firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 27 Sep 2022 22:03:39 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 6480520a5e02f3163410e3134bd77baa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: CgFLOkY4744V4IJ9AjD1k4VxRbl1wUv0ZZKIH7tcmTkfbjjHCPPTtA==
Age: 2128
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash d2560f62890e75b8de444fed96c22f52
334ce0c48e606ee029f31eeb1463af87b1024bb9
4397e6b45b5822fbab9b83abe0b96ee70efba7cd2160b51936159865ede5fdb1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4397E6B45B5822FBAB9B83ABE0B96EE70EFBA7CD2160B51936159865EDE5FDB1"
Last-Modified: Sun, 25 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2366
Expires: Tue, 27 Sep 2022 23:18:33 GMT
Date: Tue, 27 Sep 2022 22:39:07 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 27 Sep 2022 09:24:14 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 6a757ab2991da716151f94ca00b38098.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hxPvOMtKf7sBnr2it8N8mAwZn9HazkXrHO8q8zAG9Zb3MhMPHosXwA==
age: 47694
X-Firefox-Spdy: h2
amphibological-coug.000webhostapp.com/
145.14.144.166200 OK 8.0 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (23378)
Hash f06c462c12c2d8def7e801238b789fd5
5cb89e2620d642266cdd537086d8b4bd8c65910d
440f57632c26916c1dbb184a60e4cb20d462a5a07e31eefe7ce01bc584bb3f2f
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET / HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Tue, 27 Sep 2022 22:39:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 270a8402e09e535e53ff17fd1908397d
Content-Encoding: gzip
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 27 Sep 2022 22:39:07 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6625
Cache-Control: max-age=99036
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:07 GMT
Etag: "63324186-1d7"
Expires: Thu, 29 Sep 2022 02:09:43 GMT
Last-Modified: Tue, 27 Sep 2022 00:19:18 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1304
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:07 GMT
Last-Modified: Tue, 27 Sep 2022 22:17:23 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3330
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:07 GMT
Last-Modified: Tue, 27 Sep 2022 21:43:37 GMT
Server: ECS (ska/F70C)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3979
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:07 GMT
Last-Modified: Tue, 27 Sep 2022 21:32:49 GMT
Server: ECS (ska/F716)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash b851dbca60b0b9a4b1e8e9b6f29a6936
116ac4fa33d24267ac90741194cac6a474c6ab26
0e8d8ccd1dbd8d54d9f62c00a4359957de5956a6aa7ed4b19c6d7ba6da2f4625
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3346
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:07 GMT
Etag: "63324186-1d7"
Last-Modified: Tue, 27 Sep 2022 21:43:21 GMT
Server: ECS (amb/6BB2)
X-Cache: HIT
Content-Length: 471
www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js
192.229.221.25200 OK 6.7 kB URL HTTP/2 www.paypalobjects.com/webcaptcha/ngrlCaptcha.min.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (22848), with no line terminators
Hash dbbc4ada6d57936a2a6055d10f70b778
abb2b0ea2f77b8d14b8343f1bd8b829a84e71f07
69b0687c1489cf8302bfef3e3d7ee5697077780467a778dc680700d096e9780d
GET /webcaptcha/ngrlCaptcha.min.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Tue, 27 Sep 2022 22:39:07 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "624d6980-5940"
expires: Tue, 27 Sep 2022 23:39:07 GMT
last-modified: Wed, 06 Apr 2022 10:20:48 GMT
paypal-debug-id: acc8c66bfdd3e
server: ECAcc (ska/F69F)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 6711
X-Firefox-Spdy: h2
www.paypalobjects.com/images/shared/icon-PN-check.png
192.229.221.25200 OK 2.2 kB URL HTTP/2 www.paypalobjects.com/images/shared/icon-PN-check.png
IP 192.229.221.25:0
File type PNG image data, 121 x 133, 8-bit/color RGBA, non-interlaced\012- data
Hash ec06d032b1e2fa682c8ef3497bf982d2
06b4d2a83aed4b365140147985c2f12d3457ee61
4a77d272b8cf508cc4a7e0da5763faa9958e42a5554fdb5d29fc3be51d685653
GET /images/shared/icon-PN-check.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Tue, 27 Sep 2022 22:39:07 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271b47-8bc"
expires: Tue, 27 Sep 2022 23:39:07 GMT
last-modified: Sat, 13 Feb 2021 00:20:23 GMT
paypal-debug-id: 42e2a8b8a39ff
server: ECAcc (ska/F762)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 2236
X-Firefox-Spdy: h2
www.paypalobjects.com/images/shared/glyph_alert_critical_big-2x.png
192.229.221.25200 OK 5.8 kB URL HTTP/2 www.paypalobjects.com/images/shared/glyph_alert_critical_big-2x.png
IP 192.229.221.25:0
File type PNG image data, 224 x 200, 8-bit/color RGBA, non-interlaced\012- data
Hash 6a0fb0e8e8a895eeb013429819d1807d
37d6b16548d41dbde47c3d2a089efa69481d900e
13e4806e5c517e074ab1ea26fe0f2b7b87eaa3988006f35ed0bd4c89502d0d79
GET /images/shared/glyph_alert_critical_big-2x.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Tue, 27 Sep 2022 22:39:07 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "54130c54-16c4"
expires: Tue, 27 Sep 2022 23:39:07 GMT
last-modified: Fri, 12 Sep 2014 15:08:04 GMT
paypal-debug-id: d1e8f59f24b7
server: ECAcc (ska/F770)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 5828
X-Firefox-Spdy: h2
www.paypalobjects.com/pa/js/min/pa.js
192.229.221.25200 OK 22 kB URL HTTP/2 www.paypalobjects.com/pa/js/min/pa.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (56537)
Hash 035c129f0b87fb076d4d70a5116d099e
f300cca8a79314d55c1fad7453acac84a58fca5e
40933a9189556d305d5cbf36fb47170229696a744860a4ee02eeadb4c4929bd9
GET /pa/js/min/pa.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Tue, 27 Sep 2022 22:39:07 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "63225d02-dcf5"
expires: Tue, 27 Sep 2022 23:39:07 GMT
last-modified: Wed, 14 Sep 2022 23:00:18 GMT
paypal-debug-id: 5ace1b323811f
server: ECAcc (ska/F77F)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-00000000000000000005ace1b323811f-e2a13ff7de4caa4c-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 21560
X-Firefox-Spdy: h2
amphibological-coug.000webhostapp.com/auth/createchallenge/b9200c76eefbc202/recaptchav3.js?_sessionID=dZTrT3-Py4J_Piw4icmkdzf0qqTio7jL
145.14.144.166404 Not Found 3.8 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/auth/createchallenge/b9200c76eefbc202/recaptchav3.js?_sessionID=dZTrT3-Py4J_Piw4icmkdzf0qqTio7jL
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1013)
Hash 85fa2b5bc47386c912b95d9b1435a1ab
e999e99aa098474bbd3fcb5b59cdff5f9abc77d1
a7f4bfc15f6871a673820308d17646daaff330ba307b24b9e4e979fe61082df3
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET /auth/createchallenge/b9200c76eefbc202/recaptchav3.js?_sessionID=dZTrT3-Py4J_Piw4icmkdzf0qqTio7jL HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:07 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 288a274f7d22f253f7d940d2207ff206
Content-Encoding: gzip
www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/js/signin-split.js
192.229.221.25200 OK 45 kB URL HTTP/2 www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/js/signin-split.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 600df8439fb4ca9a4e756eeba704dfde
a86a952e5ff44a417ee1912a45129c678ee940d5
808c79b2ecfc494e246e36548fe1426c3d792a87fb569a82eabd636b578a44a9
GET /web/res/6a5/ed626eab3099285729c6c3313a8e0/js/signin-split.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=31536000, s-maxage=31536000
content-type: application/javascript
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"62bdfdad-2e120"
expires: Wed, 27 Sep 2023 22:39:07 GMT
last-modified: Thu, 30 Jun 2022 19:46:53 GMT
paypal-debug-id: 67dc960bdc3e4
server: ECAcc (daa/7D57)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000067dc960bdc3e4-6c0683adf18b6228-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 44999
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Tue, 27 Sep 2022 22:10:46 GMT
Cache-Control: max-age=3600, max-age=3600
Expires: Tue, 27 Sep 2022 23:08:53 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 6PX4damQDE93hCU-eAjKxUuwwaiQgGBswjZTuEmkFBnfQVtuFyDmqA==
Age: 1702
www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/js/lib/fn-sync-telemetry-min.js
192.229.221.25200 OK 2.3 kB URL HTTP/2 www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/js/lib/fn-sync-telemetry-min.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (5534), with no line terminators
Hash 400c935a429f070148fc6d3993296efa
e5554c8227f385f3207a16326f9f8fd678d41c75
e077fe0b1b504e91b3cc5ed69d60f3ad1a327d59dd173eb3aee9d4911d2c3d3f
GET /web/res/6a5/ed626eab3099285729c6c3313a8e0/js/lib/fn-sync-telemetry-min.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=31536000, s-maxage=31536000
content-type: application/javascript
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"62bdfdad-159e"
expires: Wed, 27 Sep 2023 22:39:08 GMT
last-modified: Thu, 30 Jun 2022 19:46:53 GMT
paypal-debug-id: 28a774a29a306
server: ECAcc (daa/7C87)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-000000000000000000028a774a29a306-82519abbf20c6ff1-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 2303
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash c18823050f86339eaa73ddb1bf80d64c
ac4ee81f59f706cee8a74458d498bbc20d8d351a
9a505647517bd02d8ff994fd4ad98dc2f4b519916145b0c327691420c1084c46
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4242
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:08 GMT
Last-Modified: Tue, 27 Sep 2022 21:28:26 GMT
Server: ECS (ska/F712)
X-Cache: HIT
Content-Length: 471
www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/css/contextualLoginElementalUI.css
192.229.221.25200 OK 22 kB URL HTTP/2 www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/css/contextualLoginElementalUI.css
IP 192.229.221.25:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash b6ea5f6c770d6f8d7c182d888da5dd53
572e83c93605625c4192412fd4f587db9156e59f
8fd50c7018a3046c7be9560e1a24b90e840a5d024bcc00ab7ab8fe8272cfcfbe
GET /web/res/6a5/ed626eab3099285729c6c3313a8e0/css/contextualLoginElementalUI.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=31536000, s-maxage=31536000
content-type: text/css
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"62bdfdac-1fd9e"
expires: Wed, 27 Sep 2023 22:39:08 GMT
last-modified: Thu, 30 Jun 2022 19:46:52 GMT
paypal-debug-id: 785a247a51170
server: ECAcc (daa/7D64)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000785a247a51170-2ee9a52cb179e7c6-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 21456
X-Firefox-Spdy: h2
www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/js/lib/modernizr-2.6.1.js
192.229.221.25200 OK 1.8 kB URL HTTP/2 www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/js/lib/modernizr-2.6.1.js
IP 192.229.221.25:0
File type HTML document, ASCII text, with very long lines (3807), with no line terminators
Hash 8ccfeaab41083bf23d23bbf8cf5c1d91
2c93343dfa49cd21e5fb95c952baca2a8355d113
43e849f50db968a0f8c8a881126b0885840238be79d42508d4000a31e19e1f4b
GET /web/res/6a5/ed626eab3099285729c6c3313a8e0/js/lib/modernizr-2.6.1.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: max-age=31536000, s-maxage=31536000
content-type: application/javascript
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"62bdfdad-edf"
expires: Wed, 27 Sep 2023 22:39:08 GMT
last-modified: Thu, 30 Jun 2022 19:46:53 GMT
paypal-debug-id: f445cf6435592
server: ECAcc (daa/7D10)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000f445cf6435592-a701f6ba784fd801-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1788
X-Firefox-Spdy: h2
www.paypalobjects.com/images/shared/momgram@2x.png
192.229.221.25200 OK 2.0 kB URL HTTP/2 www.paypalobjects.com/images/shared/momgram@2x.png
IP 192.229.221.25:0
File type PNG image data, 60 x 74, 8-bit/color RGBA, non-interlaced\012- data
Hash 826f1c66edc8d0b4a70f783874430db5
56b5e2629a384e8ad5fe2fd1d3bbbd9b516b4b0a
1c9dd1b0663ba2324632f0ffebb21112a92f039305241661c289c88af523cb1a
GET /images/shared/momgram@2x.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypalobjects.com/web/res/6a5/ed626eab3099285729c6c3313a8e0/css/contextualLoginElementalUI.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271b47-7cc"
expires: Tue, 27 Sep 2022 23:39:08 GMT
last-modified: Sat, 13 Feb 2021 00:20:23 GMT
paypal-debug-id: 8bd535ae83cc3
server: ECAcc (ska/F77F)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 1996
X-Firefox-Spdy: h2
www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Regular.woff2
192.229.221.25200 OK 25 kB URL HTTP/2 www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Regular.woff2
IP 192.229.221.25:0
File type Web Open Font Format (Version 2), CFF, length 25368, version 1.6553\012- data
Hash 186b9e5be0671c3c941a2a4966beb47a
0255bf2f48460eb212c93242740f5bef01e858c4
1f70ff447ed799a34f4c3ae37ef1f49ed4af71123ba2c2aefe354565354284be
GET /paypal-ui/fonts/PayPalSansBig-Regular.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-6318"
expires: Tue, 27 Sep 2022 23:39:08 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: 308109b4950df
server: ECAcc (ska/F744)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 25368
X-Firefox-Spdy: h2
www.paypalobjects.com/webstatic/mktg/2014design/font/PP-Sans/PayPalSansSmall-Regular.woff
192.229.221.25200 OK 47 kB URL HTTP/2 www.paypalobjects.com/webstatic/mktg/2014design/font/PP-Sans/PayPalSansSmall-Regular.woff
IP 192.229.221.25:0
File type Web Open Font Format, TrueType, length 47339, version 1.0\012- data
Hash 20f0f192de040edc17e47e61752e142f
713967babdefbc54dceacb052776c67527aada22
ae79dcc3eb016922caa1d095cfd936446bc65a46bb3364b242dfc556f7e3c6a8
GET /webstatic/mktg/2014design/font/PP-Sans/PayPalSansSmall-Regular.woff HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: font/woff
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "560b6e70-b8eb"
expires: Tue, 27 Sep 2022 23:39:08 GMT
last-modified: Wed, 30 Sep 2015 05:09:04 GMT
paypal-debug-id: a957130434936
server: ECAcc (ska/F6A4)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 47339
X-Firefox-Spdy: h2
www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Medium.woff2
192.229.221.25200 OK 18 kB URL HTTP/2 www.paypalobjects.com/paypal-ui/fonts/PayPalSansBig-Medium.woff2
IP 192.229.221.25:0
File type Web Open Font Format (Version 2), TrueType, length 18508, version 1.6553\012- data
Hash 57518c06c06d691bd2def8d51db1f1c2
dab349042885997d8d08db8dc38d0b4907635e2e
2ae6779c6c3579643ab6deb5cfb822e843bf637d006a4ec25d9857ec7fb6d8c1
GET /paypal-ui/fonts/PayPalSansBig-Medium.woff2 HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: https://www.paypalobjects.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/font-woff2
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "60271cda-484c"
expires: Tue, 27 Sep 2022 23:39:08 GMT
last-modified: Sat, 13 Feb 2021 00:27:06 GMT
paypal-debug-id: 7280f01f794f9
server: ECAcc (ska/F74B)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
x-cache: HIT
x-content-type-options: nosniff
content-length: 18508
X-Firefox-Spdy: h2
www.paypalobjects.com/webstatic/icon/pp64.png
192.229.221.25200 OK 4.5 kB URL HTTP/2 www.paypalobjects.com/webstatic/icon/pp64.png
IP 192.229.221.25:0
File type PNG image data, 64 x 64, 8-bit/color RGB, non-interlaced\012- data
Hash 5ff4fb77dc2ba5364283b18256b34e1a
37f8e1586e4a091d7a0a266842fd3a3d4e15c5aa
965b855f8212fb12dac35c751da64ae8c1a10ab93ac274c0f40c1d28d159ebce
GET /webstatic/icon/pp64.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "53611ccb-11a6"
expires: Tue, 27 Sep 2022 23:39:08 GMT
last-modified: Wed, 30 Apr 2014 15:54:51 GMT
paypal-debug-id: 7fbf1e9462c00
server: ECAcc (ska/F75E)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 4518
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico
192.229.221.25200 OK 1.4 kB URL HTTP/2 www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico
IP 192.229.221.25:0
File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data
Hash 455deaddcb9436734b2144429ae53ff7
e173c07062d5ea7d98da48a8973d7dd24969fe61
5c958cea39018dd9f80738db7d3a8c2f28a0d539e5d481b296daafea829897f2
GET /en_US/i/icon/pp_favicon_x.ico HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/x-icon
date: Tue, 27 Sep 2022 22:39:08 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5d5637bd-1536"
expires: Tue, 27 Sep 2022 23:39:08 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 317622c9654cb
server: ECAcc (ska/F6D8)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1431
X-Firefox-Spdy: h2
c.paypal.com/da/r/fb.js
151.101.193.35200 OK 20 kB IP 151.101.193.35:0
File type C source, ASCII text, with very long lines (58758), with no line terminators
Hash 234b5a0a6ae679e24e1e800c5ee27041
89cd42971e9dfcdc302ac360bce7f8e5034bbc75
b341cef0a6a711b115a65b4ff5c1b4357ac9689eca58f4c88dfcf0481a2b75d6
GET /da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
content-type: application/javascript
etag: W/"62f2c748-e586"
last-modified: Tue, 09 Aug 2022 20:44:56 GMT
paypal-debug-id: 7a368cc6692de
traceparent: 00-00000000000000000007a368cc6692de-855db9bc9b6fdf14-01
dc: ccg11-origin-www-1.paypal.com
via: 1.1 varnish, 1.1 varnish, 1.1 varnish
x-content-type-options: nosniff
accept-ranges: bytes
date: Tue, 27 Sep 2022 22:39:08 GMT
age: 4151407
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-sjc10042-SJC, cache-bma1678-BMA, cache-bma1639-BMA
x-cache: HIT, HIT, HIT
x-cache-hits: 1, 1, 69021
x-timer: S1664318349.671750,VS0,VE2
vary: Accept-Encoding
expires: Wed, 28 Sep 2022 22:39:08 GMT
cache-control: s-maxage=31536000, public,max-age=86400
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-allow-credentials: false
access-control-max-age: 86400
server-timing: content-encoding;desc="gzip",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 20053
X-Firefox-Spdy: h2
amphibological-coug.000webhostapp.com/signin/client-log
145.14.144.166404 Not Found 3.8 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/signin/client-log
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1013)
Hash 85fa2b5bc47386c912b95d9b1435a1ab
e999e99aa098474bbd3fcb5b59cdff5f9abc77d1
a7f4bfc15f6871a673820308d17646daaff330ba307b24b9e4e979fe61082df3
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
POST /signin/client-log HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
Content-Length: 1214
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 2e4a323c44364839a8929d99f6ed133f
Content-Encoding: gzip
amphibological-coug.000webhostapp.com/signin/client-log
145.14.144.166404 Not Found 3.8 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/signin/client-log
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1013)
Hash 85fa2b5bc47386c912b95d9b1435a1ab
e999e99aa098474bbd3fcb5b59cdff5f9abc77d1
a7f4bfc15f6871a673820308d17646daaff330ba307b24b9e4e979fe61082df3
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
POST /signin/client-log HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
Content-Length: 730
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 3c5d59687352fb873ffe5229e114ac20
Content-Encoding: gzip
push.services.mozilla.com/
54.70.239.215101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 54.70.239.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: E9tsNqeUpxoVCNthvLHFTg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qBfEcsFZAGSl+UAPuLp7X8Ec3hY=
amphibological-coug.000webhostapp.com/auth/createchallenge/d6b5212969aa6e3e/challenge.js
145.14.144.166404 Not Found 3.8 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/auth/createchallenge/d6b5212969aa6e3e/challenge.js
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (1013)
Hash 85fa2b5bc47386c912b95d9b1435a1ab
e999e99aa098474bbd3fcb5b59cdff5f9abc77d1
a7f4bfc15f6871a673820308d17646daaff330ba307b24b9e4e979fe61082df3
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET /auth/createchallenge/d6b5212969aa6e3e/challenge.js HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 33221d6b15333e303e5d35d45a6f012d
Content-Encoding: gzip
amphibological-coug.000webhostapp.com/signin/client-log
145.14.144.166404 Not Found 5.6 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/signin/client-log
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (5405)
Hash a2a0f625ec047fbbc19e74dd99d6c229
79a246dff5297b246dcaed99f74ba2234e2ab013
ac4a50ed3ecdab449090fe37d69221649c1820ddb353fca10fe4be76411e166f
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
POST /signin/client-log HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
Content-Length: 1217
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 9298e8610c309ae4f06f03447780ea72
Content-Encoding: gzip
amphibological-coug.000webhostapp.com/signin/load-resource
145.14.144.166404 Not Found 5.6 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/signin/load-resource
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (5405)
Hash a2a0f625ec047fbbc19e74dd99d6c229
79a246dff5297b246dcaed99f74ba2234e2ab013
ac4a50ed3ecdab449090fe37d69221649c1820ddb353fca10fe4be76411e166f
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
POST /signin/load-resource HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
Content-Length: 125
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: ebf78d74a7bd0776b0d751abb97c2921
Content-Encoding: gzip
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 95da7e0291835f6b963c05c6712e01c6
ec95e041a93335c9cb168a7b072dfdb37da16570
a805c97ddffa8dc40fce6cc46f50e414edc41cf7d113b6e0e54fe784d7019110
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2802
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 27 Sep 2022 22:39:08 GMT
Last-Modified: Tue, 27 Sep 2022 21:52:26 GMT
Server: ECS (ska/F6FC)
X-Cache: HIT
Content-Length: 471
b.stats.paypal.com/v1/counter.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE
64.4.245.84302 Found 0 B URL HTTP/1.1 b.stats.paypal.com/v1/counter.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE
IP 64.4.245.84:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/counter.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE HTTP/1.1
Host: b.stats.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Connection: close
Server: PayPal-B.Stats/1.0
Location: https://dub.stats.paypal.com/v1/counter2.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE
Content-Length: 0
Set-Cookie: c=c5a028aab3c4c9529da8; Domain=stats.paypal.com; expires=Mon, 22 Sep 2042 22:39:08 GMT; Path=/
Content-Type: application/octet-stream
Date: Tue, 27 Sep 2022 22:39:08 GMT
c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
151.101.193.35200 OK 149 B URL HTTP/2 c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
IP 151.101.193.35:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3e7bf609e5fb0ff1f33d97fb3816e286
eca827e429a89cbe927689c26e9ef73734e00a0e
cfe079d6fe9faae81a78f62296ecc7a4cb12a28fa99f1bed6ea4c6d8ea194df3
GET /v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Platform, Sec-CH-UA
correlation-id: 34e66a98a4837
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-security-policy-report-only: default-src 'self' https://*.paypal.com https://*.paypalobjects.com; script-src 'self' https://*.paypal.com https://*.paypalobjects.com https://*.paypalinc.com https://www.facebook.com 'unsafe-eval' 'unsafe-inline' blob:; connect-src 'self' https://*.paypal.com; style-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; font-src 'self' https://*.paypal.com https://*.paypalobjects.com data:; img-src 'self' https: data:; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; object-src 'self' https://*.paypal.com https://*.paypalobjects.com; report-uri https://www.paypal.com/csplog/api/log/csp
content-type: text/html;charset=UTF-8
paypal-debug-id: 34e66a98a4837
traceparent: 00-000000000000000000034e66a98a4837-5a3270c0b5a03e12-01
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
accept-ranges: none
via: 1.1 varnish, 1.1 varnish
content-encoding: br
date: Tue, 27 Sep 2022 22:39:08 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn4040-HHN, cache-bma1639-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664318349.750722,VS0,VE187
vary: Accept-Encoding
server-timing: content-encoding;desc="br",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
amphibological-coug.000webhostapp.com/signin/load-resource
145.14.144.166404 Not Found 5.6 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/signin/load-resource
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (5405)
Hash a2a0f625ec047fbbc19e74dd99d6c229
79a246dff5297b246dcaed99f74ba2234e2ab013
ac4a50ed3ecdab449090fe37d69221649c1820ddb353fca10fe4be76411e166f
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
POST /signin/load-resource HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
Content-Length: 125
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: 992fd16c8cc6df2caac8195641409f3a
Content-Encoding: gzip
amphibological-coug.000webhostapp.com/signin/load-resource
145.14.144.166404 Not Found 5.6 kB URL HTTP/1.1 amphibological-coug.000webhostapp.com/signin/load-resource
IP 145.14.144.166:0
ASN #204915 Hostinger International Limited
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- assembler source, ASCII text, with very long lines (5405)
Hash a2a0f625ec047fbbc19e74dd99d6c229
79a246dff5297b246dcaed99f74ba2234e2ab013
ac4a50ed3ecdab449090fe37d69221649c1820ddb353fca10fe4be76411e166f
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
POST /signin/load-resource HTTP/1.1
Host: amphibological-coug.000webhostapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Content-type: application/x-www-form-urlencoded
Content-Length: 125
Origin: http://amphibological-coug.000webhostapp.com
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
HTTP/1.1 404 Not Found
Date: Tue, 27 Sep 2022 22:39:08 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Server: awex
X-Xss-Protection: 1; mode=block
X-Content-Type-Options: nosniff
X-Request-ID: cd20be51728e051241f1997c5720300a
Content-Encoding: gzip
dub.stats.paypal.com/v1/counter2.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE
64.4.245.84200 OK 42 B URL HTTP/1.1 dub.stats.paypal.com/v1/counter2.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE
IP 64.4.245.84:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash accba0b69f352b4c9440f05891b015c5
9d01cc5dc8e042c0d4ad6cfb8b3ac38e84a5ef9f
47043e4823a6c21a8881de789b4185355330b5804629d23f6b43dd93f5265292
GET /v1/counter2.cgi?r=cD1lMzliMDQzNTA3ZDg0MGQ5ODE3NWI1ZGIxMzA0Y2M5MCZpPTE1NC4xNTkuMjM3LjIzNiZ0PTE2NTY3NTUzMjAuODg1JmE9MjEmcz1VTklGSUVEX0xPR0lOOfbHQNOzx5oD57vfv7_3xvU_6AE HTTP/1.1
Host: dub.stats.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://amphibological-coug.000webhostapp.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Connection: close
Server: PayPal-B.Stats/1.0
Content-Type: image/jpeg
Content-Length: 42
Set-Cookie: c=2d725da8375afb09108d; Domain=stats.paypal.com; expires=Mon, 22 Sep 2042 22:39:09 GMT; Path=/
Date: Tue, 27 Sep 2022 22:39:09 GMT
c.paypal.com/v1/r/d/b/w?f=e39b043507d840d98175b5db1304cc90&s=UNIFIED_LOGIN_INPUT_PASSWORD&d=%7B%22tsobj%22%3A%7B%22elid%22%3A%22email%22%2C%22sid%22%3A%22UNIFIED_LOGIN_INPUT_PASSWORD%22%2C%22tst%22%3A%22UL%22%2C%22wsps%22%3Afalse%2C%22ts%22%3A%22%22%2C%22pf%22%3A%7B%22psu%22%3Afalse%2C%22val%22%3Atrue%7D%7D%7D
151.101.193.35204 No Content 0 B URL HTTP/2 c.paypal.com/v1/r/d/b/w?f=e39b043507d840d98175b5db1304cc90&s=UNIFIED_LOGIN_INPUT_PASSWORD&d=%7B%22tsobj%22%3A%7B%22elid%22%3A%22email%22%2C%22sid%22%3A%22UNIFIED_LOGIN_INPUT_PASSWORD%22%2C%22tst%22%3A%22UL%22%2C%22wsps%22%3Afalse%2C%22ts%22%3A%22%22%2C%22pf%22%3A%7B%22psu%22%3Afalse%2C%22val%22%3Atrue%7D%7D%7D
IP 151.101.193.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /v1/r/d/b/w?f=e39b043507d840d98175b5db1304cc90&s=UNIFIED_LOGIN_INPUT_PASSWORD&d=%7B%22tsobj%22%3A%7B%22elid%22%3A%22email%22%2C%22sid%22%3A%22UNIFIED_LOGIN_INPUT_PASSWORD%22%2C%22tst%22%3A%22UL%22%2C%22wsps%22%3Afalse%2C%22ts%22%3A%22%22%2C%22pf%22%3A%7B%22psu%22%3Afalse%2C%22val%22%3Atrue%7D%7D%7D HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
correlation-id: 6c1619c40e93e
cache-control: max-age=0, no-cache, no-store, must-revalidate
paypal-debug-id: 6c1619c40e93e
traceparent: 00-00000000000000000006c1619c40e93e-be8355da40f53438-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Tue, 27 Sep 2022 22:39:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn11575-HHN, cache-bma1639-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664318349.942802,VS0,VE201
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
X-Firefox-Spdy: h2
t.paypal.com/ts?v=1.7.1&t=1664318346667&g=0&pgrp=main%3Aunifiedlogin%3A%3A%3Alogin&page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A&pgst=1656755320851&calc=f336583f2990d&nsid=dZTrT3-Py4J_Piw4icmkdzf0qqTio7jL&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=KE&csci=f2ad6b6e910045f48b9acf9b2e661e41&comp=unifiedloginnodeweb&tsrce=unifiedloginnodeweb&cu=1&gacook=473939840.1656755302&transition_name=ss_prepare_pwd&userRedirected=true&xe=101735%2C101216%2C105554%2C105553%2C105552%2C104200&xt=105856%2C103863%2C124695%2C124686%2C124682%2C117843&ctx_login_ot_content=0&obex=signin&landing_page=login&state_name=begin_pwd&ctx_login_ctxid_fetch=ctxid-not-exist&ctx_login_content_fetch=success&ctx_login_lang_footer=shown&ctx_login_signup_btn=shown%7Cdefault&ctx_login_intent=signin&ctx_login_flow=Signin&ctx_login_state_transition=login_loaded&post_login_redirect=default&ret_url=%2F&e=im&imsrc=setup&view=%7B%22t10%22%3A0%2C%22t11%22%3A1373%2C%22tcp%22%3A1228%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A133%7D&pt=Log%20in%20to%20your%20PayPal%20account&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=939&ce=1&t1=0&t1c=0&t1d=0&t1s=0&t2=120&t3=119&t4d=0&t4=0&t4e=1&tt=1239&rdc=0&protocol=http%2F1.1&res=%7B%7D&3p_vid=69faf0c7f51b92c&3p_fpti=6c0f60472d00493
151.101.129.35200 OK 42 B URL HTTP/2 t.paypal.com/ts?v=1.7.1&t=1664318346667&g=0&pgrp=main%3Aunifiedlogin%3A%3A%3Alogin&page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A&pgst=1656755320851&calc=f336583f2990d&nsid=dZTrT3-Py4J_Piw4icmkdzf0qqTio7jL&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=KE&csci=f2ad6b6e910045f48b9acf9b2e661e41&comp=unifiedloginnodeweb&tsrce=unifiedloginnodeweb&cu=1&gacook=473939840.1656755302&transition_name=ss_prepare_pwd&userRedirected=true&xe=101735%2C101216%2C105554%2C105553%2C105552%2C104200&xt=105856%2C103863%2C124695%2C124686%2C124682%2C117843&ctx_login_ot_content=0&obex=signin&landing_page=login&state_name=begin_pwd&ctx_login_ctxid_fetch=ctxid-not-exist&ctx_login_content_fetch=success&ctx_login_lang_footer=shown&ctx_login_signup_btn=shown%7Cdefault&ctx_login_intent=signin&ctx_login_flow=Signin&ctx_login_state_transition=login_loaded&post_login_redirect=default&ret_url=%2F&e=im&imsrc=setup&view=%7B%22t10%22%3A0%2C%22t11%22%3A1373%2C%22tcp%22%3A1228%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A133%7D&pt=Log%20in%20to%20your%20PayPal%20account&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=939&ce=1&t1=0&t1c=0&t1d=0&t1s=0&t2=120&t3=119&t4d=0&t4=0&t4e=1&tt=1239&rdc=0&protocol=http%2F1.1&res=%7B%7D&3p_vid=69faf0c7f51b92c&3p_fpti=6c0f60472d00493
IP 151.101.129.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?v=1.7.1&t=1664318346667&g=0&pgrp=main%3Aunifiedlogin%3A%3A%3Alogin&page=main%3Aunifiedlogin%3A%3A%3Alogin%3A%3A%3A&pgst=1656755320851&calc=f336583f2990d&nsid=dZTrT3-Py4J_Piw4icmkdzf0qqTio7jL&rsta=en_US&pgtf=Nodejs&env=live&s=ci&ccpg=KE&csci=f2ad6b6e910045f48b9acf9b2e661e41&comp=unifiedloginnodeweb&tsrce=unifiedloginnodeweb&cu=1&gacook=473939840.1656755302&transition_name=ss_prepare_pwd&userRedirected=true&xe=101735%2C101216%2C105554%2C105553%2C105552%2C104200&xt=105856%2C103863%2C124695%2C124686%2C124682%2C117843&ctx_login_ot_content=0&obex=signin&landing_page=login&state_name=begin_pwd&ctx_login_ctxid_fetch=ctxid-not-exist&ctx_login_content_fetch=success&ctx_login_lang_footer=shown&ctx_login_signup_btn=shown%7Cdefault&ctx_login_intent=signin&ctx_login_flow=Signin&ctx_login_state_transition=login_loaded&post_login_redirect=default&ret_url=%2F&e=im&imsrc=setup&view=%7B%22t10%22%3A0%2C%22t11%22%3A1373%2C%22tcp%22%3A1228%2C%22nt%22%3A%22navigate%22%2C%22bt%22%3A133%7D&pt=Log%20in%20to%20your%20PayPal%20account&cd=24&sw=1280&sh=1024&dw=1280&dh=1024&bw=1280&bh=939&ce=1&t1=0&t1c=0&t1d=0&t1s=0&t2=120&t3=119&t4d=0&t4=0&t4e=1&tt=1239&rdc=0&protocol=http%2F1.1&res=%7B%7D&3p_vid=69faf0c7f51b92c&3p_fpti=6c0f60472d00493 HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://amphibological-coug.000webhostapp.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Tue, 27 Sep 2022 22:39:09 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: 334bc4c34305a
pragma: no-cache
set-cookie: ts=vreXpYrS%3D1759012749%26vteXpYrS%3D1664320149%26vr%3D6c0f60472d00493%26vt%3D69faf0c7f51b92c; Expires=Sat, 27 Sep 2025 22:39:09 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D6c0f60472d00493%26vt%3D69faf0c7f51b92c; Expires=Sat, 27 Sep 2025 22:39:09 GMT; Domain=.paypal.com; Path=/; Secure
traceparent: 00-0000000000000000000334bc4c34305a-26625c3ce8766819-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Tue, 27 Sep 2022 22:39:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn11578-HHN, cache-bma1633-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1664318349.987402,VS0,VE185
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 42
X-Firefox-Spdy: h2
c6.paypal.com/v1/r/d/b/p3?f=e39b043507d840d98175b5db1304cc90&s=UNIFIED_LOGIN_INPUT_PASSWORD
192.229.221.25200 OK 20 B URL HTTP/2 c6.paypal.com/v1/r/d/b/p3?f=e39b043507d840d98175b5db1304cc90&s=UNIFIED_LOGIN_INPUT_PASSWORD
IP 192.229.221.25:0
Hash 163be0a88c70ca629fd516dbaadad96a
c8830ccf3a863e489ca37f4da572bad0e05d077b
ac73670af3abed54ac6fb4695131f4099be9fbe39d6076c5d0264a6bbdae9d83
GET /v1/r/d/b/p3?f=e39b043507d840d98175b5db1304cc90&s=UNIFIED_LOGIN_INPUT_PASSWORD HTTP/1.1
Host: c6.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://c.paypal.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
cache-control: max-age=0, no-cache, no-store, must-revalidate
correlation-id: 4f9c5af71db88
date: Tue, 27 Sep 2022 22:39:08 GMT
paypal-debug-id: 4f9c5af71db88
server: ECAcc (frc/4CBA)
server-timing: content-encoding;desc="", x-cdn;desc="edgecast",edge;dur=202
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: *
traceparent: 00-00000000000000000004f9c5af71db88-7823fa2e247783f2-01
vary: Accept-Encoding
content-length: 20
X-Firefox-Spdy: h2
c.paypal.com/v1/r/d/b/p1
151.101.193.35200 OK 125 B IP 151.101.193.35:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 7841175feeb7289b24441a45a3398ba8
edd43c2292672f81f4e87954d505b6f85d047248
4255d2f70419bc51a492d39d1e6936cb657305ce07d1c6596825e0c3c74699f3
POST /v1/r/d/b/p1 HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 1208
Origin: https://c.paypal.com
Connection: keep-alive
Referer: https://c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
correlation-id: 6761ae32fead5
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: application/json
p3p: policyref="/w3c/p3p.xml", CP="NON DSP COR ADM OUR IND COM"
paypal-debug-id: 6761ae32fead5
set-cookie: sc_f=4CyUSB4jZa3IxazXzm3hHRXd7g7e9CjrPLKZIjlJezikMKpEgt-Ptav8frUMnpc7gCFOejw9jL6bH7SDfo9eHAX6r0UuhJ5TkMYzFW;Domain=c.paypal.com;Max-Age=157680000;Path=/;Secure;Version=1;Expires=Sun, 26-Sep-2027 15:39:09 GMT; HttpOnly
KHcl0EuY7AKSMgfvHl7J5E7hPtK=EhCJN_NCA4Wd3UMyb8e9DH6p9pgs2VKm-k6Ixsg9prQJwBMlC1TIJSma9BKrp8_8hYDxiVfngnmTae9K;Domain=.paypal.com;Max-Age=630720000;Path=/;Secure;Version=1;Expires=Mon, 22-Sep-2042 15:39:09 GMT; HttpOnly
l7_az=dcg14.slc; Path=/; Domain=paypal.com; Expires=Tue, 27 Sep 2022 23:09:09 GMT; HttpOnly; Secure
traceparent: 00-00000000000000000006761ae32fead5-6830b6325b6b41b9-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Tue, 27 Sep 2022 22:39:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn4060-HHN, cache-bma1639-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 125
X-Firefox-Spdy: h2
c.paypal.com/v1/r/d/b/p2
151.101.193.35200 OK 125 B IP 151.101.193.35:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b304cc5071c68c9aa438ee7faabff75f
616b2969c87179f41a7d954e6911cfd5fd7b144f
28e25b781c73c9e04324fadec1417480d607489c558c972bca5e42f187ca57db
POST /v1/r/d/b/p2 HTTP/1.1
Host: c.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 2426
Origin: https://c.paypal.com
Connection: keep-alive
Referer: https://c.paypal.com/v1/r/d/i?js_src=https://c.paypal.com/da/r/fb.js
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
correlation-id: b6800fa546d9c
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: application/json
p3p: policyref="/w3c/p3p.xml", CP="NON DSP COR ADM OUR IND COM"
paypal-debug-id: b6800fa546d9c
set-cookie: sc_f=Zw6ZwMk6NmJy6ALtTYEnSRU_bG3zz5GqX4N9-XFZuHktkqEY7glrtnhnAODgVgShfTs7TiDWG4F87pfCd2DO0RiEYRWySubMWPJkjW;Domain=c.paypal.com;Max-Age=157680000;Path=/;Secure;Version=1;Expires=Sun, 26-Sep-2027 15:39:09 GMT; HttpOnly
traceparent: 00-0000000000000000000b6800fa546d9c-36a3e67fe4071f39-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Tue, 27 Sep 2022 22:39:09 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn4046-HHN, cache-bma1639-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 125
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17734
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:39:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17734
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:39:09 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 639785692dc29802e484e1e1d0ec86c4
cf81784351ce6302f540f491f893b44496809677
0e47d6e33fe9f6e588d308b62fa059c960a000c56651713e30baf6cd09b7de41
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E47D6E33FE9F6E588D308B62FA059C960A000C56651713E30BAF6CD09B7DE41"
Last-Modified: Sun, 25 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17734
Expires: Wed, 28 Sep 2022 03:34:43 GMT
Date: Tue, 27 Sep 2022 22:39:09 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9646ccba-7fc2-470a-b04e-5cef02e234cd.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9646ccba-7fc2-470a-b04e-5cef02e234cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e49757d877a437a57f39d458862e8369
7d8b30445dadc44a17e5a26301212fced3aaa2af
e8b481bd5fe7ce92aa614cb77c9318ef8b763e71a178126805a4c363e6f91a9b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9646ccba-7fc2-470a-b04e-5cef02e234cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13058
x-amzn-requestid: 2ce70ac3-0451-41f4-bd82-596a92582a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e3EiiIAMFQLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5e-25deabef6235856b6d9bb19f;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:22 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: oGmQtgwLy_unp2_L3WP10HsyeCSgao4_37Kf6K8JeeVgz8YXbDvDWQ==
via: 1.1 73b60e9a9fd08eae9e034cedba707280.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:53 GMT
age: 2476
etag: "7d8b30445dadc44a17e5a26301212fced3aaa2af"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
34.120.237.76200 OK 7.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ccfb4931d41ca01aa55b4b8e9ef6b4e1
2351d2547f4bd0aac45bb21a5aa8277e80ef15f2
89de9954ee2874b476c907810189812efe13234a46910180f34f68082429260f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c254fe7-b89c-4a2c-a79c-4a6a0fe2d17c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7020
x-amzn-requestid: 1258ee7b-987a-4454-8963-e76b7c1470f3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3e4EVxIAMFrmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c5f-7a1fbaa251600686757f9583;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:34:23 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: _ISJfVYtY7kLIm87GZEvqMmEr3D4vYcZDi-WJAu4GyaxLQKRUDbVjg==
via: 1.1 d0387b833e3ca8cb748a1296b4b4bf2a.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 3186
etag: "2351d2547f4bd0aac45bb21a5aa8277e80ef15f2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ee83d08d024d127fad5918e1ffacb78b
8ad289a77705358ab660b6123e9d90de991b6c13
aaab3590ef3777ce8b7a9a34f18866fa20ecaa554cbcdcdb3f1fa3c34c88ceb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd5653a1a-a7d7-4b1e-a27e-4eb6b032901d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11314
x-amzn-requestid: 0ceafc65-764c-4367-b031-257061eb65d4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPF00oAMFUpw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-0d46481b7394081b14a81131;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ve8l6PxpMuBLt5BxwywNpqM2ISt0zy2r_gweYnVw4X65PBEhpMbckg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:00 GMT
age: 3189
etag: "8ad289a77705358ab660b6123e9d90de991b6c13"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash aa5cad224dbddd71881bd07255beb4da
bc214d60be395d4cf753216ff8f9691c33d25e75
82935e52aa59929a448d17a5a2d58fda86bb5c25bf6628a05bd904f82517dada
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0369629e-f44d-439f-a279-b5ae6ecc0cf1.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14464
x-amzn-requestid: 5cbbafdb-3f69-4ee2-9e46-c1ff0ed4ef14
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UPFiooAMFulA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-633a649700e040b91deadb64;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cNryG5vkxZuFATZfcNW9Z1-0teUBWLRyWslX1onwYlDCQBUjU2xVdA==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 73cb83fe6699afc2791b5c690c1ff8c6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:46:03 GMT
age: 3186
etag: "bc214d60be395d4cf753216ff8f9691c33d25e75"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c4a66beda24621e812a929933c52025d
e951f6b11e473b68d2fdd95b822cef120d37b1eb
28efb1495fdb363cea9ccc6c38f84b2731dbd44dd4dbbe42996fa6fab74e1ce6
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52d10f53-5e95-4bc8-aa34-09983b7221cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6721
x-amzn-requestid: ea4416a4-ffbe-4006-bb09-aa0a70763ab2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3xTGNOoAMFXeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336cd4-6634cd372bd677227f755769;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:36:20 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: EbkbN72NJbDqfnJjnaUcitG0W6yk8vR__5zLvdidXuWqh7VQK2O8OA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 22:18:40 GMT
age: 1229
etag: "e951f6b11e473b68d2fdd95b822cef120d37b1eb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 43d7c0db2af42ad4d0095324b2691f6c
1a1139cff14aff6755b9e43ff4ef8c9ece1102c1
42073c84e0c215109b54ab55a53cce9e6cce44f4619f5988fa4e2776ff70b362
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8a264fec-4624-4025-b0d1-044fc33e338f.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9780
x-amzn-requestid: 9938422e-12cd-4aab-9e58-c26b8fee53b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZI3UOH3DoAMFZRw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63336c1a-37105d923f19437025abec71;Sampled=0
x-amzn-remapped-date: Tue, 27 Sep 2022 21:33:14 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Halsx09hxT_sMRc2jy-fJA0tE85F6Bgz9P9Trx02Z9aMfIZVLkLW4g==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Tue, 27 Sep 2022 21:57:42 GMT
age: 2487
etag: "1a1139cff14aff6755b9e43ff4ef8c9ece1102c1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2