1D29)
X-Cache: Miss from cloudfront
Via: 1.1 065611e4902dee87a737c0875c8e6708.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: LHR61-P2
X-Amz-Cf-Id: NKhEuq6DxteWDIkFslHF67gE5gZ_kETxs7lKjDT-o3aOpYMaJK3iqQ==
Age: 1056
ocsp.digicert.com/
200 OK 471 B IP
Hash 4eb30b4a4234809cf7d5f89fa1f6ceeb
797242aab2f13c820050aa9accd11b7b950cd177
ce9d833a0ac321a908184b655d6632c481f758a04a9c936a7c303bb253444146
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2907
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 02 Oct 2022 14:33:14 GMT
Last-Modified: Sun, 02 Oct 2022 13:44:47 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
firehose.us-west-2.amazonaws.com/
200 OK 20 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
OPTIONS / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Referer: http://greendildofinance.com/
Origin: http://greendildofinance.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: e333a516-bc13-6afc-b880-067c638f6dca
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Content-Length: 20
Date: Sun, 02 Oct 2022 14:33:13 GMT
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 5nDaHTwTJGPkYWK7z+Q9OQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: uyAPFrIUnDC7MwPCYPXhYmAXhzk=
firehose.us-west-2.amazonaws.com/
200 OK 247 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 5a9dbcbe5e6516045893cf3949071354
974f0a18e5342713519d2569d64e77dc1286a0d6
4a7f2db70ecb492565122856450993dbd071a30f12f75a02790ca97c91759bae
POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.693.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: 9c7457799b2123a4ff11d115d25a19ede4a5a8db9b32d10a8e5f1ebd7be815ac
X-Amz-Date: 20221002T143313Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJL6JKBNRGP/20221002/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=51559130177c1992fcd34e5acb2c522f86a556b17bb60b2838daf7dc6445216a
Content-Length: 108
Origin: http://greendildofinance.com
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: d8dc8a10-c76b-1433-836f-297a18f71305
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: HlCEwod9r7vrCzLgNGkLtpicyeUoKjd/TVqOlghs6yEkXtZfP/7kkSwwxIgEZ5AQ8LhmX+QLmqX7Vi/Ll0eE+MsyP+7kvLPJ
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 247
Date: Sun, 02 Oct 2022 14:33:13 GMT
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11970
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 14:33:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11970
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 14:33:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11970
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 14:33:15 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash f5e503471cc78b95c0a3e75785615e5f
145b1e4d850c145a78577b5d7d4fadae9658d7a4
61bf2bddece68c7876ab5481c14ed1b1879343e55c86ee013b4f3a8d3353e6b4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "61BF2BDDECE68C7876AB5481C14ED1B1879343E55C86EE013B4F3A8D3353E6B4"
Last-Modified: Sat, 01 Oct 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11970
Expires: Sun, 02 Oct 2022 17:52:45 GMT
Date: Sun, 02 Oct 2022 14:33:15 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 04:41:39 GMT
age: 35496
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 11f2e40823827b62bca89d18ee279cb2
fa7e61b4f2864b8e51acb2cc887c15d5cb41ef38
c7811cb947483a033f31ff1e93b813f1bbc49b03ed78fcedab2090c71e5c4d1f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F589e050c-3794-45f2-a218-269b944ae739.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: e83a86d3-f5ab-4645-92df-4b2da3d4afa3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWDgmFdlIAMFzQA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b2d0-48c3fa150800475c790b95bd;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:36:16 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: f1aqkuvCub_vq9gBDgA4VL8hNf16FXzXhQjSHC1yDLISm85uOqJF9w==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:50 GMT
etag: "fa7e61b4f2864b8e51acb2cc887c15d5cb41ef38"
content-type: image/jpeg
age: 59905
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg
200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 26b855e3a55a0cfd23896413332a5c05
342e3be8998b548a7004c2a51c9910959b3747db
dfb620bbfa8adde25d578bc9baaa165324170b2f6bbcc2275f1a824267081ccb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F23b0da68-a440-4387-9d47-1617d8157f55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8324
x-amzn-requestid: fa9aa819-4e83-4c42-a899-49396a990ead
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZS2QZEZqoAMF8SA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63376a68-1161ffe757f32d1666e230a6;Sampled=0
x-amzn-remapped-date: Fri, 30 Sep 2022 22:15:04 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qLKXx_FMt1iTVh0bLwMkPNuKVVYzURAim45RmI2f3Fj6YfxtKHfjmQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 22:20:52 GMT
age: 58343
etag: "342e3be8998b548a7004c2a51c9910959b3747db"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 463bdcfbec5426e18ecef83b1c373b71
2e533332ee5c49143e58dad32ee3717a39179532
2c40befd28781482b9be249a792571612d68d7045324083d2c832fa5ec42f04b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F59054e54-a013-42c5-98a5-abe2b6af4fc6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4987
x-amzn-requestid: 763edd04-7f8d-42ae-8864-482be3549958
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHpFs4oAMFbqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3ca-2f7b67e85aa83b69183e62b5;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:26 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 2Zoggf30lA-Kvt5QYa-IdhGePHCNiphR7pfFiOaFvL8ZkWZIaiK4pA==
via: 1.1 f4367b41311e3e9a490d7461b7b85490.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:54:45 GMT
etag: "2e533332ee5c49143e58dad32ee3717a39179532"
content-type: image/jpeg
age: 59910
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d99550eb468960005df780c03ab6ecfc
03111ce2048e8bc5be100ff3a746da2e664f8aab
9dcd18e02621fa95d846be7c951e7353f24aa68a282ee0b693e7e5da38c3cfcb
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F63464d04-a2f9-451b-a399-53362af292c5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10679
x-amzn-requestid: fae3b86e-6f85-485f-81e4-22b7b17f30f0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWRkYF2tIAMF-OQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338c94f-486c76da111696471e3905f2;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:12:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: CU4YQ3XmxAexkl1rn7BOCSyqyIB12Ff9gMMXqVta5JgIIwQZmUCVMg==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Sun, 02 Oct 2022 08:04:33 GMT
age: 23322
etag: "03111ce2048e8bc5be100ff3a746da2e664f8aab"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash edded48f558f739287a040151349ef67
d63b6ba630736d32c364b0e6a369274b2389b7ff
33b4a459df0ba7b36b907ba96d74e08660cc75640c42a5748b97d18ec2e9d533
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccb5f775-a073-47ba-b076-ad1c96659b64.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11083
x-amzn-requestid: 53e2c961-bcc0-4977-8648-ee3c1aed9cde
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWEHRFWfIAMFhlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338b3c7-070212d7386d5efa1b4aa8d3;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 21:40:23 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Z1KmxHJh9QNfg5x0enkqOjbmiqHvg7nlQiMnuDuCRNWQUBFEiKELbw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 31119c39c5a6dc62dfa1fe940afd7be2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 01 Oct 2022 21:53:35 GMT
etag: "d63b6ba630736d32c364b0e6a369274b2389b7ff"
content-type: image/jpeg
age: 59980
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/knowlede-base-d84150.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/knowlede-base-d84150.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/knowlede-base-d84150.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-332"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3E14:7313:155B641:162535F:628B6A51
via: 1.1 varnish
age: 162
x-served-by: cache-bma1674-BMA
x-cache-hits: 1
x-timer: S1653304052.518505,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 1bcca9524d519e25e102063b5a92e6850ca36da6
x-accel-expires: @1664721377
server: CDN77-Turbo
x-77-nzt: AblMCRT6zaH/oAEAAA
x-77-nzt-ray: Y3UqdPpfpg4
x-cache: HIT
x-age: 416
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/forum-4b225c.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/forum-4b225c.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/forum-4b225c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-1569"
expires: Mon, 23 May 2022 11:14:21 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: A4E6:8A57:FDB8BC:10748D6:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.121875,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4a9e830e6ba39cce9b3f23d4d8dfb0e6c9cc2965
x-accel-expires: @1664721405
server: CDN77-Turbo
x-77-nzt: AblMCRSXL7n/hAEAAA
x-77-nzt-ray: cXrPhdpod7s
x-cache: HIT
x-age: 388
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/facebook-c06b9c.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/facebook-c06b9c.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/facebook-c06b9c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-318"
expires: Mon, 23 May 2022 11:13:52 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 82E6:7313:155B653:162536E:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1670-BMA
x-cache-hits: 1
x-timer: S1653304043.184529,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4ba97906a2b8683fd69f75deb796e85128592f86
x-accel-expires: @1664721777
server: CDN77-Turbo
x-77-nzt: AblMCRTd4tH/EAAAAA
x-77-nzt-ray: Iii1MsaUEwA
x-cache: HIT
x-age: 16
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/bundle.js
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/bundle.js
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/bundle.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-3e76c"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 4D6E:4F44:2015229:21361F3:628B6A51
via: 1.1 varnish
age: 125
x-served-by: cache-bma1623-BMA
x-cache-hits: 1
x-timer: S1653304014.044026,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: cedc1134cf950adca3bf6f6fe4272d6944c37a5f
x-accel-expires: @1664721270
server: CDN77-Turbo
x-77-nzt: AblMCRSwLoD/CwIAAA
x-77-nzt-ray: 5u1KvXcWvG0
x-cache: HIT
x-age: 523
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/try-online-demo-6e5f27.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/try-online-demo-6e5f27.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/try-online-demo-6e5f27.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-6e9"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: EDB4:4F43:F84E6D:105C344:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.084546,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: c53de62db144032279389d6fe2f8e663a661c45c
x-accel-expires: @1664721727
server: CDN77-Turbo
x-77-nzt: AblMCRSkL93/QgAAAA
x-77-nzt-ray: 7qg7v6/mn78
x-cache: HIT
x-age: 66
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-bg-1d0da8.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-bg-1d0da8.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/header-bg-1d0da8.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-132"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 4DD6:1627:11BB8F7:125EEDE:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.188651,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 88fa691dfc1a20096a665a3e4a05734ea2624fd8
x-accel-expires: @1664721427
server: CDN77-Turbo
x-77-nzt: AblMCRS7qOr/bgEAAA
x-77-nzt-ray: HKvcbKUeRJo
x-cache: HIT
x-age: 366
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/default-server-index.js
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/default-server-index.js
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/default-server-index.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-5433"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0EB8:8A57:FDB88A:10748A4:628B6A51
via: 1.1 varnish
age: 125
x-served-by: cache-bma1657-BMA
x-cache-hits: 3
x-timer: S1653304014.017776,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 4985daa8a090b4c2cb4641c5951b92d15b245fb7
x-accel-expires: @1664721770
server: CDN77-Turbo
x-77-nzt: AblMCRQNz77/FwAAAA
x-77-nzt-ray: o5tvoEe7X78
x-cache: HIT
x-age: 23
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/logo-775316.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/logo-775316.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/logo-775316.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-86f"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3DEE:E362:22D13D5:2406A2C:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.040784,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 044fad660626a22ff001a772b55a5d5779e70b56
x-accel-expires: @1664721793
server: CDN77-Turbo
x-77-nzt: AblMCRTIu3PeYQIAAA
x-77-nzt-ray: 2ytd/Cbo+Rs
x-cache: REVALIDATED
x-age: 609
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/plesk-guides-3aaef8.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/plesk-guides-3aaef8.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/plesk-guides-3aaef8.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-8e6"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 61F4:6C9D:9EF117:A82CAD:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1670-BMA
x-cache-hits: 1
x-timer: S1653304043.120483,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 5e0d2d55a022d8f81888a9eba4d0d4f0e0112b56
x-accel-expires: @1664721771
server: CDN77-Turbo
x-77-nzt: AblMCRRAtQj/FgAAAA
x-77-nzt-ray: kHxBEBGgVnE
x-cache: HIT
x-age: 22
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/developers-blog-22dfe6.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/developers-blog-22dfe6.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/developers-blog-22dfe6.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-51f"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3B1E:4F43:F84E7D:105C350:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.177940,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 6cdf74fa20bb4bdc0f7e1114e3eb68368c7e6018
x-accel-expires: @1664721378
server: CDN77-Turbo
x-77-nzt: AblMCRTXuOn/nwEAAA
x-77-nzt-ray: Oijqfgw5PjE
x-cache: HIT
x-age: 415
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/video-guides-b94afc.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/video-guides-b94afc.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/video-guides-b94afc.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-509"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3F68:05BB:75D62A:7CC3ED:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.173700,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 98674b35271b98d3e0f4091a7403205d54ee3b7c
x-accel-expires: @1664721378
server: CDN77-Turbo
x-77-nzt: AblMCRRtJmL/nwEAAA
x-77-nzt-ray: fE+M6c5fKe4
x-cache: HIT
x-age: 415
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/guy-508c30.png
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/guy-508c30.png
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/guy-508c30.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/png
content-length: 9999
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-270f"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3F90:7313:155B620:162533E:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.201352,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 05a247c73331f2c9b8c20f277bb01530b73ebd69
x-accel-expires: @1664721727
server: CDN77-Turbo
x-77-nzt: AblMCRRKo7X/QgAAAA
x-77-nzt-ray: VHJjD2JWJ6I
x-cache: HIT
x-age: 66
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/question-mark-circle-7c07a2.svg
200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/question-mark-circle-7c07a2.svg
IP
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/question-mark-circle-7c07a2.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://greendildofinance.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 02 Oct 2022 14:33:13 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-1ce"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 922E:E362:22D13D5:2406A29:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.085082,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: b5e850c6a78bce872c716edbca3a57ca6ea061dd
x-accel-expires: @1664721378
server: CDN77-Turbo
x-77-nzt: AblMCRRlLHf/nwEAAA
x-77-nzt-ray: v9DY4L9viHI
x-cache: HIT
x-age: 415
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
92.205.25.242
34.120.237.76
23.36.76.226
185.76.9.25
93.184.220.29