r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3955
Expires: Sat, 03 Sep 2022 23:09:30 GMT
Date: Sat, 03 Sep 2022 22:03:35 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 21:43:17 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6OM0vuXCtWBYb-Fqdz67gj497THoCo2eij0RCYXV72C2U1uJ3Jx8IQ==
Age: 1218
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: whWPCTLqopyYS4bOmYpfyGZcR2v3hnSdir8KmyeQ8U_-UDSB5-3w3A==
age: 74898
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 22:03:35 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
8facbaaf.dotests.com/
108.128.238.226200 OK 4.8 kB IP 108.128.238.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (1133)
Hash 40220c7190a731b680fc7279a1f953ca
e24092600d45907c8853349f5f20bb295958d1b3
2c075d0bb3e77fbc98d463535f0e8fb87c35e571e106976ed77056542d255114
Analyzer Verdict Alert openphish Facebook, Inc.
fortinet Phishing
GET / HTTP/1.1
Host: 8facbaaf.dotests.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
date: Sat, 03 Sep 2022 22:03:35 GMT
content-type: text/html; charset=utf-8
content-length: 4793
set-cookie: stg-tracker=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Authorization, apiKey
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
assetslp.link/assets/js/landend/jquery-1-9-1.min.js
54.230.111.59301 Moved Permanently 183 B URL HTTP/1.1 assetslp.link/assets/js/landend/jquery-1-9-1.min.js
IP 54.230.111.59:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash e4e384d6672787c1bb2a9b500114f1f5
cf909e7937cd3f312c434367b732a53d7a6cbf14
80785f5520097dde3b28c617171415cd690cbf1e0353a5f3e348c83a4656ea0f
GET /assets/js/landend/jquery-1-9-1.min.js HTTP/1.1
Host: assetslp.link
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 03 Sep 2022 22:03:36 GMT
Content-Type: text/html
Content-Length: 183
Connection: keep-alive
Location: https://assetslp.link/assets/js/landend/jquery-1-9-1.min.js
X-Cache: Redirect from cloudfront
Via: 1.1 f46773a8236e136c4f6648dd79a7af8e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Hlorenh4s83t9AnIiPweY09clSoJpD3lY05f0x2IB9uiucO2jAbw2g==
waust.at/d.js
104.26.4.7200 OK 7.6 kB IP 104.26.4.7:0
File type ASCII text, with very long lines (14714), with no line terminators
Hash c004abc3f3ded36da8d7f56832727735
a5d3450b7010972568ab6e08481167b2b78c1588
335434296e669518f30a4df2bbb37693761c3591cd8ed54cb9d014f8a9956b88
GET /d.js HTTP/1.1
Host: waust.at
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 22:03:36 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
last-modified: Mon, 29 Aug 2022 18:12:33 GMT
etag: W/"630d0191-397a"
expires: Sun, 04 Sep 2022 21:24:58 GMT
cache-control: max-age=86400
access-control-allow-origin: *
content-encoding: gzip
CF-Cache-Status: HIT
Age: 2318
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DimhmpOu9N10p4xxgbC6Y1ou6hu65MFwT4SYaaoGpj%2FNfDOjO3Ro9YneoHWFZ2BPudnKQts2HN6rJWAGTzgC3KLiTneconTUle4YhP4uVfnUh7nQCaWjJCeU"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7451c6c07f00b4e8-OSL
alt-svc: h2=":443"; ma=60
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 0278b1bc9664f091ece09dca446987ba
46f9a7dc7341ddbd94aa2d72660363506ab84cfd
a84bb30d4c448d4079f2f2df5b27d0e3788d71a1a6a4ff77276d18fc9d473db5
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=536
Date: Sat, 03 Sep 2022 22:03:36 GMT
Connection: keep-alive
X-N: S
dvcasha2.ocsp-certum.com/
23.36.79.17200 OK 1.6 kB URL HTTP/1.1 dvcasha2.ocsp-certum.com/
IP 23.36.79.17:0
ASN #20940 Akamai International B.V.
Hash 0278b1bc9664f091ece09dca446987ba
46f9a7dc7341ddbd94aa2d72660363506ab84cfd
a84bb30d4c448d4079f2f2df5b27d0e3788d71a1a6a4ff77276d18fc9d473db5
POST / HTTP/1.1
Host: dvcasha2.ocsp-certum.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 1599
X-Cached: HIT
Strict-Transport-Security: max-age=63072000,includeSubDomains,preload
Cache-Control: max-age=471
Date: Sat, 03 Sep 2022 22:03:36 GMT
Connection: keep-alive
X-N: S
styles.assets-landingi.com/4Mop3W8O/base.css
104.21.83.18200 OK 6.4 kB URL HTTP/2 styles.assets-landingi.com/4Mop3W8O/base.css
IP 104.21.83.18:0
File type ASCII text, with very long lines (13214), with no line terminators
Hash d3e1168b27aea0c4c6f1956e4c3ebb8e
2fa1fc832b691b56c682db3a03c26dbb8ce11832
33e29df3c1f03779711e9be206c22eb11a92b55c8d29eff413691784207b1507
GET /4Mop3W8O/base.css HTTP/1.1
Host: styles.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=15599
etag: W/"90452c5ffb5dcaa637767dedd89f5878"
last-modified: Sat, 03 Sep 2022 00:32:53 GMT
x-amz-id-2: B2xgeCSSI01GIcOQAseSFltRuXLskFIWGpk1zh97PmPGJaOU0U9+HzofDLcTBaFvneb/fd92lT4=
x-amz-request-id: 7K15V3FPZAACVSWP
cache-control: max-age=31536000
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bXKZdxE%2FQSWnKvjLqCeSnnBqT3Qgi8HYdAW%2BUKzgiwAaBDZJ4bKM%2BiDtYxgpY7rbsTFHdkbCGjPD3A0U%2BRBJagO9p67CD04INNvICr9IzVsDxnPGXnxShYHQXJvUT4e6KV3TqnB8o%2Bo8bJwUgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bf6d6ab4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
popups.landingi.com/api/v3/landing/install-code?apikey=9f6a432b-1f78-4f01-b9b0-f1fe1859a8b4&landing=1bb4c43a62ce27af2f48
52.213.16.251200 OK 349 B URL HTTP/2 popups.landingi.com/api/v3/landing/install-code?apikey=9f6a432b-1f78-4f01-b9b0-f1fe1859a8b4&landing=1bb4c43a62ce27af2f48
IP 52.213.16.251:0
Hash 8d84f9624a36ee1680dc191ae0939773
5d31c970d71f9dad90381348f49450d0938f409e
86a86bf8198332ecb7f81e8842f57bb5addafe7e1327c95190a8aa1d849b1027
GET /api/v3/landing/install-code?apikey=9f6a432b-1f78-4f01-b9b0-f1fe1859a8b4&landing=1bb4c43a62ce27af2f48 HTTP/1.1
Host: popups.landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: text/javascript; charset=UTF-8
server: nginx
vary: Accept-Encoding
x-powered-by: PHP/7.4.3
cache-control: no-cache, private
content-encoding: gzip
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 4fc12f0a98aa28ccb56e0b56d7e40ded
f7efcfb8b4f4aa40268bada3fec380820a70ee35
a34aa9b7db949a583c3f1b4d87fed415a11d119c9615b5e710c3125173f8a277
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1070
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 22:03:36 GMT
Last-Modified: Sat, 03 Sep 2022 21:45:46 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
8facbaaf.dotests.com/favicon.ico
108.128.238.226301 Moved Permanently 336 B URL HTTP/1.1 8facbaaf.dotests.com/favicon.ico
IP 108.128.238.226:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 5abc53c831affaa55c409f38da1abc2b
0d0c622e91246d6392f2e1c00f389b8709793803
02734e03a067d5317af8626dd2a6fc891a5e919155195a561ddfd585735face8
Analyzer Verdict Alert openphish Facebook, Inc.
GET /favicon.ico HTTP/1.1
Host: 8facbaaf.dotests.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
HTTP/1.1 301 Moved Permanently
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: text/html; charset=UTF-8
content-length: 336
cache-control: no-cache
location: /assets/img/favicon.ico
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Authorization, apiKey
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
8facbaaf.dotests.com/assets/img/favicon.ico
108.128.238.226200 OK 318 B URL HTTP/1.1 8facbaaf.dotests.com/assets/img/favicon.ico
IP 108.128.238.226:0
File type MS Windows icon resource - 1 icon, 16x16, 16 colors, 4 bits/pixel\012- data
Hash 0eb6a3e58fb0f61f080bfd48d9be4a2d
669802179243bd9c47aae26d03090f5f8e40a015
3755ed10fae26af17e06f7ff740b9138c0f6b47b524d6bbbaae98f999433e1ea
Analyzer Verdict Alert openphish Facebook, Inc.
GET /assets/img/favicon.ico HTTP/1.1
Host: 8facbaaf.dotests.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://8facbaaf.dotests.com/
Connection: keep-alive
HTTP/1.1 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: image/x-icon
content-length: 318
last-modified: Tue, 30 Aug 2022 13:50:29 GMT
etag: "13e-5e775a9c4f340"
accept-ranges: bytes
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Authorization, apiKey
access-control-allow-origin: *
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
whos.amung.us/pingjs/?k=538fgcvmvj&t=&c=d&x=http%3A%2F%2F8facbaaf.dotests.com%2F&y=&a=0&v=27&r=895
172.67.8.141200 OK 48 B URL HTTP/1.1 whos.amung.us/pingjs/?k=538fgcvmvj&t=&c=d&x=http%3A%2F%2F8facbaaf.dotests.com%2F&y=&a=0&v=27&r=895
IP 172.67.8.141:0
File type ASCII text, with no line terminators
Hash 6b6dbe74781c0ebc3a87a6461fc051d4
e98bf507a2c9393b18d199abfd8b3749c7a2b485
aff127888cc8117031d3aacacb07408307dfe2f19f2d43731927712345a581ca
GET /pingjs/?k=538fgcvmvj&t=&c=d&x=http%3A%2F%2F8facbaaf.dotests.com%2F&y=&a=0&v=27&r=895 HTTP/1.1
Host: whos.amung.us
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 22:03:36 GMT
Content-Type: text/javascript;charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
content-encoding: gzip
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7451c6c2fb58b51e-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 61491caa28f947ac73bf8e63dabd8744
2eccb029db27b36d822c4348680e1c4ce9d0733c
52077898472340568519d102c09faa8af4c28c68431b2c4fd666c8069169e2dd
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 22:03:36 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 31 Aug 2022 17:56:50 GMT
Expires: Wed, 07 Sep 2022 17:56:49 GMT
Etag: "2eccb029db27b36d822c4348680e1c4ce9d0733c"
Cache-Control: max-age=330192,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7451c6c28911b517-OSL
ocsp.sectigo.com/
104.18.32.68200 OK 472 B IP 104.18.32.68:0
Hash 98dc9d9ca4736261a5c0b56fc4a27ae1
89d6afa81301146b63f919e7eb0077a701358ad3
d59072793f80820e66befb7a32ab2cd84cc42075741c5f9533588ea7b8c5564d
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Sat, 03 Sep 2022 22:03:37 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 02 Sep 2022 10:58:56 GMT
Expires: Fri, 09 Sep 2022 10:58:55 GMT
Etag: "89d6afa81301146b63f919e7eb0077a701358ad3"
Cache-Control: max-age=477918,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7451c6c30c041bfe-OSL
push.services.mozilla.com/
44.236.232.139101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.236.232.139:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: kBHS+lny666NjIiolwU1Pg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: egTO/Mr8U3ji7JkgQX0PrNsHMtU=
scripts.assets-landingi.com/webview/webview.1.0.2.js
104.21.83.18200 OK 2.8 kB URL HTTP/2 scripts.assets-landingi.com/webview/webview.1.0.2.js
IP 104.21.83.18:0
File type ASCII text, with very long lines (818)
Hash 97d9ee09a76eaefd76a2cbc2ad931f84
c69963ecc2063adaa29467280712a5fac528ee63
2cbaabd545a19b84de6717f2d23d27aa7f34bcc0220102ac233378d72852142c
GET /webview/webview.1.0.2.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6029
etag: W/"bb7f80f96bd0efced0c1d4b05c843206"
last-modified: Thu, 04 Nov 2021 13:19:36 GMT
x-amz-id-2: TEuQIBj3xlsuyx9IGQKWdjLZLgTpcNhQV26y0KT1bjJJZEB/NWt3OCaXGufr5ZG5TX1VVbM7ZS4=
x-amz-request-id: B0M17WH85F3M2059
x-amz-version-id: 6Zsd0gNXfIKXod7Bm5xr70f_sZJbDeRp
cache-control: max-age=31536000
cf-cache-status: HIT
age: 812
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ncYteGmKGh3PGOkIhJCS0%2Fc7O94j%2BfMw2%2BJ2Y7WgFt6WaNuzVpyEYs%2Bgafwm2Fpkn3OTMkAl3zjr97Amn4xVl9qilXxubAXpFcmYNEOc%2BVtFOheI17CaOBXey2vIqE8OyV2MYFtcuE%2BQx%2Bh8vZQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bf8d8bb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
t.dtscout.com/pv/?_a=v&_h=8facbaaf.dotests.com&_ss=4k2gm493kc&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=73sr&_cb=_dtspv.c
51.161.15.93200 OK 51 B URL HTTP/1.1 t.dtscout.com/pv/?_a=v&_h=8facbaaf.dotests.com&_ss=4k2gm493kc&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=73sr&_cb=_dtspv.c
IP 51.161.15.93:0
File type ASCII text, with no line terminators
Hash ffe8659b3ba25187296cd3474a063d26
6d466878b0a9a9aa4b181de28702045a5de82f45
0328abfb71c66c6522586dcbc625acc5f7004a82400d9ee9a8517fab20e46c89
GET /pv/?_a=v&_h=8facbaaf.dotests.com&_ss=4k2gm493kc&_pv=1&_ls=0&_u1=1&_u3=1&_cc=no&_pl=d&_cbid=73sr&_cb=_dtspv.c HTTP/1.1
Host: t.dtscout.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Cookie: m=1; oa=1; df=1662242616
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Server: nginx/1.14.0 (Ubuntu)
Date: Sat, 03 Sep 2022 22:03:37 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: close
X-T: 0.223
X-C: 0
Expires: Sat, 03 Sep 2022 22:03:36 GMT
Cache-Control: no-cache
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:37 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
de.tynt.com/deb/v2?id=w!538fgcvmvj&dn=TC&cc=1&r=
67.202.105.32200 OK 4 B URL HTTP/2 de.tynt.com/deb/v2?id=w!538fgcvmvj&dn=TC&cc=1&r=
IP 67.202.105.32:0
File type ASCII text, with no line terminators
Hash 350fd6ef6446635f7a8f608434a405ec
a4b6c275ac2c80ec925b5c0c5c6abb79ba897356
d21021784cda31eeae5c8295e047a14bda6ed5a9b5963fca9e7ceb398a9c9179
GET /deb/v2?id=w!538fgcvmvj&dn=TC&cc=1&r= HTTP/1.1
Host: de.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=86400
expires: Sun, 04 Sep 2022 22:03:37 GMT
accept-ch: Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version
content-type: application/javascript
content-length: 4
date: Sat, 03 Sep 2022 22:03:37 GMT
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:37 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0&t=8facbaaf.dotests.com HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4006
Expires: Sat, 03 Sep 2022 23:10:24 GMT
Date: Sat, 03 Sep 2022 22:03:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4006
Expires: Sat, 03 Sep 2022 23:10:24 GMT
Date: Sat, 03 Sep 2022 22:03:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4006
Expires: Sat, 03 Sep 2022 23:10:24 GMT
Date: Sat, 03 Sep 2022 22:03:38 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4006
Expires: Sat, 03 Sep 2022 23:10:24 GMT
Date: Sat, 03 Sep 2022 22:03:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c1e7f6c9e17585905fdbe9ae4da50b
67192f5be476ac4dada66dc9fbe26469d62e2d78
21ca880b36bbb7791f8df2bf9830f11a960692123dd6dde5be42bda004dc428b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe8cc83cf-4aef-486b-b775-ed3cb57c8e2a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9642
x-amzn-requestid: 52c698d7-6419-4614-9c53-68a265266337
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjbEvgoAMFkKA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63112615-547a72850cce71da013383f5;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oVfkruFcbhPNTkqfmxD_WTeDE8aTAT8Vg3fI3IFZm9umunJ8pCE1GQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 16:18:02 GMT
age: 20736
etag: "67192f5be476ac4dada66dc9fbe26469d62e2d78"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4006
Expires: Sat, 03 Sep 2022 23:10:24 GMT
Date: Sat, 03 Sep 2022 22:03:38 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
34.120.237.76200 OK 5.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60769237af4f32c663d494d91a672d08
31305131f340191799484f212e15513bd1204e88
6df36e459f3a2d0271732b645009b116e6671363f6c3050d22bbfe2d911a77bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7e53e5b7-d429-4f33-bd77-ce946421df55.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4994
x-amzn-requestid: de39357f-d378-4bb8-b4d9-7dd4f82fbb58
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgj-kEHvoAMFyBA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309b390-119fa01e254e89cb39a1b794;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 06:02:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 1yjBt3dqEztIRHo4yR3ZzI67J4lWUMS8R44-PpkeDJ4KNdCTPkmh-w==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 04:45:35 GMT
age: 62283
etag: "31305131f340191799484f212e15513bd1204e88"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 65344
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 23b580e2b673257d24b9c2e80c4c48ce
f3a3d835a37f9b23e7458f9b7bc721bc415b61cc
c0e3559fde3dd08cdbd360f39dddcc98dd7c1b3aebd0861cc07105872a116d11
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7d7b349-4711-4e66-bc42-888934e385a2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7501
x-amzn-requestid: bf297fc4-9164-45ee-bfab-06761a52e3ba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eMJEP1IAMFdpA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6312771a-6b3e6416133d67a83d8a1469;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:22 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 3Hp2qAqOgqJnr8Y5SVKO8vj7hz8xbgNPKMah5k30jK7L5abseEl_Qg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:02:35 GMT
age: 63
etag: "f3a3d835a37f9b23e7458f9b7bc721bc415b61cc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c199f7fc2a2857dec134bfdb2673e28c
af3989072b658e2de119d006ae4ca1703468913d
e57411ba0221f6ffa7baf7c374ec790959a66d6a683fad40883ef01cf67e35c3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc55d0c73-4085-42ac-acb4-1ae9b2ffb393.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6976
x-amzn-requestid: da379546-9525-4e13-b9f0-a6446839df66
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X2eNeG7kIAMF4-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63127722-37399f67565b06e7111095cd;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 21:35:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5SORUPJgJ_gKKs4hSa4EzCCQA6B1dmyO1EC-gCBvFKl2R2hV0mYTeA==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:39:01 GMT
age: 84277
etag: "af3989072b658e2de119d006ae4ca1703468913d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 955f2a35bd6b3802670e7fa8a7cda833
4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c
2fb517039f0704d2f6fe2fa78eae47c71c645add1c2276f8726248184ae45760
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7c0ef483-e545-4a1f-b9b9-88778330d881.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 22:03:38 GMT
content-type: image/jpeg
content-length: 10435
x-amzn-requestid: 813ec4ca-243d-46cb-a6a6-8ec58e5dd9f8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XzLjdHwnIAMFhzA=
x-content-type-options: nosniff
etag: "4c70d27f7c51b7fcae1d8a883bfc2e67a551ae6c"
x-amzn-trace-id: Root=1-63112615-4733cfb83cf0e8734abc5716;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: GHd4FOjIO1OP7wSOVcnOryE5ux4hlr_kC0dfJs3LqgQUbxMzuFxc1A==
age: 179
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
67.202.105.32204 No Content 0 B URL HTTP/2 ic.tynt.com/b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0
IP 67.202.105.32:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /b/p?id=w!538fgcvmvj&lm=0&ts=1662242614542&dn=TC&iso=0 HTTP/1.1
Host: ic.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
server: nginx/1.16.1
date: Sat, 03 Sep 2022 22:03:38 GMT
cache-control: "no-store, no-cache, must-revalidate, post-check=0, pre-check=0, false"
expires: "Sat, 26 Jul 1997 05:00:00 GMT"
p3p: CP="NOI DSP COR NID PSA PSD OUR IND UNI COM NAV INT DEM STA"
X-Firefox-Spdy: h2
old.assets-landingi.com/bootstrap/js/landend.bootstrap.min.js
104.21.83.18200 OK 0 B URL HTTP/2 old.assets-landingi.com/bootstrap/js/landend.bootstrap.min.js
IP 104.21.83.18:0
GET /bootstrap/js/landend.bootstrap.min.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/x-javascript
x-amz-id-2: wy3xl143GQj086zVxhM3OCnEnkQHVKdvrA86uEVZR77Z9D9TqXegFKWjJnWLCiD/uq2kj7f4cAI=
x-amz-request-id: A1RZWJEK9XDYVM49
last-modified: Mon, 04 Jul 2016 09:10:55 GMT
etag: W/"caae3dfb363221461dc59ab8dca8497b"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 562
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=VlsaGXlo%2BkAbvQCTHTM70S3%2Feh41LnK8wbuPRLi3w8LwRYco0EKt%2Bd%2Bzi%2Fa%2FVrmbOtgZrFrKDgK05f2T8Z1rD2wxP82ghEL2XMNZgTuCmDnuWjkZ8Vl1i1OONlssArBCIzy26r47xKfGQw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bf9ff8b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/landend/290622/landend.min.js
104.21.83.18200 OK 0 B URL HTTP/2 scripts.assets-landingi.com/landend/290622/landend.min.js
IP 104.21.83.18:0
GET /landend/290622/landend.min.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
x-amz-id-2: aOkRn281gjb8mDaBU8gcfdaPf+MGU6AHeMPvKFA/oz67qrXWKQwWKWFOOFl+y6Hzr09pfnIcaCI=
x-amz-request-id: 7P04FQT4QF6F9RX4
last-modified: Wed, 29 Jun 2022 08:00:49 GMT
etag: W/"0247ac78ea1c88c321a4ad5b87ef70cd"
x-amz-version-id: rLuZANJIEjQT5pWBAhExvW4O7baa3e0b
cache-control: max-age=31536000
cf-cache-status: HIT
age: 2316
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0ozYQad50cEn7flhl3lsVnJ9e4cSzcWriqa1Q1hajKpYppRkIA0ozuoEaOTuahROc6hkg8Q8xTelEgrbWO4FCOT88QxOIKY%2BugYLnYZoirGihHNYTBIgJFGmrPwXMlydrqnpXSOHzfff5CN9zQQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bfadb4b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/shopify/27072020/iframe.js
104.21.83.18200 OK 0 B URL HTTP/2 scripts.assets-landingi.com/shopify/27072020/iframe.js
IP 104.21.83.18:0
GET /shopify/27072020/iframe.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1467
etag: W/"6a20dacafdc1e33442ba9d93214f3f9c"
last-modified: Mon, 28 Sep 2020 06:02:21 GMT
x-amz-id-2: ep2h2DYlNSsUwkuFP80tTahadrGgUOkM/FNtz0ctXbC/NSwHsZjUgzGUBAxCgALWyjCAGMB2920=
x-amz-request-id: ZPSM7PC7QQZTYTJQ
x-amz-version-id: 9Dr8ihO9o.XHUkhjF5MfrF9jlbERTXGZ
cache-control: max-age=31536000
cf-cache-status: HIT
age: 3600
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gqXoi4cgcLysuMh7hHivBXAJDIMgg%2B7s5QWas9wInv4zDI4Agn03DEfFKeTQtsgEwzMraamlHqYveg5Q6i9odNKSF0%2Bd5LfadiWYZ8BWcS4%2BrR15bG4J8ljae0%2FOHjOsUyJdNzqm75udm9wpzY4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bfadb1b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/dist/landend/031121/landend.js
104.21.83.18200 OK 0 B URL HTTP/2 old.assets-landingi.com/assets/js/dist/landend/031121/landend.js
IP 104.21.83.18:0
GET /assets/js/dist/landend/031121/landend.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"faa83809714802fc54ed4fcc02032706"
last-modified: Wed, 03 Nov 2021 09:19:23 GMT
x-amz-id-2: z+mCSTUsijkNXsA0wqLwGjeiCPmAUSpWDOvqYq1A9TikCqkyp1CYf744iEMJqU1kPr/YoSQl/c0=
x-amz-request-id: GCN307QPWN89PRNY
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5373
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3leR%2FtQN8jYCs9V5u67zYC7%2FzTMGaZ2gaM2qqlnVgYPk%2BYEJ9r1MpEIt%2FNAibsfiW4ke6iSAJv9tNge9yKFYp08Dwc4WkB92GAja%2Fau75wmZkWg9bztkL5Fiw2O38aIMx0xDRrAOJpSnyg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bfa821b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/lightboxes/lightbox-render.js?v=1662242615
104.21.83.18200 OK 0 B URL HTTP/2 scripts.assets-landingi.com/lightboxes/lightbox-render.js?v=1662242615
IP 104.21.83.18:0
GET /lightboxes/lightbox-render.js?v=1662242615 HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
x-amz-id-2: ct0swk/nG2ESDRTouXitTpcnDe7adcsM06pbhYk+4T3m9M4sB9GX0gHnGCdXYBlB+zGMIAjXzP8=
x-amz-request-id: R9DDV4H8S1VRTSR2
last-modified: Fri, 29 Apr 2022 10:02:51 GMT
etag: W/"70b26270c2f22dbc95c6730900e8abfb"
x-amz-version-id: Oak5hz6YYqhfs8hnGsp4gGxs7A8poW2I
cache-control: max-age=31536000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jIG1hVAke2Ocoama4Jb5ToOBCzfdkVXeAZhgm7veFVQDCVXwQQvdGazchWLxis00YO18N2NWuP1J9pmk63NqT9NCXMi38zCwxyBjS2GNhhXIPprAosFd6RYdnJOoR0iKyfnG7vE9e%2BqBiWaL3GQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bfadabb4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
styles.assets-landingi.com/assets/css/2.14-landend-base.css
104.21.83.18200 OK 0 B URL HTTP/2 styles.assets-landingi.com/assets/css/2.14-landend-base.css
IP 104.21.83.18:0
GET /assets/css/2.14-landend-base.css HTTP/1.1
Host: styles.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=72731
etag: W/"4bd6c0093cdc4a30726bdd4061b1b55c"
last-modified: Wed, 20 Oct 2021 12:28:03 GMT
x-amz-id-2: 98ki4IKAxTv1u8P0EbmJvE0bhlKmPYINZRBdtHhRqu/E2SN8IETZMkZYvB3cu2usC9Uwu1/Dn6E=
x-amz-request-id: X2R3BMXWSW2GTF84
cache-control: max-age=31536000
cf-cache-status: HIT
age: 1566
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=OFp%2F%2BFQLq67MzKWKxxg%2BlGjNyr3Is41W9hg29yXF8pMAlyeAbT4WCvS5MBHkOBWteZYouhnmDAYMggOg1qXoctD7ufZesybiBgm8%2Fm15cqnBBDl5dQUGXODL9dfCwdZpk1tm7a2OpCCBEAzoQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bf2d20b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
adons.online/vendor/?user=general&ch=151y70fcksn4000000000&principal=
66.29.146.175200 OK 0 B URL HTTP/2 adons.online/vendor/?user=general&ch=151y70fcksn4000000000&principal=
IP 66.29.146.175:0
GET /vendor/?user=general&ch=151y70fcksn4000000000&principal= HTTP/1.1
Host: adons.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-powered-by: PHP/7.2.34
content-type: application/javascript
cache-control: public, max-age=604800
expires: Sat, 10 Sep 2022 22:03:37 GMT
content-encoding: br
vary: Accept-Encoding
date: Sat, 03 Sep 2022 22:03:37 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/landend/260820/validation.js
104.21.83.18200 OK 0 B URL HTTP/2 old.assets-landingi.com/assets/js/landend/260820/validation.js
IP 104.21.83.18:0
GET /assets/js/landend/260820/validation.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"04525baaa773e84bc814af97fe0a0798"
last-modified: Wed, 26 Aug 2020 09:55:21 GMT
x-amz-id-2: 17V8tSiixwuP6RKKZW+NP4k3UmHKuETctaSSPcLL15rcVAWfpQuVR/R5HQE7peq12bHC8Lg0q24=
x-amz-request-id: ZPSH8P7YRMA1KZRG
cache-control: max-age=31536000
cf-cache-status: HIT
age: 4867
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5KXkuAAjYpKhvh2EJZUxGc7%2FfUZw%2FNvGZo6fUuqK4Lgc%2Bqw7KsuOWCbHTYNqtub2AqtfdFL7W1GJfdfFVW5GaPAQcpW%2B6DqviKmoXfCUa2WOwRPUHyUGCPHy2XFwZpi1eOc3Hu%2BS8yeiYQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bfb829b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stats.landingi.com/track/1372166
63.33.97.132200 OK 0 B URL HTTP/2 stats.landingi.com/track/1372166
IP 63.33.97.132:0
GET /track/1372166 HTTP/1.1
Host: stats.landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/json
server: nginx
x-powered-by: PHP/7.4.11
cache-control: no-cache, private
set-cookie: ls_uid=7e967791; expires=Fri, 30-Sep-2022 23:59:59 GMT; Max-Age=2339783; path=/; secure; httponly; samesite=none
ls_sid_1372166=7e967791; expires=Sat, 03-Sep-2022 22:33:36 GMT; Max-Age=1800; path=/; secure; httponly; samesite=none
X-Firefox-Spdy: h2
cdn.tynt.com/tc.js
172.64.151.83200 OK 0 B IP 172.64.151.83:0
GET /tc.js HTTP/1.1
Host: cdn.tynt.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:37 GMT
content-type: application/javascript
last-modified: Thu, 21 Jul 2022 14:57:10 GMT
vary: Accept-Encoding
etag: W/"62d96946-4599"
content-encoding: gzip
cf-cache-status: HIT
age: 197449
expires: Tue, 06 Sep 2022 22:03:37 GMT
cache-control: public, max-age=259200
server: cloudflare
cf-ray: 7451c6c5db7ab511-OSL
X-Firefox-Spdy: h2
lightboxes.landingi.com/api/v1/render?apikey=9f6a432b-1f78-4f01-b9b0-f1fe1859a8b4&landing_id=1372166
108.128.65.57200 OK 0 B URL HTTP/2 lightboxes.landingi.com/api/v1/render?apikey=9f6a432b-1f78-4f01-b9b0-f1fe1859a8b4&landing_id=1372166
IP 108.128.65.57:0
GET /api/v1/render?apikey=9f6a432b-1f78-4f01-b9b0-f1fe1859a8b4&landing_id=1372166 HTTP/1.1
Host: lightboxes.landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://8facbaaf.dotests.com
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:39 GMT
content-type: application/json
server: nginx
x-powered-by: PHP/7.4.3
access-control-allow-origin: *
cache-control: no-cache, private
X-Firefox-Spdy: h2
old.assets-landingi.com/assets/js/vendor/jquery-form/jquery.form.min.js
104.21.83.18200 OK 0 B URL HTTP/2 old.assets-landingi.com/assets/js/vendor/jquery-form/jquery.form.min.js
IP 104.21.83.18:0
GET /assets/js/vendor/jquery-form/jquery.form.min.js HTTP/1.1
Host: old.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
x-amz-id-2: hK3QT9V3p7RMqitNxtHdXL1tYJnPIfSp3SwJ/C5npCl8tjGSs2HFqZg4PRpVSFZ4V91gPz3x6Qs=
x-amz-request-id: SJE3X6VPNJB8ZG6R
last-modified: Tue, 19 Dec 2017 12:43:57 GMT
etag: W/"9e3333ab37cbd7849dc647669aa0ca12"
cache-control: max-age=31536000
cf-cache-status: HIT
age: 6046
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3%2BTMMipd7wrwd%2BfqIWcf0Pr9NKUW9c9gHsp5fIjgkQywMwD4%2BDSRPqDmwqrOYa8eJVYywR6653oGSjPsFlL5S4OXHwth%2Fy%2Buq3X0GLi2WGK9OJw14PGLFflAaL9dAl0ztIhqzWiIZ9HMJQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bf7fb8b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
scripts.assets-landingi.com/landend/160721/files.js
104.21.83.18200 OK 0 B URL HTTP/2 scripts.assets-landingi.com/landend/160721/files.js
IP 104.21.83.18:0
GET /landend/160721/files.js HTTP/1.1
Host: scripts.assets-landingi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://8facbaaf.dotests.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 03 Sep 2022 22:03:36 GMT
content-type: application/javascript
cf-bgj: minify
etag: W/"e48522cea4e18d818a7222d782aa9932"
last-modified: Fri, 16 Jul 2021 09:36:11 GMT
x-amz-id-2: jakebnAnb0WUTkD20dNrNjqB/qc5yvrHTLeyvfsz6dh1pY9OpDGLh9vjn5B45cmT0DJ5YnqyRac=
x-amz-request-id: 9J43NAT0Y98JRS2H
x-amz-version-id: 5RfD6jWYtaqjAriJk5H8sq5paP.4RgmJ
cache-control: max-age=31536000
cf-cache-status: HIT
age: 5422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=gMgOty8tQRX2P6PyHOVIzV0cq4PdNl4YhhLGW6RDMmDWr787XDXcD24N59L6SDS%2Bc2NHO8da64rIoiiggYvfLVmHjTUlNoS4Nv73q05fw0gEBufKjmGJDd8jbltSCrZs5p%2FVZUO3fMjEotx4URU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 7451c6bf9d97b4ff-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2