pemulihan-facebook16.webnode.page/
85.132.152.251301 Moved Permanently 38 kB URL HTTP/1.1 pemulihan-facebook16.webnode.page/
IP 85.132.152.251:0
ASN #24641 FASTER CZ spol. s r.o.
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (21172), with CRLF, LF line terminators
Hash 4fb76c1fac37f1e5a67e15d799c49754
4fd068dfea4f30e94c927a0cd1cbf5f2cd713b72
79ecfc8f499d53b99d9139021b2f5c02ffd385011e88733d08af240090d28662
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: pemulihan-facebook16.webnode.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sat, 03 Sep 2022 05:24:32 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=10
Set-Cookie: PHPSESSID=ffa82aac29a83e8f69840e2720ebbbf0; path=/; domain=pemulihan-facebook16.webnode.page; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-FRAME-OPTIONS: DENY
Location: https://pemulihan-facebook16.webnode.page/
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 91dd975a7b17b2922dd23c0e49314e40
57a2ece1e3cee7c4ebf927f2ba92f52cac395fe2
09966873bbf317f8910c59544cfde2a6d46e8acd2905797cc7c85c6b4d18ea8a
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Length, Content-Type, Alert, Backoff, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sat, 03 Sep 2022 04:42:50 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: DAOaZeWEv91KusgRGl84Qsq_mDf_I4LJb7GqHyPBNVN_gcvjYuPtlg==
Age: 2503
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bcdebf7a2bad5db595e8a0c1abb2ddcb
249dda2fa5e37b8a8f3a8c797193bf0874b6eedc
9b43ec48b16f96449208a0094c4d660806a2a2d344b5862dbff4c393bf3f9f9f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9B43EC48B16F96449208A0094C4D660806A2A2D344B5862DBFF4C393BF3F9F9F"
Last-Modified: Thu, 01 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5534
Expires: Sat, 03 Sep 2022 06:56:47 GMT
Date: Sat, 03 Sep 2022 05:24:33 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sat, 03 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: lEblMtMhwtHA2Bz7LqVGWFE3Kj90iejeDGRpH2ZxkH0Ej7cEJbEjhQ==
age: 14956
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 31a53af50c7e31f0c153bc185f717085
8b3937c734c6417fa76a5bf74c709c7a2b3da35f
39104061cc310721a9002148e4caff0b797671843057132bccb2d1c56121b42c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39104061CC310721A9002148E4CAFF0B797671843057132BCCB2D1C56121B42C"
Last-Modified: Fri, 02 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10022
Expires: Sat, 03 Sep 2022 08:11:35 GMT
Date: Sat, 03 Sep 2022 05:24:33 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 05:24:33 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
use.typekit.net/qxt1mdt.css
23.36.76.186200 OK 1.7 kB URL HTTP/2 use.typekit.net/qxt1mdt.css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (516)
Hash f18a61d1293048ac8b9f38a53d798709
b14a68efcf19021e07959e9ad5d4ed67ef13349f
fe8f82abfc7b534514a880378d0c08408237633a22c371106866985499945f8a
GET /qxt1mdt.css HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: private, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 1711
date: Sat, 03 Sep 2022 05:24:34 GMT
X-Firefox-Spdy: h2
p.typekit.net/p.css?s=1&k=qxt1mdt&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.10294.10295.10296.10297.10298.10299.10300.10301.10302.10303.10304.10305&a=83926076&app=typekit&e=css
23.36.76.186200 OK 5 B URL HTTP/2 p.typekit.net/p.css?s=1&k=qxt1mdt&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.10294.10295.10296.10297.10298.10299.10300.10301.10302.10303.10304.10305&a=83926076&app=typekit&e=css
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
Hash 83d24d4b43cc7eef2b61e66c95f3d158
f0cafc285ee23bb6c28c5166f305493c4331c84d
1c0ff118a4290c99f39c90abb38703a866e47251b23cca20266c69c812ccafeb
GET /p.css?s=1&k=qxt1mdt&ht=tk&f=137.138.139.140.169.170.171.172.173.174.175.176.5474.5475.25136.25137.10294.10295.10296.10297.10298.10299.10300.10301.10302.10303.10304.10305&a=83926076&app=typekit&e=css HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://use.typekit.net/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: text/css
cross-origin-resource-policy: cross-origin
etag: "613bee4d-5"
last-modified: Fri, 10 Sep 2021 23:46:21 GMT
server: nginx
content-length: 5
unused62: 8096267
date: Sat, 03 Sep 2022 05:24:34 GMT
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/2q/2qg/2qgjfw.css?ph=5e459e3abe
54.230.245.206200 OK 220 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/2q/2qg/2qgjfw.css?ph=5e459e3abe
IP 54.230.245.206:0
File type ASCII text, with no line terminators
Hash 9db686c7d34afdc9890f186e3c3c33cf
35d62e93ac869a054be7dd0bdd104c4f484e0dae
5532fd0d3cef5a0ead7379ef9ebb8a8c9a1733a4fa289835a17a4ac6d0cf3cd3
GET /files/2q/2qg/2qgjfw.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 220
date: Fri, 02 Sep 2022 18:29:57 GMT
last-modified: Mon, 28 Feb 2022 10:02:18 GMT
etag: "9db686c7d34afdc9890f186e3c3c33cf"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: zzxafn0ZdgdEKzqcraOTF7CMAlOQ6ZvROU0iCtkkIYQZ-pd8IPY4UQ==
age: 39278
X-Firefox-Spdy: h2
5e459e3abe.cbaul-cdnwnd.com/893fce26c22ff98c3d96e64bd27296ce/200000001-be8d1be8d3/Remini20220511221243148.webp?ph=5e459e3abe
54.230.111.118200 OK 43 kB URL HTTP/2 5e459e3abe.cbaul-cdnwnd.com/893fce26c22ff98c3d96e64bd27296ce/200000001-be8d1be8d3/Remini20220511221243148.webp?ph=5e459e3abe
IP 54.230.111.118:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 962ae485cff937f3b84ad47b85f28299
ed97cfaebc062caaf8ac923ddfac8d5b43afb17e
d21eabc8a026f9265339f30973ebda347a6e7f75ab680d9c7c8eb70b118cee34
GET /893fce26c22ff98c3d96e64bd27296ce/200000001-be8d1be8d3/Remini20220511221243148.webp?ph=5e459e3abe HTTP/1.1
Host: 5e459e3abe.cbaul-cdnwnd.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 43294
date: Fri, 02 Sep 2022 18:30:44 GMT
last-modified: Sat, 27 Aug 2022 13:51:52 GMT
etag: "962ae485cff937f3b84ad47b85f28299"
cache-control: public, max-age=604800, immutable
x-amz-version-id: quPXSap_s.S6yclKAkrj0en7aXnrkBKz
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 b053873243f91b1bb6dc406ce0c67db4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hY_cW4Zy_mjNoTQ51JGPCZiYoDNYM1zZwpUTcsYLvPLFKE9pMPsL6g==
age: 39231
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/1x/1xb/1xbezo.woff2
54.230.245.206200 OK 26 kB URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/1x/1xb/1xbezo.woff2
IP 54.230.245.206:0
File type Web Open Font Format (Version 2), TrueType, length 25704, version 1.0\012- data
Hash 6f085a42e8a89967c6ebd2c6da7ee73d
46b5e1a376f0cc376e17afd8c5c83e9b4dc1758f
d66b03bf65e64ac5f0d721e6ceb3357b9aadd14ac691fa186d037bd0c2154726
GET /files/1x/1xb/1xbezo.woff2 HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://d1di2lzuh97fh2.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/font-woff2
content-length: 25704
date: Fri, 02 Sep 2022 19:16:03 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Mon, 27 Sep 2021 07:56:21 GMT
etag: "6f085a42e8a89967c6ebd2c6da7ee73d"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
vary: Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: lTbwmS0TkFMHRvoEtvOO2Ipj9O0kepKJ0UYWu2EtYjCdVgosGxe35A==
age: 36512
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sat, 03 Sep 2022 04:38:16 GMT
Expires: Sat, 03 Sep 2022 05:38:16 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Hj6DJ-evXGaPYnPZg_yLQ90BUwwhhKajYIZOdmmbuHiW6TRat-Nblg==
Age: 2778
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 05:24:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 05:24:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d1di2lzuh97fh2.cloudfront.net/files/1o/1os/1ost9k.css?ph=5e459e3abe
54.230.245.206200 OK 2.8 kB URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/1o/1os/1ost9k.css?ph=5e459e3abe
IP 54.230.245.206:0
File type Unicode text, UTF-8 text, with very long lines (30267)
Hash 3da2e38b5a0f8c9cd3de2e97a076d437
2276e434c4a72cb7c37991436633165c5ca2a2e5
86173b67cbb92d3357a684d27d0c1494bf840a216808e1fbd2a0b7778bbaeb6e
GET /files/1o/1os/1ost9k.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:27 GMT
last-modified: Mon, 22 Aug 2022 08:49:06 GMT
etag: W/"6163f28915b2d21390e8c370010606b0"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 9hLNL_HvPAH_qsbgUIPk0n8zTmrTJLPNzOffBEYDvfVcEHLNSY6ayA==
age: 139268
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librebaskerville/v13/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2
142.250.74.163200 OK 27 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v13/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 27120, version 1.0\012- data
Hash 43e7d3f1dec74478587a2b3cfa272631
c065f24ac428353854ebd6715c49966fc4f4c762
6c6c9c3fad669c3d32227f5cc3467735c8211ddcf4f8c184c2e62e7f3ef7af44
GET /s/librebaskerville/v13/kmKnZrc3Hgbbcjq75U4uslyuy4kn0qNZaxM.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://d1di2lzuh97fh2.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27120
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 02 Sep 2022 16:11:20 GMT
expires: Sat, 02 Sep 2023 16:11:20 GMT
cache-control: public, max-age=31536000
age: 47594
last-modified: Wed, 26 Jan 2022 18:58:36 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/librebaskerville/v13/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcA.woff2
142.250.74.163200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/librebaskerville/v13/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcA.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 27976, version 1.0\012- data
Hash 22907ce040431644b934b72a7c431a36
78863dfb62414fe1a73f64d7f7fbff63ebccb322
658cbf469e751ade6d30b701fc7ca00b3403329481955d30acb721ca38b45d99
GET /s/librebaskerville/v13/kmKiZrc3Hgbbcjq75U4uslyuy4kn0qviTgY3KcA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://d1di2lzuh97fh2.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 27976
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 30 Aug 2022 12:51:15 GMT
expires: Wed, 30 Aug 2023 12:51:15 GMT
cache-control: public, max-age=31536000
age: 318799
last-modified: Wed, 26 Jan 2022 19:00:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/15/158/158ygk.css?ph=5e459e3abe
54.230.245.206200 OK 53 kB URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/15/158/158ygk.css?ph=5e459e3abe
IP 54.230.245.206:0
File type Unicode text, UTF-8 text, with very long lines (65490)
Hash 97ca3ce5bb5384bce192dfc29ba2357b
bc8ebe7498214bfd6d2d0a68d40ffe1b85eb11f2
563b965b3c4f8e045fd002996e55b706c09a162d377c525ea6ce4c8bcfdc0fac
GET /files/15/158/158ygk.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:28 GMT
last-modified: Mon, 29 Aug 2022 12:19:52 GMT
etag: W/"4212974b02dcbf852b9c6cb31c08bfbd"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _h5enYo1vA1E5mpJCMSuAVb_L-fhaD3B82G_XqKVnu3XGyptBwiWvA==
age: 139267
X-Firefox-Spdy: h2
d26b395fwzu5fz.cloudfront.net/3.2.3/keen.min.js
54.230.245.176200 OK 24 kB URL HTTP/1.1 d26b395fwzu5fz.cloudfront.net/3.2.3/keen.min.js
IP 54.230.245.176:0
File type ASCII text, with very long lines (43474)
Hash 8168b07b3af4898ccf20495ca89b80bc
fec88c6b2ce0cdd0efafb1a937e8200c52225c50
403013be59af853465211b103537c243b4c4c309cbef7f3bc36ab91f7d19d35b
GET /3.2.3/keen.min.js HTTP/1.1
Host: d26b395fwzu5fz.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/javascript
Content-Length: 23768
Connection: keep-alive
Last-Modified: Sat, 14 Feb 2015 00:38:14 GMT
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
Date: Sat, 03 Sep 2022 05:09:38 GMT
Cache-Control: max-age=1000, public
Expires: Sat, 14 Feb 2015 00:38:11 GMT
ETag: "8168b07b3af4898ccf20495ca89b80bc"
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: FNjYDTNvi36q6x9t_5fOzKcKFFd6KHeTx2jux-OyFdTUsJE-aEdIuw==
Age: 907
d1di2lzuh97fh2.cloudfront.net/files/07/07f/07fzq8.svg?ph=5e459e3abe
54.230.245.206200 OK 316 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/07/07f/07fzq8.svg?ph=5e459e3abe
IP 54.230.245.206:0
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (315)
Hash 0bec9a092ea54c5feceaf57b0e7d89a3
6158ca41bb02e09391d2d3c55d7abe612952c54a
3d3cb3ba6400aaa09bb71417881140508489db981f71094f8be3cb84196fb1b3
GET /files/07/07f/07fzq8.svg?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 316
date: Fri, 02 Sep 2022 17:56:32 GMT
last-modified: Mon, 27 Sep 2021 07:46:50 GMT
etag: "0bec9a092ea54c5feceaf57b0e7d89a3"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: heHuhimO0CkzlknqBCaGCnJw1QKzuvilQGhZTRrhM49RPYG6I_3mdA==
age: 41283
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 7ce90d6fafa13d92fcf445b688f0389f
480461a46fc291cbcdf6218c7743779d7e862788
dd33483769f6c715aeb257c2955147c1a5a47b0af1684190247701465af8af6c
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 05:24:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
d1di2lzuh97fh2.cloudfront.net/files/1j/1j3/1j3767.ico?ph=5e459e3abe
54.230.245.206200 OK 23 kB URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/1j/1j3/1j3767.ico?ph=5e459e3abe
IP 54.230.245.206:0
File type MS Windows icon resource - 3 icons, 16x16, 8 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 583de0f61394833894ec25eead91b70c
9bcefa5ba486764481c2a87e1fc571f0f7d5d2b2
14fb04ab9088ec1cc732eabdba77423b011c3958a63ea16e59d499193d5e04f3
GET /files/1j/1j3/1j3767.ico?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/x-icon
content-length: 22638
date: Fri, 02 Sep 2022 17:56:33 GMT
last-modified: Mon, 27 Sep 2021 07:53:50 GMT
etag: "583de0f61394833894ec25eead91b70c"
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: VKWWcp4vVuASckioxpdyz_PO2J8HQ7NGabn4H3XV0g-ECjBajjYHvQ==
age: 41282
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44800, version 1.0\012- data
Hash 5c6ebd76d8e76b609584af9c20aee4f9
73da07e69695c4c6af6cea5dd3ea627132117241
a658b2be7323c57d4bd5c4197b657e1f5360d1b950131dc377efec1d5111ffd0
GET /s/opensans/v29/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://d1di2lzuh97fh2.cloudfront.net/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:34:42 GMT
expires: Thu, 31 Aug 2023 19:34:42 GMT
cache-control: public, max-age=31536000
age: 208192
last-modified: Wed, 11 May 2022 19:25:14 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 21daf45cdda2eb462873226bb5c1f0fb
4d4621bbf1461f35f7e536c1dbd9de71978ffa23
8164c742d013bdc2836cac1167acfe482547347ab6a1daefa15475f694dae057
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6161
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 05:24:34 GMT
Last-Modified: Sat, 03 Sep 2022 03:41:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 92dc2740f119fed6395cdaf6260f6c43
ac9868b3feb6282d0635c140c1f44dee16859f30
2352ce79898a598f5e80f38ba8a5ec35442c06dec8ce9b690d9cd023f983bd27
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "2352CE79898A598F5E80F38BA8A5EC35442C06DEC8CE9B690D9CD023F983BD27"
Last-Modified: Fri, 02 Sep 2022 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13478
Expires: Sat, 03 Sep 2022 09:09:12 GMT
Date: Sat, 03 Sep 2022 05:24:34 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6b6b5ffecd53193507458fbe6e66d3f0
c96009132e435078cd79e19b19eeb0dbcf9abef3
229806893f073d6d725880c375c2f72ab09221a46095e1203d7379c1a29b8bef
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 05:24:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/jsapi
142.250.74.164301 Moved Permanently 237 B IP 142.250.74.164:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 362d5b448e14803e150656f8f2b2064f
46e929aad5f6323e61c895d51c8fa5f46171f16e
9361792c2d970710b9e66bb86b6dc9b17dab59a9294a30a5790bdb1e92b38021
GET /jsapi HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
location: https://www.gstatic.com/charts/loader.js
x-content-type-options: nosniff
server: sffe
content-length: 237
x-xss-protection: 0
date: Sat, 03 Sep 2022 05:14:05 GMT
expires: Sat, 03 Sep 2022 05:44:05 GMT
cache-control: public, max-age=1800
content-type: text/html; charset=UTF-8
age: 629
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 9665d92cfb2f9db5f7032ed692dff0e0
2ca6220de116f04429a7ce3f3c8f95cae61db137
5cc77ac9117df4aa52cc268287bf82f9dde172f1bcd7f640d3f0ef04a5ed07c5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 03 Sep 2022 05:24:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.13.69.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.13.69.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: w6eo1pv060BG6A3QlWNYew==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: kcBOrWL+M9roQ1PchLkXv06ykWs=
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5355
Expires: Sat, 03 Sep 2022 06:53:51 GMT
Date: Sat, 03 Sep 2022 05:24:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5355
Expires: Sat, 03 Sep 2022 06:53:51 GMT
Date: Sat, 03 Sep 2022 05:24:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5355
Expires: Sat, 03 Sep 2022 06:53:51 GMT
Date: Sat, 03 Sep 2022 05:24:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5355
Expires: Sat, 03 Sep 2022 06:53:51 GMT
Date: Sat, 03 Sep 2022 05:24:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1a25fee-f3d6-472f-81bc-e6c0a5fb3126.jpeg
34.120.237.76200 OK 6.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1a25fee-f3d6-472f-81bc-e6c0a5fb3126.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 68ab3b487c83fa2b50f774f1ed7e2e00
761c970aa19a87625a60a80f74dc9ae9d8c54ab0
4c483c7ad3b7f20a4566daf558fbd308158068accbbaca38089da192c2bc722c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb1a25fee-f3d6-472f-81bc-e6c0a5fb3126.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6629
x-amzn-requestid: 2542bbcd-b962-4397-9c6a-359fa9b33b4d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0mhjF06oAMF62Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311b7a3-281acf5f7c4982e26c723e42;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:58:27 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: ygiWF4CCLws5zXLxKz79hEJ5eZEFIUsg41lhMvr9NeWjaFLLTX2OeQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:00:54 GMT
age: 26622
etag: "761c970aa19a87625a60a80f74dc9ae9d8c54ab0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 21826f85e6f926272f6a770645040b4a
21aad3ec92f4e1a353601d0c5ab8b60f44ea418f
adb23b43d5f65606cfb5fc69c3d410f10df39575f69abc0d786cfbe564819cae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F79118911-9148-4daf-8809-5e20fe16c9eb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11650
x-amzn-requestid: 0aaaea54-4652-462f-bcdc-bec0ea370183
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XcKyAFpOoAMF3WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6307f1a6-29681e20125554750899949c;Sampled=0
x-amzn-remapped-date: Thu, 25 Aug 2022 22:03:18 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: jZW6EE8wmmSeS14h9Jsxi9APszbFoZTCOye1VcPY8IbFZoK-n-hBSw==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:51:43 GMT
age: 5573
etag: "21aad3ec92f4e1a353601d0c5ab8b60f44ea418f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/3r/3rv/3rvt8q.css?ph=5e459e3abe
54.230.245.206200 OK 6.4 kB URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/3r/3rv/3rvt8q.css?ph=5e459e3abe
IP 54.230.245.206:0
File type ASCII text, with very long lines (8586), with no line terminators
Hash fc552c1f3db4cc7d86d7651798f2aaee
89996455b733a478645c1e5153ad993e04a76cfa
db132b7c140a1be3221363eee6df13dcc74493a14f98a41d46f3f2c5798b380d
GET /files/3r/3rv/3rvt8q.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:28 GMT
last-modified: Wed, 29 Jun 2022 05:56:08 GMT
etag: W/"d9a8cca08ea31176a3a996a035cf9b42"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: hWUxZ1M5qgzhm8esz_Dvn3IGtfd79KavaX8xytbfQExQtNb2-L31yg==
age: 139267
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1acc690-bb1d-4455-a994-a5da9489094c.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1acc690-bb1d-4455-a994-a5da9489094c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 47663af0974e05b0971805a7414415fb
a2d2d69a9d03830d2dda8ad9eccfc0a7f0c6ba80
ad21b7a7167622d83fce7de1bcb44b00aa03c8e125acc1f493c5d52a5ff9044c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa1acc690-bb1d-4455-a994-a5da9489094c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8118
x-amzn-requestid: aa382bf8-0a23-4d5f-bc4a-4e7d46b9cf47
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XguwMF6wIAMFkeA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309c4cd-7aaa10221c8b868d573aa0e8;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:16:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: DnKsUq2o2gYNqCzsA4Z3VkdtrDZbFCHTb7Xvsk7EBn28Q7NgArI-8w==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Sep 2022 22:19:19 GMT
age: 25517
etag: "a2d2d69a9d03830d2dda8ad9eccfc0a7f0c6ba80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad663de8-dd74-4ef6-b834-52448e7d423f.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad663de8-dd74-4ef6-b834-52448e7d423f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash baa99ebdef2eb1b3b0d0f89c8efe9e82
7ac3fd98ce0fbae3292a6dd621faf1716c97cd90
e968972fad46460d01dfe41876f5f79d13421e1bdcbea4cb4c090925550b482d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fad663de8-dd74-4ef6-b834-52448e7d423f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8062
x-amzn-requestid: 95048506-bd41-41c3-9c61-8c1fa4d76222
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDQFbwoAMFc8A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-45421a57181cb85a56f85f39;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: _6QiPC5FdaJHmGd3gzXKws-8MTFVNqIG_keyFbE5kRIM8mj7MpXq-g==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 5397b304713f6301c7c94ac084b6ed08.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:28 GMT
age: 5408
etag: "7ac3fd98ce0fbae3292a6dd621faf1716c97cd90"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f4cb62c7c522b71c62a97630d8330ef5
950611314b81428b3d80ff8659272cc800cf48b6
3fd0bbf8a1fe8776136d611d6b99b909b71e6af3a13f8794338af2f0026b59ff
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa2e13cf1-38c2-4f82-a50c-b409a24f3af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7975
x-amzn-requestid: d4695cb0-76ed-495c-b548-d7819edd6d90
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XwqDSGuDIAMF6kA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631023ae-7ba42ae9407c626a02d10e7f;Sampled=0
x-amzn-remapped-date: Thu, 01 Sep 2022 03:14:54 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: paxjtCjggGuEMbpwW1HmCdQOemdktodVUl-grweVuYke_NynMIHMlg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 03:54:34 GMT
age: 5402
etag: "950611314b81428b3d80ff8659272cc800cf48b6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/1w/1wq/1wqy84.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/1w/1wq/1wqy84.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/1w/1wq/1wqy84.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Sat, 03 Sep 2022 02:27:53 GMT
last-modified: Thu, 04 Aug 2022 10:08:09 GMT
etag: W/"6e1f3c4a5eb9878ab387d9187327cbb0"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: pVWyfv7rt6U2Dm7QW_5ZMuwSRRgZUoI2iReK5knur3NWkE6S2C5_5g==
age: 10602
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/3e/3ew/3ewqcg.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/3e/3ew/3ewqcg.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/3e/3ew/3ewqcg.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:28 GMT
last-modified: Mon, 29 Aug 2022 07:57:05 GMT
etag: W/"c4e0760599001cc5595f89827481c621"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 2lqQSHbVt_kqzu43ZJTx5tU-Wxx3Pj4_SSmuiCo5QtFs2UxyzHUp4Q==
age: 139267
X-Firefox-Spdy: h2
events.webnode.com/projects/-/events/PROD?api_key=-&data=eyJ1c2VyIjp7InUiOjAsInAiOjQ1MDAzODAyLCJsYyI6IklEIiwidCI6IjEifSwiYWN0aW9uIjp7ImlkZW50aWZpZXIiOiJjb29raWViYXJfc2hvdyIsIm5hbWUiOiJDb29raWViYXIgd2FzIHNob3duIiwiY2F0ZWdvcnkiOiJwcm9qZWN0IiwicGxhdGZvcm0iOiJXTkQyIiwidmVyc2lvbiI6IjItMTM1OV8yLTEzNTkifSwiYnJvd3NlciI6eyJ1cmwiOiJodHRwczovL3BlbXVsaWhhbi1mYWNlYm9vazE2LndlYm5vZGUucGFnZS8iLCJ1YSI6Ik1vemlsbGEvNS4wIChXaW5kb3dzIE5UIDYuMjsgV09XNjQpIEFwcGxlV2ViS2l0LzUzNy4zNiAoS0hUTUwsIGxpa2UgR2Vja28pIENocm9tZS8zMC4wLjE1OTkuNjYgU2FmYXJpLzUzNy4zNiIsInJlZmVyZXJfdXJsIjoiIiwicmVzb2x1dGlvbiI6IjEyODB4MTAyNCIsImlwIjoiNTIuMTkuMTcuNTYifSwiZGF0YSI6eyJNVkNUeXBlIjoid25kLmZlLkNvb2tpZUJhciIsIk1WQ0lkIjoiQ29va2llQmFyIn19&modified=1662182672572&jsonp=keenJSONPCallback1662182672573
217.16.182.246200 OK 0 B URL HTTP/2 events.webnode.com/projects/-/events/PROD?api_key=-&data=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&modified=1662182672572&jsonp=keenJSONPCallback1662182672573
IP 217.16.182.246:0
ASN #43541 VSHosting s.r.o.
GET /projects/-/events/PROD?api_key=-&data=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&modified=1662182672572&jsonp=keenJSONPCallback1662182672573 HTTP/1.1
Host: events.webnode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 05:24:34 GMT
content-type: text/plain
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/19/19v/19v8it.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/19/19v/19v8it.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/19/19v/19v8it.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:50 GMT
last-modified: Mon, 29 Aug 2022 07:56:07 GMT
etag: W/"49789e5f2b09207383d4c1c2fc160832"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: QwVSyipI-10WlXHMTxnWGixYakCNxr873r7fWQ6BxuAK1aP6nt2fYQ==
age: 139245
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/41/41r/41r0j0.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/41/41r/41r0j0.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/41/41r/41r0j0.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:27 GMT
last-modified: Mon, 29 Aug 2022 12:21:19 GMT
etag: W/"e976c6c7f3b0a8a6df43cd2a820b6910"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Uka5ySNJ6zHJunIQlx9Zam85GYquUxKv9xwgm-pTMpIJGJ8GMps_og==
age: 139268
X-Firefox-Spdy: h2
pemulihan-facebook16.webnode.page/
85.132.152.251200 OK 0 B URL HTTP/2 pemulihan-facebook16.webnode.page/
IP 85.132.152.251:0
ASN #24641 FASTER CZ spol. s r.o.
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: pemulihan-facebook16.webnode.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
date: Sat, 03 Sep 2022 05:24:33 GMT
content-type: text/html; charset=UTF-8
set-cookie: PHPSESSID=28de39298211feab8d8a1e442d120d4f; path=/; domain=pemulihan-facebook16.webnode.page; secure; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
x-frame-options: DENY
content-encoding: gzip
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/3l/3lf/3lfl7k.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/3l/3lf/3lfl7k.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/3l/3lf/3lfl7k.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:50 GMT
last-modified: Tue, 12 Jul 2022 11:28:26 GMT
etag: W/"cf53a20247e9971d5d0afb163b763605"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WqyX9OEj7bDGdhot9YhEfK41DIu93_DjHQRo_KCdg5cydAtBMYQxjg==
age: 139245
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/1f/1fw/1fw25g.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/1f/1fw/1fw25g.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/1f/1fw/1fw25g.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Fri, 02 Sep 2022 01:39:28 GMT
last-modified: Tue, 12 Jul 2022 11:27:29 GMT
etag: W/"531e5e49bcbca30dfde4b9d4e110b8d1"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: LI-GgCYBIl2BQFRPge16IA1ya4Z8suwuVTYv5Xzf_d8tH0xOp6Zv8A==
age: 99907
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/client.fe/js.compiled/compiled.multi.2-1359.js?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/client.fe/js.compiled/compiled.multi.2-1359.js?ph=5e459e3abe
IP 54.230.245.206:0
GET /client.fe/js.compiled/compiled.multi.2-1359.js?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 01 Sep 2022 14:43:28 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Thu, 01 Sep 2022 09:50:59 GMT
etag: W/"a86b0255c7824e23e1916e23d930c2ab-1"
x-amz-meta-s3cmd-attrs: uname:www-data/gname:www-data
cache-control: max-age=31536000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: OogdYV47Ss_SfuxTMJdHw5Xh8T3sGQgLse30sA0SOYNhgflgZbvdKQ==
age: 139267
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/0j/0jl/0jl782.js?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/0j/0jl/0jl782.js?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/0j/0jl/0jl782.js?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
date: Thu, 01 Sep 2022 14:43:28 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Mon, 29 Aug 2022 07:55:48 GMT
etag: W/"1f60ad2133a9cda602c01472ef6d1f50"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Nr4COGBBG2C62ooL17zec9ynWPL1LAnEnMd35I3LJWVtmnpwakTOrg==
age: 139267
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/client.fe/js.compiled/lang.en-us.926.js?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/client.fe/js.compiled/lang.en-us.926.js?ph=5e459e3abe
IP 54.230.245.206:0
GET /client.fe/js.compiled/lang.en-us.926.js?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://pemulihan-facebook16.webnode.page
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 02 Sep 2022 01:39:05 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
last-modified: Thu, 01 Sep 2022 09:51:05 GMT
etag: W/"aa90c73557f6a26e693d9fb2b177eb4d-1"
x-amz-meta-s3cmd-attrs: uname:www-data/gname:www-data
cache-control: max-age=31536000
server: AmazonS3
content-encoding: br
vary: Accept-Encoding,Origin,Access-Control-Request-Headers,Access-Control-Request-Method
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: GNmOz_3eUt-DlSJQpIBlIcCR0_zmyJPx5tRSyXCCobwafWb9RZhGrQ==
age: 99930
X-Firefox-Spdy: h2
d1di2lzuh97fh2.cloudfront.net/files/1w/1w8/1w8zbw.css?ph=5e459e3abe
54.230.245.206200 OK 0 B URL HTTP/2 d1di2lzuh97fh2.cloudfront.net/files/1w/1w8/1w8zbw.css?ph=5e459e3abe
IP 54.230.245.206:0
GET /files/1w/1w8/1w8zbw.css?ph=5e459e3abe HTTP/1.1
Host: d1di2lzuh97fh2.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://pemulihan-facebook16.webnode.page/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
date: Thu, 01 Sep 2022 14:43:27 GMT
last-modified: Mon, 29 Aug 2022 07:56:24 GMT
etag: W/"6d528dc7cf5b3524725a94be5950c372"
cache-control: public, max-age=31536000, immutable
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 e2f427863e6bdb72ad8bed72b596d81e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ik_fF4VmjcuQ_8e5ufj88y2w5rnFkiA3i1sYe5WZKM5ha9hvkAjYdw==
age: 139268
X-Firefox-Spdy: h2