firefox.settings.services.mozilla.com/v1/
143.204.55.36200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 04 Sep 2022 13:44:10 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x19mLbhW2rdK-xtUdIW7YiMR_nh-dmCy2AKJmu21ELN__otI-En5yg==
Age: 553
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d931e0142ef5ffe9cdb4c4c6bfcb9bc9
d9c4caf525e8926b042a14f38d374cc4033ed768
f610984fb0a75b3a31424faa860cbc8172c7f21804df1dc14fbb685b7c456f29
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F610984FB0A75B3A31424FAA860CBC8172C7F21804DF1DC14FBB685B7C456F29"
Last-Modified: Sat, 03 Sep 2022 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5121
Expires: Sun, 04 Sep 2022 15:18:44 GMT
Date: Sun, 04 Sep 2022 13:53:23 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 04 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 142be88a35733307a5e7de05da0a20b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: rb0h6cauahdzOt7apSiEyCB1-wnD_47kP81NHNJ3W3ZAD_KfVq-Rlw==
age: 45486
X-Firefox-Spdy: h2
www.kgia-ks.com/
199.34.228.57301 Moved Permanently 342 B IP 199.34.228.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash a979287c491e9a8746506f94327b0905
aa0edfa185872245a6d2d91d117840b30f076f97
70ac8b60d100e4da6d40c156f660b7b7b34149347fab32c193f0f4588ad10dc6
GET / HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 04 Sep 2022 13:53:23 GMT
Server: Apache
Set-Cookie: is_mobile=0; path=/; domain=www.kgia-ks.com
Vary: X-W-SSL,User-Agent
Location: https://www.kgia-ks.com/
X-Host: grn94.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 342
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 04 Sep 2022 13:53:23 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.36200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.36:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 04 Sep 2022 13:38:16 GMT
Expires: Sun, 04 Sep 2022 13:59:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 277d0e3af1ffdcb1ee40b7dc9f040146.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: XvaVDdzhlEbXEuVRa4qeTBFSNB5HXrSK-nBr-R40tHjnwJrPUHvGuw==
Age: 907
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 0c9ef241a939d11c91625dce8229df6e
65c18f7cfcde1e62defd0ac0ae3a52cc5723b30e
956896061e8233158e0ade846d60a3b3c7afa73d92a9c09f3d5564cf898bf00a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "956896061E8233158E0ADE846D60A3B3C7AFA73D92A9C09F3D5564CF898BF00A"
Last-Modified: Sat, 03 Sep 2022 13:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21550
Expires: Sun, 04 Sep 2022 19:52:33 GMT
Date: Sun, 04 Sep 2022 13:53:23 GMT
Connection: keep-alive
www.kgia-ks.com/
199.34.228.57200 OK 16 kB IP 199.34.228.57:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (39592)
Hash 524115e30aa6eb59a3aa5c26875fab29
25d50d45c6e8a870ab703e1381f2ed85620e8a05
35495ab562a9edef6fe61c712069eaf8a41960f46866a17972c1cb2f9834f7bf
GET / HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 13:53:24 GMT
Server: Apache
Vary: X-W-SSL,Accept-Encoding,User-Agent
Set-Cookie: is_mobile=0; path=/; domain=www.kgia-ks.com
language=en; expires=Sun, 18-Sep-2022 13:53:24 GMT; Max-Age=1209600; path=/
Cache-Control: private
ETag: W/"125c790b36bca8093bf06a9e2543c705-gzip"
Content-Encoding: gzip
X-Host: blu82.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 16107
Keep-Alive: timeout=10, max=58
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 77d035f38a45e8a1ec30d5fe9611880b
01cf34de95257da64dac90edf5a86203f1160271
7dc687d6bb1679ba5567e58b4f8c1e78766e7ee36273ba7f62068c595d57f7f3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5249
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Last-Modified: Sun, 04 Sep 2022 12:25:55 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1651866883&
151.101.85.46200 OK 33 kB URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1651866883&
IP 151.101.85.46:0
File type HTML document, Unicode text, UTF-8 text, with very long lines (64997)
Hash 40ee71f2f2de93b9561845efa9a0cbbc
13451e3fb165d1ad524d9863d8344eab4a2fe353
41a33daf28fc89ce06f3c6a6029d078c20a0f42f07d6ec3dc7127d206dcec5fe
GET /js/lang/en/stl.js?buildTime=1651866883& HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 23 Aug 2022 17:51:19 GMT
etag: "63051397-2c44e"
expires: Wed, 07 Sep 2022 08:45:11 GMT
cache-control: max-age=1209600
x-host: blu142.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 968892
x-served-by: cache-sjc10049-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 4
x-timer: S1662299604.415386,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 32802
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/commerce-core.js?buildTime=1651866883
151.101.85.46200 OK 17 kB URL HTTP/2 cdn2.editmysite.com/js/site/commerce-core.js?buildTime=1651866883
IP 151.101.85.46:0
File type ASCII text, with very long lines (32011)
Hash e32a0ae988b9f1c9de6f0f70bfa0ffbd
c2e9ad2d183fa12c63df33521a919ad9eb0b44cb
fb4389e623d2a4a9b1d7be60bb37b99e71294a39fbfee8f7d9db5f68f67d0ec8
GET /js/site/commerce-core.js?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Thu, 18 Aug 2022 16:14:12 GMT
etag: "62fe6554-f57e"
expires: Mon, 05 Sep 2022 11:35:26 GMT
cache-control: max-age=1209600
x-host: blu135.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 1131478
x-served-by: cache-sjc10056-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662299604.415989,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 17388
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/old/fancybox.css?1651866883
151.101.85.46200 OK 1.2 kB URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1651866883
IP 151.101.85.46:0
File type ASCII text, with very long lines (3910)
Hash b644e92258f4c7c0b4270047652d1e60
93734d52ee9e86a768159e514076051813c39cd9
29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907
GET /css/old/fancybox.css?1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 29 Aug 2022 23:13:57 GMT
etag: "630d4835-f47"
expires: Tue, 13 Sep 2022 10:28:01 GMT
cache-control: max-age=1209600
x-host: grn133.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 444324
x-served-by: cache-sjc10028-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 3, 2
x-timer: S1662299604.418280,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 1218
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn2.editmysite.com/css/site_membership.css?buildTime=1651866883
151.101.85.46200 OK 11 kB URL HTTP/2 cdn2.editmysite.com/css/site_membership.css?buildTime=1651866883
IP 151.101.85.46:0
File type Unicode text, UTF-8 text, with very long lines (65460), with no line terminators
Hash 2c6df0e79227a7b5092ea87ec3e02e26
fbffc930ad527fdc1fa712bd4986d98ed29467bb
b948bc1c5c741e8d4ba78a9334e5be9d1d503492b4e6c2ea2c8dc23470104373
GET /css/site_membership.css?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Tue, 30 Aug 2022 19:50:17 GMT
etag: W/"630e69f9-12199"
expires: Wed, 14 Sep 2022 09:56:41 GMT
cache-control: max-age=1209600
x-host: grn83.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 359803
x-served-by: cache-sjc10049-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662299604.421965,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 10785
X-Firefox-Spdy: h2
cdn2.editmysite.com/css/sites.css?buildTime=1651866883
151.101.85.46200 OK 30 kB URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1651866883
IP 151.101.85.46:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d10158b22b553f723d99dc78eaee6390
80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6
939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e
GET /css/sites.css?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/css
last-modified: Mon, 22 Aug 2022 20:43:15 GMT
etag: W/"6303ea63-347ac"
expires: Tue, 06 Sep 2022 07:41:12 GMT
cache-control: max-age=1209600
x-host: grn96.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 1059132
x-served-by: cache-sjc10082-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2
x-timer: S1662299604.418007,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 29746
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-membership-site.js?buildTime=1651866883
151.101.85.46200 OK 27 kB URL HTTP/2 cdn2.editmysite.com/js/site/main-membership-site.js?buildTime=1651866883
IP 151.101.85.46:0
File type ASCII text, with very long lines (32007)
Hash bfef4e8e43513f50fec5f5089fecb596
d5d4682830e6b4e411808f3858d00327c4f3f289
5e25e899214cefcbab913246dcaef601475e142ac7d3ffc785f44b991f543fce
GET /js/site/main-membership-site.js?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 22 Aug 2022 20:43:39 GMT
etag: "6303ea7b-19348"
expires: Tue, 06 Sep 2022 09:10:32 GMT
cache-control: max-age=1209600
x-host: blu87.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 1053772
x-served-by: cache-sjc10063-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662299604.424133,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 27201
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main.js?buildTime=1651866883
151.101.85.46200 OK 146 kB URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1651866883
IP 151.101.85.46:0
File type ASCII text, with very long lines (32147)
Size 146 kB (146400 bytes)
Hash 81b8673c5d3aa3ab8c0574f2a8f0e3b4
2e0661bc7907d9e2703b3347c3fec579f0aef5d6
0e981f4de6287406ce261fddea24aa05ded4b6a8c4c07283c363c1502071cf40
GET /js/site/main.js?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 23:14:16 GMT
etag: "630d4848-74804"
expires: Tue, 13 Sep 2022 11:32:18 GMT
cache-control: max-age=1209600
x-host: grn69.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 440466
x-served-by: cache-sjc10020-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662299604.432811,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 146400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
100.20.30.105101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 100.20.30.105:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: LZ23pZOj4G5Fl9LcWQ145Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: z3eDguWqhq5OkuF7N7QwYZmRyLc=
ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
216.58.207.202200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 216.58.207.202:0
File type ASCII text, with very long lines (65483)
Hash a54a444f20643b131117dc2112cca05f
074964746b12ff1d30f7656310d6154ae1cc98b5
aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33593
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 07:47:50 GMT
expires: Thu, 31 Aug 2023 07:47:50 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 367534
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 9439a7cde73fea464c1463febdda0556
6a0030d4f26b2e9658700708c82e7ce6120ce93c
c3a5a489f4ef8c8cce54dbd819c5cf573740317ea3718ccd6804a03374739199
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kgia-ks.com/files/templateArtifacts.js?1652105957
199.34.228.57200 OK 3.2 kB URL HTTP/1.1 www.kgia-ks.com/files/templateArtifacts.js?1652105957
IP 199.34.228.57:0
File type HTML document, ASCII text, with very long lines (2943)
Hash 42d7de4855289978ab87af4c84606fab
ea27ac7eee05428080b9fad15ebe0db1024b9b58
a2a58642519c93a10f937d8a84549395361d8db1239be8bbd67532c57fe28aa9
GET /files/templateArtifacts.js?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:24 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
Vary: Accept-Encoding
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Origin: *
X-Host: grn139.sf2p.intern.weebly.net
Content-Encoding: gzip
cdn2.editmysite.com/js/wsnbn/snowday262.js
151.101.85.46200 OK 26 kB URL HTTP/2 cdn2.editmysite.com/js/wsnbn/snowday262.js
IP 151.101.85.46:0
File type ASCII text, with very long lines (2512)
Hash 234327230add9a5a5d61a48829ea4565
7966cc0e4bd76f88ff193c8a99a067de804b7129
bb696c58d9ae5fa635b3ff22efdf60de9ac2f8ef9df5e2f2d58dd5f8dc99df75
GET /js/wsnbn/snowday262.js HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Tue, 30 Aug 2022 19:50:08 GMT
etag: "630e69f0-124fe"
expires: Thu, 15 Sep 2022 08:38:41 GMT
cache-control: max-age=1209600
x-host: grn123.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 278084
x-served-by: cache-sjc10034-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 2732
x-timer: S1662299605.903905,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 25752
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98125354dbaa891018a9429a7aae3ea1
a692cc9a073c9666971db41444342fc9d7dab2e2
771b96e4fb485d1ef041ee20fc060bb5b4b521043ec7a51ceaccefcbe837bd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98125354dbaa891018a9429a7aae3ea1
a692cc9a073c9666971db41444342fc9d7dab2e2
771b96e4fb485d1ef041ee20fc060bb5b4b521043ec7a51ceaccefcbe837bd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98125354dbaa891018a9429a7aae3ea1
a692cc9a073c9666971db41444342fc9d7dab2e2
771b96e4fb485d1ef041ee20fc060bb5b4b521043ec7a51ceaccefcbe837bd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:24 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.163200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kgia-ks.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 29 Aug 2022 18:53:20 GMT
expires: Tue, 29 Aug 2023 18:53:20 GMT
cache-control: public, max-age=31536000
age: 500404
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Titillium+Web:400,300,300italic,200,200italic,700,400italic,700italic&subset=latin,latin-ext
142.250.74.10200 OK 13 kB URL HTTP/2 fonts.googleapis.com/css?family=Titillium+Web:400,300,300italic,200,200italic,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.10:0
Hash e11ddc353a681c85587201e8f3093f27
1acbd3352d98af39a4355136e04361a8782c05c7
f2b6834dc901ef11d5ca3559a81dc69a4410e1ee9769d0652cbb6b41fdb06afc
GET /css?family=Titillium+Web:400,300,300italic,200,200italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 13:53:24 GMT
date: Sun, 04 Sep 2022 13:53:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
142.250.74.163200 OK 12 kB URL HTTP/2 fonts.gstatic.com/s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 12372, version 1.0\012- data
Hash 0ef99cf07a2a261ab43d5dc1937ffb27
bd39f9cd13ef2a6f912dcba8fa916fc67b4a19d9
557f6d0883db85be712c3a77baa38875ddf99ecbdfd6fec98e5c0b1f7a0e1532
GET /s/titilliumweb/v15/NaPecZTIAOhVxoMyOr9n_E7fdMPmDQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.kgia-ks.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12372
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 31 Aug 2022 19:28:22 GMT
expires: Thu, 31 Aug 2023 19:28:22 GMT
cache-control: public, max-age=31536000
age: 325503
last-modified: Wed, 27 Apr 2022 16:19:22 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 98125354dbaa891018a9429a7aae3ea1
a692cc9a073c9666971db41444342fc9d7dab2e2
771b96e4fb485d1ef041ee20fc060bb5b4b521043ec7a51ceaccefcbe837bd4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kgia-ks.com/uploads/2/7/0/2/27029408/nagiaofficiallogo_orig.gif
199.34.228.57200 OK 38 kB URL HTTP/1.1 www.kgia-ks.com/uploads/2/7/0/2/27029408/nagiaofficiallogo_orig.gif
IP 199.34.228.57:0
File type GIF image data, version 89a, 242 x 250\012- data
Hash cd3856612835d9496860279f11e6ffd8
69c18fc0c5778fc699fc823011df6b6f19b9cc75
27e07d7f007417d3c6bdda323da16849b7a37d404e195e8ddbc286d2e1a94d44
GET /uploads/2/7/0/2/27029408/nagiaofficiallogo_orig.gif HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:24 GMT
Content-Type: image/gif
Content-Length: 38263
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:31:34 GMT
x-rgw-object-type: Normal
ETag: "cd3856612835d9496860279f11e6ffd8"
x-amz-request-id: tx000000000000032abec8f-00631030a7-c03521c-sfo1
X-Storage-Bucket: z27e0
X-Storage-Object: 27e07d7f007417d3c6bdda323da16849b7a37d404e195e8ddbc286d2e1a94d44
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/uploads/2/7/0/2/27029408/editor/dreamstime-s-39726535.jpeg?1506518881
199.34.228.57200 OK 22 kB URL HTTP/1.1 www.kgia-ks.com/uploads/2/7/0/2/27029408/editor/dreamstime-s-39726535.jpeg?1506518881
IP 199.34.228.57:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 244x244, components 3\012- data
Hash 35919932a844b8c131d147bda21bf592
4bcf3e1ab2dbfa9d0c1178ba2722c98caacd3d96
66fe70ca4495922ddb4fcba36cbd3343bc7776f76ba9432c9c6136ab9cd41b8b
GET /uploads/2/7/0/2/27029408/editor/dreamstime-s-39726535.jpeg?1506518881 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:24 GMT
Content-Type: image/jpeg
Content-Length: 21704
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:31:29 GMT
x-rgw-object-type: Normal
ETag: "35919932a844b8c131d147bda21bf592"
x-amz-request-id: tx00000000000003509e3fe-006313c370-c0351b0-sfo1
X-Storage-Bucket: z66fe
X-Storage-Object: 66fe70ca4495922ddb4fcba36cbd3343bc7776f76ba9432c9c6136ab9cd41b8b
X-Host: grn84.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/files/theme/banner-footer.png?1652105957
199.34.228.57200 OK 117 B URL HTTP/1.1 www.kgia-ks.com/files/theme/banner-footer.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 4 x 4, 8-bit grayscale, non-interlaced\012- data
Hash 3e18ad51fdcfe1195e5d4ab601a205e7
075ec3209fcbb42eaef72dff48ea492cfde3afbf
3675bc57494d2b10d910e9a82b7b67f6898c9bece0d98abef5c6c88d6005264b
GET /files/theme/banner-footer.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 117
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:28 GMT
ETag: "3e18ad51fdcfe1195e5d4ab601a205e7"
x-amz-request-id: tx0000000000000023c7c32-006165c4d3-1ff7556-las
X-Storage-Bucket: z3675
X-Storage-Object: 3675bc57494d2b10d910e9a82b7b67f6898c9bece0d98abef5c6c88d6005264b
X-Host: blu49.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/files/theme/top-bar.png?1652105957
199.34.228.57200 OK 911 B URL HTTP/1.1 www.kgia-ks.com/files/theme/top-bar.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 35 x 34, 8-bit colormap, non-interlaced\012- data
Hash 742a55eafae43d18ea8891ad13367a47
d3b2672ae31d779a7cc8e23f6e397e533dd3badf
d004a5abd4dde78db66159f6a73ca822d78ac17ddd0d76fc9f1486a445d063d4
GET /files/theme/top-bar.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 911
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:39 GMT
x-rgw-object-type: Normal
ETag: "742a55eafae43d18ea8891ad13367a47"
x-amz-request-id: tx000000000000002035d66-0061a80f0a-a9f1b25-sfo1
X-Storage-Bucket: zd004
X-Storage-Object: d004a5abd4dde78db66159f6a73ca822d78ac17ddd0d76fc9f1486a445d063d4
X-Host: grn77.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/uploads/2/7/0/2/27029408/published/dreamstime-s-25756634.jpeg?1506518909
199.34.228.57200 OK 13 kB URL HTTP/1.1 www.kgia-ks.com/uploads/2/7/0/2/27029408/published/dreamstime-s-25756634.jpeg?1506518909
IP 199.34.228.57:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 243x243, components 3\012- data
Hash 9d62a46243617c4461f2a60750851a65
1a780b42885dceefea96b57023b848d1ee3e4869
cb4ccba736a0df8629356c2ed7b739ddf3217d718ae81b8787d3b4b2ee2e7ee5
GET /uploads/2/7/0/2/27029408/published/dreamstime-s-25756634.jpeg?1506518909 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/jpeg
Content-Length: 12754
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:31:29 GMT
x-rgw-object-type: Normal
ETag: "9d62a46243617c4461f2a60750851a65"
x-amz-request-id: tx0000000000000347bde4e-0063138a11-bfe27ea-sfo1
X-Storage-Bucket: zcb4c
X-Storage-Object: cb4ccba736a0df8629356c2ed7b739ddf3217d718ae81b8787d3b4b2ee2e7ee5
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash b04e90a5fd52a3ca5e756fda07449cb2
a5743801960828104234a74d9af9c05b2ae6036a
a27e675d07676939b7b1e4f3a48628180e8fcc5a8b1c963eec2aba7461314cae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=100957
Date: Sun, 04 Sep 2022 13:53:25 GMT
Etag: "6313840c-1d7"
Expires: Mon, 05 Sep 2022 17:56:02 GMT
Last-Modified: Sat, 03 Sep 2022 16:42:52 GMT
Server: ECS (nyb/1DD2)
X-Cache: Miss from cloudfront
Via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: IbwJM6mtvXw-5DQG68zsJmFzEwTpVPv-FVlEvvSEP4MzQzGYeA8C3w==
Age: 4390
ocsp.sca1b.amazontrust.com/
54.230.245.39200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.39:0
Hash b04e90a5fd52a3ca5e756fda07449cb2
a5743801960828104234a74d9af9c05b2ae6036a
a27e675d07676939b7b1e4f3a48628180e8fcc5a8b1c963eec2aba7461314cae
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 04 Sep 2022 13:53:25 GMT
Last-Modified: Sun, 04 Sep 2022 13:15:40 GMT
Server: ECS (nyb/1D22)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: wxUJnwVVNoRkSxZ5o5jLQbFMtvFmZA3hNnXZgWI7yUPtvwLohBWw7g==
Age: 2265
www.kgia-ks.com/uploads/2/7/0/2/27029408/published/dreamstime-s-14165761.jpeg?1506519257
199.34.228.57200 OK 24 kB URL HTTP/1.1 www.kgia-ks.com/uploads/2/7/0/2/27029408/published/dreamstime-s-14165761.jpeg?1506519257
IP 199.34.228.57:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 532x530, components 3\012- data
Hash 90ec76379c2469fcc4c356eea08cdbe1
4ae7c4fd165736db0a89a4f667f4bdf07384e139
25e845021821be9779620b8d93fe0c3f2d7017e058ae2f2ffe989d6e30363e8f
GET /uploads/2/7/0/2/27029408/published/dreamstime-s-14165761.jpeg?1506519257 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/jpeg
Content-Length: 23922
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:31:29 GMT
x-rgw-object-type: Normal
ETag: "90ec76379c2469fcc4c356eea08cdbe1"
x-amz-request-id: tx000000000000034de2d54-0063138a10-c0351b0-sfo1
X-Storage-Bucket: z25e8
X-Storage-Object: 25e845021821be9779620b8d93fe0c3f2d7017e058ae2f2ffe989d6e30363e8f
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/files/theme/input-bg.png?1652105957
199.34.228.57200 OK 1.5 kB URL HTTP/1.1 www.kgia-ks.com/files/theme/input-bg.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 159 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash 9d54bd536c07aec98c5d1b342f51f93a
b5b8eaa6005bb2be3f9f22dda6f03d5de6167de0
40e62a5bb12119215fae414aa851d9afcccc6475909c1b82660457c3493cdd83
GET /files/theme/input-bg.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 1485
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:38 GMT
x-rgw-object-type: Normal
ETag: "9d54bd536c07aec98c5d1b342f51f93a"
x-amz-request-id: tx0000000000000302b794d-00630d2c8e-c033918-sfo1
X-Storage-Bucket: z40e6
X-Storage-Object: 40e62a5bb12119215fae414aa851d9afcccc6475909c1b82660457c3493cdd83
X-Host: grn84.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/files/theme/submit-bg.png?1652105957
199.34.228.57200 OK 1.7 kB URL HTTP/1.1 www.kgia-ks.com/files/theme/submit-bg.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 21 x 26, 8-bit/color RGBA, non-interlaced\012- data
Hash cceeb3260f0008dacbe039861de4e93b
c32e3c2967e0634ab0ec6fcf9c646af4768b5efd
7188873e1df1fa62ab8f0f72e0a3140424f0d3ae4503021dd80caaf19921fc9c
GET /files/theme/submit-bg.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 1661
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:38 GMT
ETag: "cceeb3260f0008dacbe039861de4e93b"
x-amz-request-id: tx00000000000001d7bda36-00615a3138-a51841d-sfo1
X-Storage-Bucket: z7188
X-Storage-Object: 7188873e1df1fa62ab8f0f72e0a3140424f0d3ae4503021dd80caaf19921fc9c
X-Host: grn46.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/files/theme/social-icons.png?1652105957
199.34.228.57200 OK 22 kB URL HTTP/1.1 www.kgia-ks.com/files/theme/social-icons.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 357 x 102, 8-bit/color RGBA, non-interlaced\012- data
Hash 28b8cf6d7e55cbdaf196818248abf762
6a9dca73c8e8071a4df8fae9023ec9c93d88dff4
5f50156434b032aba72a29fa13becba0dd8d7f9ea76b732404d4389eca826fef
GET /files/theme/social-icons.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 22294
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:38 GMT
x-rgw-object-type: Normal
ETag: "28b8cf6d7e55cbdaf196818248abf762"
x-amz-request-id: tx0000000000000312e0c0d-00630e8ee2-c0351c8-sfo1
X-Storage-Bucket: z5f50
X-Storage-Object: 5f50156434b032aba72a29fa13becba0dd8d7f9ea76b732404d4389eca826fef
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/uploads/2/7/0/2/27029408/published/dreamstime-s-27792854.jpeg?1506518825
199.34.228.57200 OK 16 kB URL HTTP/1.1 www.kgia-ks.com/uploads/2/7/0/2/27029408/published/dreamstime-s-27792854.jpeg?1506518825
IP 199.34.228.57:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 241x240, components 3\012- data
Hash 765e7c76dffb54186e567fb46e8d6830
61c62fd576f888e4d76c8b9cbdb5ac547b0be7a9
10089570e1760e9427ae94ae4ce20b92c18bf7e599c629d14ac28ff17b0d6a31
GET /uploads/2/7/0/2/27029408/published/dreamstime-s-27792854.jpeg?1506518825 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/jpeg
Content-Length: 15817
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:31:30 GMT
x-rgw-object-type: Normal
ETag: "765e7c76dffb54186e567fb46e8d6830"
x-amz-request-id: tx0000000000000352d97b0-006314add5-c0351c8-sfo1
X-Storage-Bucket: z1008
X-Storage-Object: 10089570e1760e9427ae94ae4ce20b92c18bf7e599c629d14ac28ff17b0d6a31
X-Host: blu71.sf2p.intern.weebly.net
Accept-Ranges: bytes
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4820
Expires: Sun, 04 Sep 2022 15:13:45 GMT
Date: Sun, 04 Sep 2022 13:53:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4820
Expires: Sun, 04 Sep 2022 15:13:45 GMT
Date: Sun, 04 Sep 2022 13:53:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4820
Expires: Sun, 04 Sep 2022 15:13:45 GMT
Date: Sun, 04 Sep 2022 13:53:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4820
Expires: Sun, 04 Sep 2022 15:13:45 GMT
Date: Sun, 04 Sep 2022 13:53:25 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b15f3f14bd92b7a544ec2347e6810c7b
dd55fd8396d796082edabb5ab6e2d7fb3b51b731
87c27c4b0288f31faa405ba5247767d1f299938551bd284212ee487dbb0deb63
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "87C27C4B0288F31FAA405BA5247767D1F299938551BD284212EE487DBB0DEB63"
Last-Modified: Fri, 02 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4820
Expires: Sun, 04 Sep 2022 15:13:45 GMT
Date: Sun, 04 Sep 2022 13:53:25 GMT
Connection: keep-alive
www.kgia-ks.com/files/theme/nav-bg.png?1652105957
199.34.228.57200 OK 2.2 kB URL HTTP/1.1 www.kgia-ks.com/files/theme/nav-bg.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 31 x 125, 8-bit/color RGB, non-interlaced\012- data
Hash fcc0a69ce70177decb46f5cc38429a85
d20dc4f82e3dac97c4aa77eedd567948ff440888
356ca2205ebb31b860ae18b12481120b0aee438858be14ec0b30a520c2daac55
GET /files/theme/nav-bg.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 2186
Connection: keep-alive
Last-Modified: Sun, 26 Jul 2020 06:23:51 GMT
x-rgw-object-type: Normal
ETag: "fcc0a69ce70177decb46f5cc38429a85"
x-amz-request-id: tx000000000000030deff05-00630db357-c0351b0-sfo1
X-Storage-Bucket: z356c
X-Storage-Object: 356ca2205ebb31b860ae18b12481120b0aee438858be14ec0b30a520c2daac55
X-Host: grn127.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/files/theme/hover-bar-red.png?1652105957
199.34.228.57200 OK 933 B URL HTTP/1.1 www.kgia-ks.com/files/theme/hover-bar-red.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 1 x 3, 8-bit/color RGB, non-interlaced\012- data
Hash 2f8c9d9ce26eedf4f07bb61fd0fc1929
d5de2770df344d7e0c22f6d956c3417c42d54832
ff64be5341c32b376b4ea660cf6d170733e58f34c4f2bf77e30c358074971b48
GET /files/theme/hover-bar-red.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 933
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:37 GMT
ETag: "2f8c9d9ce26eedf4f07bb61fd0fc1929"
x-amz-request-id: tx0000000000000023661e2-005ea48b73-10e20e2-las
X-Storage-Bucket: zff64
X-Storage-Object: ff64be5341c32b376b4ea660cf6d170733e58f34c4f2bf77e30c358074971b48
X-Host: blu14.sf2p.intern.weebly.net
Accept-Ranges: bytes
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ca50f9c56ff869b0b63ca71b1a9f8170
13b16ca74113dfd52ccf23e6bb39307fc713f984
76b85dd7e018ab4b3d4b2610f90dbca61d0f05d38a3b905fee789af131ae7538
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F514b7fbd-ae99-4219-bd03-50e907f92b7b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 14855
x-amzn-requestid: 65cf850b-227a-4318-a00e-d7cd4ef81489
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wjuGtpoAMFvvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7b1-54bc36741984491b0509d173;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:29 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: M9Y8U9vqVs1ATiPP9jLPybTJ-xwC--5oiRUpj9-imTWfh6_rmtL5Kw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:58:42 GMT
age: 57283
etag: "13b16ca74113dfd52ccf23e6bb39307fc713f984"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 0 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://www.kgia-ks.com/
Origin: https://www.kgia-ks.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 04 Sep 2022 13:53:25 GMT
content-length: 0
server: nginx
access-control-allow-origin: https://www.kgia-ks.com
access-control-allow-credentials: true
access-control-allow-headers: Content-Type, SP-Anonymous
access-control-max-age: 5
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb4b1d74f1443bc3328301ab3ae6464
2768253dacaaad6cb498c6b2eb7694208b0ce0a6
07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: e408351e-ba6c-4e55-815d-449af808282f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5yMEFBLoAMFtqg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313ca4d-13831d8572a3b3cf54a0e747;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:42:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: GFM9jerDkTPdhlUTm99E7Lpksw2ZGnV81bNVaZLvWSAiRNDNtkZi4g==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 b8c4a4ca04bb1976e020396d211bc8dc.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 21:48:07 GMT
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
age: 57918
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37a5a560-36c9-4ce4-9cd9-c63ef9dd80e0.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37a5a560-36c9-4ce4-9cd9-c63ef9dd80e0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b827f0dcea3d5bfab9139d239e9f0155
ffe21e93486c5763ae6ee17fe39c6dbb0cb3e714
de9a30cf34ccda6ee06845151a41f489b42a0f9072b481b717abef90095e3f35
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F37a5a560-36c9-4ce4-9cd9-c63ef9dd80e0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10349
x-amzn-requestid: a1564fd3-2042-449b-baa8-7e06abf02fd2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5w-6EHXIAMFQaw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c85f-26179fef7b74e89f05022fe7;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:34:23 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: RTb9HYlXQLizx__DP8Pd9FGTylC1RDwk_YoqL8ZbcFnAAu4s0EmTKQ==
via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:10:00 GMT
etag: "ffe21e93486c5763ae6ee17fe39c6dbb0cb3e714"
content-type: image/jpeg
age: 56605
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa79c31ef-8277-4472-8ef6-9ea1d733084d.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa79c31ef-8277-4472-8ef6-9ea1d733084d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5958d2ad91c698c62988bdb9256a4543
97f2c77f55f38ff6825fa7fc2ff3198bdef02517
578729554c47a75c74fb3f2d45865592291a35511e0b490b6b8cd4e72e917b73
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa79c31ef-8277-4472-8ef6-9ea1d733084d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8228
x-amzn-requestid: b107192f-7526-4c2e-8978-e4eceb93e09c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wxsE9OIAMFhqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c80a-20ca9d565d4a04126e3b41b9;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:58 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 7Lr8qT0rNXnIgRW__zB9HPkSRByNH1uHM19xDns4TLjQrC4N-3-ldA==
via: 1.1 7256fedee68a59a508800e0dda035348.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:00:58 GMT
age: 57147
etag: "97f2c77f55f38ff6825fa7fc2ff3198bdef02517"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext
142.250.74.10200 OK 7.0 kB URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext
IP 142.250.74.10:0
Hash caef1bd528897d6444707453a9ca7954
ccd490b1d2ca073d4fa9c70bcc4b15587867ae3b
82e2749deefe9d6aae5953dc76cb7e5f1e0ecf13149f4ff89e6fb9749cbe1f8c
GET /css?family=Open+Sans:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 13:53:24 GMT
date: Sun, 04 Sep 2022 13:53:24 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0eecb70391b63b662d13355e32d95ea1
5d5c724e26af57967b9a132a77d3986ba8d6ed9c
2c7f2aa1c725a5d39daf44ee746bb24b5c15aab41c67cf160814f7f87d1aacdf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09148d75-a4a3-47e6-8d91-01e8dfad4bc7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8931
x-amzn-requestid: cfc0940f-ad6a-4535-91b7-70b200af68d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wwGEVEoAMFriw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c800-5b6e6e5e3401eba533fb63df;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:32:48 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: -ASFa6a22qh9wxe5u-hQxXe9R7JSyBVFLZb6291gbrUeftSsYDXAJA==
via: 1.1 d1151317ba32afe0e6370fd69fed222e.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Sep 2022 22:31:42 GMT
etag: "5d5c724e26af57967b9a132a77d3986ba8d6ed9c"
content-type: image/jpeg
age: 55303
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.kgia-ks.com/uploads/2/7/0/2/27029408/published/kgia-logo-2017.png?1488206597
199.34.228.57200 OK 73 kB URL HTTP/1.1 www.kgia-ks.com/uploads/2/7/0/2/27029408/published/kgia-logo-2017.png?1488206597
IP 199.34.228.57:0
File type PNG image data, 206 x 180, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b282c5c81f2c3faf6c1a821d1997a01
b8f8894d7bfcd17e5b1dc27ad3d71c9ca1b65b37
e24bfb8b2826e39221ae0e881e12b0cfc3c8536abce37e77b57cea26633d6d9e
GET /uploads/2/7/0/2/27029408/published/kgia-logo-2017.png?1488206597 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png
Content-Length: 73076
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:31:30 GMT
x-rgw-object-type: Normal
ETag: "3b282c5c81f2c3faf6c1a821d1997a01"
x-amz-request-id: tx00000000000003530d6c3-006314add5-c033918-sfo1
X-Storage-Bucket: ze24b
X-Storage-Object: e24bfb8b2826e39221ae0e881e12b0cfc3c8536abce37e77b57cea26633d6d9e
X-Host: blu13.sf2p.intern.weebly.net
Accept-Ranges: bytes, bytes
www.kgia-ks.com/files/theme/body-bg.png?1652105957
199.34.228.57200 OK 3.9 kB URL HTTP/1.1 www.kgia-ks.com/files/theme/body-bg.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 69 x 399, 8-bit/color RGB, non-interlaced\012- data
Hash e1154b5a8ec8bc340a30909c8e1de8a7
ce778270e7e1cc310c96027883b37b1460335a34
ddc770a9139cbc4cbdb7ac080bad6ae46405f2126064ff6a66e26c428318a820
GET /files/theme/body-bg.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/png; charset=binary
Content-Length: 3922
Connection: keep-alive
Last-Modified: Sun, 10 May 2020 14:05:57 GMT
x-rgw-object-type: Normal
ETag: "e1154b5a8ec8bc340a30909c8e1de8a7"
x-amz-request-id: tx00000000000002572cf51-0062fc3176-c03521c-sfo1
X-Storage-Bucket: zddc7
X-Storage-Object: ddc770a9139cbc4cbdb7ac080bad6ae46405f2126064ff6a66e26c428318a820
X-Host: blu134.sf2p.intern.weebly.net
Accept-Ranges: bytes
ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
35.82.13.103200 OK 2 B URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2
IP 35.82.13.103:0
File type ASCII text, with no line terminators
Hash 444bcb3a3fcf8389296c49467f27e1d6
7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb
2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1
Host: ec.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
Content-Length: 1785
Origin: https://www.kgia-ks.com
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 04 Sep 2022 13:53:25 GMT
content-type: text/plain; charset=UTF-8
content-length: 2
server: nginx
set-cookie: sp=fa10e4d6-0a7b-4523-bbbe-eea81dbaa2fc; Expires=Mon, 04 Sep 2023 13:53:25 GMT; Domain=; Path=/; Secure; SameSite=None
p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA"
access-control-allow-origin: https://www.kgia-ks.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.google-analytics.com/ga.js
142.250.74.72200 OK 17 kB URL HTTP/2 ssl.google-analytics.com/ga.js
IP 142.250.74.72:0
File type ASCII text, with very long lines (1305)
Hash 01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d
GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Sun, 04 Sep 2022 12:29:20 GMT
expires: Sun, 04 Sep 2022 14:29:20 GMT
cache-control: public, max-age=7200
age: 5045
last-modified: Wed, 13 Apr 2022 21:02:38 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash cc6ea3e01d1d6b8c4b28ff64d3b795a7
017457c6f5a63157102485a956c667aad36d33ef
e6fe903f67363d3e92b929e274f0de7c2f6a15b6df1806198199440ed0fe221e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 04 Sep 2022 13:53:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.kgia-ks.com/favicon.ico
199.34.228.57200 OK 17 kB URL HTTP/1.1 www.kgia-ks.com/favicon.ico
IP 199.34.228.57:0
File type MS Windows icon resource - 1 icon, 64x64, 32 bits/pixel\012- data
Hash 5608d835e0413c326504da9b1dee996f
cae5dd8c125cfdf14a8a8f578b600726fc20595d
2cc941f9a908569e6176d1abb811afd8b70255628f58e4d819e953c352e43da2
GET /favicon.ico HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en; _snow_ses.b1cb=*; _snow_id.b1cb=cafa2f2a-b8fb-4820-9e1f-0633aa17921a.1662299602.1.1662299602.1662299602.f999d65f-7129-495a-a566-b7eddd912fb2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:25 GMT
Content-Type: image/vnd.microsoft.icon
Content-Length: 16958
Connection: keep-alive
Last-Modified: Wed, 13 Nov 2019 06:30:57 GMT
x-rgw-object-type: Normal
ETag: "5608d835e0413c326504da9b1dee996f"
x-amz-request-id: tx000000000000034167c8d-00631247f8-c0351b0-sfo1
X-Storage-Bucket: z2cc9
X-Storage-Object: 2cc941f9a908569e6176d1abb811afd8b70255628f58e4d819e953c352e43da2
X-Host: grn84.sf2p.intern.weebly.net
Accept-Ranges: bytes
www.kgia-ks.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
199.34.228.57200 OK 348 B URL HTTP/1.1 www.kgia-ks.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]
IP 199.34.228.57:0
File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators
Hash a944dd688c99d2901d6719be713271c0
4f5454d5d434829baf46671638610791758725d9
adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49
POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 83
Origin: https://www.kgia-ks.com
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en; _snow_ses.b1cb=*; _snow_id.b1cb=cafa2f2a-b8fb-4820-9e1f-0633aa17921a.1662299602.1.1662299602.1662299602.f999d65f-7129-495a-a566-b7eddd912fb2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 13:53:25 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: blu47.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 348
Keep-Alive: timeout=10, max=73
Connection: Keep-Alive
Content-Type: application/json
www.kgia-ks.com/ajax/api/JsonRPC/Commerce/?Commerce[Checkout::getMiniCart]
199.34.228.57200 OK 2.1 kB URL HTTP/1.1 www.kgia-ks.com/ajax/api/JsonRPC/Commerce/?Commerce[Checkout::getMiniCart]
IP 199.34.228.57:0
File type JSON data\012- , ASCII text, with very long lines (2063), with no line terminators
Hash 82351bf6a1a1efb6b922a15fb2e174d5
289181d9467faa79884266b23b7802d26613506f
04f0e68add98dbc15c643ae5e121f9406aca4450086777acefc1a79eb0983c46
POST /ajax/api/JsonRPC/Commerce/?Commerce[Checkout::getMiniCart] HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 69
Origin: https://www.kgia-ks.com
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en; _snow_ses.b1cb=*; _snow_id.b1cb=cafa2f2a-b8fb-4820-9e1f-0633aa17921a.1662299602.1.1662299602.1662299602.f999d65f-7129-495a-a566-b7eddd912fb2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 13:53:25 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
X-Host: grn68.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 2063
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: application/json
www.kgia-ks.com/ajax/api/JsonRPC/Membership/?Membership[Member::get_session_details]
199.34.228.57200 OK 263 B URL HTTP/1.1 www.kgia-ks.com/ajax/api/JsonRPC/Membership/?Membership[Member::get_session_details]
IP 199.34.228.57:0
File type JSON data\012- , ASCII text, with no line terminators
Hash e4d3f4ae336cd5e1f03ba92175634a0d
399cee3f221c9df62c16d42ef6d2f9dfbddb63b4
357ff3057ea0c07f45441cfccf348fdceae8321a762d1873009f6af57a7f62a2
POST /ajax/api/JsonRPC/Membership/?Membership[Member::get_session_details] HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 75
Origin: https://www.kgia-ks.com
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Cookie: is_mobile=0; language=en; _snow_ses.b1cb=*; _snow_id.b1cb=cafa2f2a-b8fb-4820-9e1f-0633aa17921a.1662299602.1.1662299602.1662299602.f999d65f-7129-495a-a566-b7eddd912fb2
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Sun, 04 Sep 2022 13:53:25 GMT
Server: Apache
Vary: X-W-SSL,User-Agent
Set-Cookie: site_session=6314add5eb3379.78032179; path=/
language=en; expires=Sun, 18-Sep-2022 13:53:25 GMT; Max-Age=1209600; path=/
X-Host: grn22.sf2p.intern.weebly.net
X-UA-Compatible: IE=edge,chrome=1
Content-Length: 263
Keep-Alive: timeout=10, max=71
Connection: Keep-Alive
Content-Type: application/json
www.kgia-ks.com/files/theme/button_red.png?1652105957
199.34.228.57200 OK 19 kB URL HTTP/1.1 www.kgia-ks.com/files/theme/button_red.png?1652105957
IP 199.34.228.57:0
File type PNG image data, 500 x 287, 8-bit/color RGBA, non-interlaced\012- data
Hash 3b0a9f43891024d851c975d615630627
63669bb318de53d7e496b158e13ee3f64a9be5c7
044a96600c41c1a938197f48230b94e327881d281b6df772901868e0278a3da8
GET /files/theme/button_red.png?1652105957 HTTP/1.1
Host: www.kgia-ks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/files/main_style.css?1652105957
Cookie: is_mobile=0; language=en; _snow_ses.b1cb=*; _snow_id.b1cb=cafa2f2a-b8fb-4820-9e1f-0633aa17921a.1662299602.1.1662299602.1662299602.f999d65f-7129-495a-a566-b7eddd912fb2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 04 Sep 2022 13:53:26 GMT
Content-Type: image/png; charset=binary
Content-Length: 18589
Connection: keep-alive
Last-Modified: Mon, 13 Apr 2020 18:30:35 GMT
x-rgw-object-type: Normal
ETag: "3b0a9f43891024d851c975d615630627"
x-amz-request-id: tx000000000000001f626cc-006284bd1e-b9fbc64-sfo1
X-Storage-Bucket: z044a
X-Storage-Object: 044a96600c41c1a938197f48230b94e327881d281b6df772901868e0278a3da8
X-Host: blu14.sf2p.intern.weebly.net
Accept-Ranges: bytes
cdn2.editmysite.com/js/site/main-commerce-browse.js?buildTime=1651866883
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main-commerce-browse.js?buildTime=1651866883
IP 151.101.85.46:0
GET /js/site/main-commerce-browse.js?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 23:14:16 GMT
etag: "630d4848-f92d"
expires: Tue, 13 Sep 2022 08:43:59 GMT
cache-control: max-age=1209600
x-host: grn18.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 450566
x-served-by: cache-sjc10060-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 2
x-timer: S1662299604.416125,VS0,VE0
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 16977
X-Firefox-Spdy: h2
cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1651866883
151.101.85.46200 OK 0 B URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1651866883
IP 151.101.85.46:0
Analyzer Verdict Alert fortinet Malware
GET /js/site/main-customer-accounts-site.js?buildTime=1651866883 HTTP/1.1
Host: cdn2.editmysite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript
last-modified: Mon, 29 Aug 2022 23:14:16 GMT
etag: "630d4848-8250f"
expires: Tue, 13 Sep 2022 08:33:05 GMT
cache-control: max-age=1209600
x-host: grn50.sf2p.intern.weebly.net
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 04 Sep 2022 13:53:24 GMT
age: 451219
x-served-by: cache-sjc10079-SJC, cache-bma1629-BMA
x-cache: HIT, HIT
x-cache-hits: 1, 1
x-timer: S1662299604.416459,VS0,VE1
vary: Accept-Encoding
access-control-allow-origin: *
content-length: 158975
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,300,400,700
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400italic,700italic,300,400,700
IP 142.250.74.10:0
GET /css?family=Open+Sans:400italic,700italic,300,400,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.kgia-ks.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 04 Sep 2022 13:53:24 GMT
date: Sun, 04 Sep 2022 13:53:24 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2