firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 2d12f67fe57a87e7366b662d153a5582
d7b02d81cc74f24a251d9363e0f4b0a149264ec1
73c273c0b5a2de3cb970b8e8c187999d3b55e760dc7766dab4bb76428d19b551
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Backoff, Retry-After, Content-Length
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 23 Sep 2022 09:14:07 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: M1AMGePQ5On1qLXUo3-TFJPha0SQB3TAItAKS3U9cw8QzuHR_DVwRw==
Age: 3162
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 09a973de929ab7452edc342c780d3668
3f14f6e0a36f76863c0aea6fb561c266404a7ea3
e82ca5f310e37267fbf792427747e65c2bb35e684d3f629c0aa302f688bc4f80
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E82CA5F310E37267FBF792427747E65C2BB35E684D3F629C0AA302F688BC4F80"
Last-Modified: Fri, 23 Sep 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18451
Expires: Fri, 23 Sep 2022 15:14:20 GMT
Date: Fri, 23 Sep 2022 10:06:49 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.110200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.110:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Fri, 23 Sep 2022 04:35:15 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 dbfaae0db03f11cf713bbcbdb25be4a2.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7KEkET_v19QxENkg6Pe1IDEelLXBa3EmvYEPXe6qWTEjMO_2zjojEw==
age: 19895
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 10:06:49 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
islandhouse-470927714.phsafarilodge.co.zm/
196.12.12.102200 OK 628 B URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/
IP 196.12.12.102:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (520)
Hash aaea028b0b8e7e611680cc467f92a42c
0be8fdf35694c64a93773706b5be63c85322966a
ccd6446b95ac8efc2301924c4932186d990f1a5fd2d4c028740b21a0e0388b90
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET / HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:49 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 628
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Fri, 23 Sep 2022 10:03:22 GMT
Expires: Fri, 23 Sep 2022 10:23:11 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: lk_Enj_y_Pje0D1mJ4jCxPZB1KE404Mi7KgrulZfG1jMiWmyM4P7oA==
Age: 208
islandhouse-470927714.phsafarilodge.co.zm/config/init.js
196.12.12.102200 OK 541 B URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/config/init.js
IP 196.12.12.102:0
Hash 3c10cc4a338b86d7bb842e867b5e937a
d3b5c2f835d6a4186221ffd094f96bbcd77b0ccf
44c09dc324f237f3e84f95cea400f78951b8b311a4c2c1e93e4ae5b41debc692
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /config/init.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:50 GMT
Server: Apache
Last-Modified: Wed, 14 Sep 2022 15:56:32 GMT
Accept-Ranges: bytes
Content-Length: 541
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f714931cf870bfa33815fd259b7246fd
38e411ef8ca1b31ead8415ee5f21d98bd9653a86
897675130112daff8bdf6fa25b56faa4b9fdb367daca2b2645ed65c83a2e423f
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2930
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:50 GMT
Last-Modified: Fri, 23 Sep 2022 09:18:00 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.215.91.121101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.215.91.121:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xwCnmUw5lw5QmhspL8+NTQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wEwilXwk9yvWjmQRe1zTxY8bHJs=
islandhouse-470927714.phsafarilodge.co.zm/assets/index.f7638a83.js
196.12.12.102200 OK 118 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/index.f7638a83.js
IP 196.12.12.102:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 118 kB (117465 bytes)
Hash 4eee004480b626940de1f32527420bd8
07de6f5c7cfee0b18d847d71179de9dd42ef68af
49964d3ed404cd4fd8d96106bf5f0f36f0c9193e93d6ab27641034f544345ad4
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/index.f7638a83.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:50 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 117465
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/index.52370c57.css
196.12.12.102200 OK 461 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/index.52370c57.css
IP 196.12.12.102:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 461 kB (460874 bytes)
Hash beda83114cdcee45a94aa52b49939d9e
9f7c5781db4a9eb75ffc755f031f1cb314d49961
8c7ec369b28fac3aec396efa81e48671c522b55a43c16aba0ae4add527c60bde
Analyzer Verdict Alert openphish Adobe Inc.
GET /assets/index.52370c57.css HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:50 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 460874
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 23 Sep 2022 12:33:17 GMT
Date: Fri, 23 Sep 2022 10:06:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 23 Sep 2022 12:33:17 GMT
Date: Fri, 23 Sep 2022 10:06:51 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ebb267e443b81854ef9a01b3eb6489d
b932e9e5679da5a9160da5429458041765509b52
4ac5aa5b4fb4a85282b825c5c0ed7b1aaf2b39ffe77d69dec5123a84709f3fe2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4AC5AA5B4FB4A85282B825C5C0ED7B1AAF2B39FFE77D69DEC5123A84709F3FE2"
Last-Modified: Tue, 20 Sep 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8786
Expires: Fri, 23 Sep 2022 12:33:17 GMT
Date: Fri, 23 Sep 2022 10:06:51 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b877ead4a15221fdd278ef27f281a7ec
48c10714503e8dfdd3e3c3d39b919ef2792f0d15
f4a1d5abcfa4092828e004b6c0605a7a24e4133d275312f613dceff875971daf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6ac88c56-4515-47b4-9c1e-7745782bd306.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10127
x-amzn-requestid: 456e3c6a-e173-433e-8d54-d787cb50b7e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0sHmCoAMFVSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-7a07b336571396533e48b4cb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: KKYAef15NoI3It5UfVcqhPx50Fr6IK7O2VFasuAILVN9PP8CH1_7Ng==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:58:25 GMT
age: 43706
etag: "48c10714503e8dfdd3e3c3d39b919ef2792f0d15"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
34.120.237.76200 OK 8.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 02a682b4703bb9d6381c762726c05531
1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54
fb672de67420a239fe5d7e2588f640150ed29883fe2a46ded160385e3265004c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffccf6ade-04f7-4d15-943c-bde343725d94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8029
x-amzn-requestid: 2fc5c63d-5cef-42f4-a6d2-b55f51c57af6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0tHjGoAMFcFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4ea-73f2f78a2d1ca8fc666d2571;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 5ur411n5hU7eWb68iExZCUrhpCybRyTBHCi72ra8dS2kd3UhW8sb1A==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 21:59:00 GMT
age: 43671
etag: "1d7f7b4cfdd7425213a21afdd1d5a5d8d11d0e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8ea5f06ad31f0cedd2cb5c6df82f35f4
60a83a1618ffae06e49ca3002bac1db9980dcfe8
5f6a4cb92c016ef0f229b11d727e9680a15b10782b5bfe9e66ad9d100b458d8d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb77ad616-c829-40b4-8b70-2be46252d64c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10279
x-amzn-requestid: 2ff2c324-51c5-484d-b049-3eacbdc1024a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Yyj8THHdoAMF44g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632a804e-0f4da4ba2a84679b3fd297fc;Sampled=0
x-amzn-remapped-date: Wed, 21 Sep 2022 03:09:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 6uqNnpll2kgC_0_t5e9yp0AgFAvprQq_GF_jgwj2sX2TE9S1l023Aw==
via: 1.1 c21a0d27ceec21e266c9f962d0349438.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Fri, 23 Sep 2022 03:58:47 GMT
age: 22084
etag: "60a83a1618ffae06e49ca3002bac1db9980dcfe8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
34.120.237.76200 OK 5.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3b318ea5c36d2b22b925f7dfe382df5f
0264e73c4cfff0bb255757c7e1c760a5ad3ece80
0c2f58ea4f5f32bb327f292e1b8fb5a4a60230bffc3abc440a624df27ec0d6bc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98db69a9-8416-4b0b-b1b4-1ed196b985e5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5340
x-amzn-requestid: b13bc974-e15d-43a4-a918-fbc35b09a36f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y19HljIAMFY8w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4f2-2cb226ba4bd7c7e74d9ab2db;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:42 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 8DCVWC4Ihr4R21i3ySyiWdUK0aGymTE22B842ZKolG-ZThiKSMX-uQ==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:04:45 GMT
age: 43326
etag: "0264e73c4cfff0bb255757c7e1c760a5ad3ece80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 948abf9bedd1bd67010284080ba06d01
dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b
236639cc2279c6f269dd521796a087a40b43b252cb55faf3e4214cbdc8369a62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F56c6b5fd-d351-45b8-9f62-d5052869881a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10822
x-amzn-requestid: 0cec2f7d-e906-4f5f-baa7-5d8a1a7c6820
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y2P7bEeQoAMFhGQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632bf9e2-5bdf18be72eed24028034edb;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 06:00:02 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Pj5hSr5LtIWPRDYjHxp8-K8gVghjf8GlO-FnXDvxscJqdygfZH8hIA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 19:36:01 GMT
age: 52250
etag: "dd94d525ad264856a0fdcb7a4b1faa2d68c3f68b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1eab8da8cc1495a0221efadddd1a0bcc
4156c37b612d5fb99c6b061187a3cb0b314ae4a8
2fc5dbd9216f775cd305de80d17db2e6c74abcb1e30bfa7065c4d763a7345026
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0ac33f06-9198-44a5-b43b-9cbcc092cf52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9481
x-amzn-requestid: d527d22a-6822-4b90-b9cb-034f58f73c24
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Y4Y0IGl7oAMFSKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-632cd4e7-13a676d9596cbd20663d2d8f;Sampled=0
x-amzn-remapped-date: Thu, 22 Sep 2022 21:34:31 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: V8vtLV7n0bPpR5xQtqcH6WK7uBV4ObaMdy_9qN_TtISqAozEwPe0hA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Thu, 22 Sep 2022 22:12:22 GMT
age: 42869
etag: "4156c37b612d5fb99c6b061187a3cb0b314ae4a8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
islandhouse-470927714.phsafarilodge.co.zm/assets/_commonjsHelpers.0592d25c.js
196.12.12.102200 OK 435 B URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/_commonjsHelpers.0592d25c.js
IP 196.12.12.102:0
File type ASCII text, with very long lines (434)
Hash 70fdfce2f05c6831ca7b0de1fa9e0b78
1a4d1bcb6b2d65e50fa1a880342d3e6686c7a166
ebfa3de43f04d095aa1599c80c8077308e2501a75656d38fc4d71c64747c4f58
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/_commonjsHelpers.0592d25c.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:51 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 435
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/inject.3020bd6d.js
196.12.12.102200 OK 530 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/inject.3020bd6d.js
IP 196.12.12.102:0
File type ASCII text, with very long lines (44328)
Size 530 kB (530531 bytes)
Hash 58f0968d65c93371736f0e496cc4a234
4bca78b6b701391e2eb56111fdd55fd25001a191
42f1888bbe116d7ac5230e899fd39e6c732f04c5b0eb83d5479c571064c642cb
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/inject.3020bd6d.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:51 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 530531
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
auth.services.adobe.com/favicon.ico
143.204.55.92200 OK 5.4 kB URL HTTP/2 auth.services.adobe.com/favicon.ico
IP 143.204.55.92:0
File type MS Windows icon resource - 2 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash dc94f1054a50b313ee14bbd3d4bc1c0a
b871efbbd59e202329352c18b775f7c5743aa8de
8e263fef3e738ac1882b97a05caaf21bbffc0bdabdf4a7e8338453c18e1e90ec
GET /favicon.ico HTTP/1.1
Host: auth.services.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/vnd.microsoft.icon
content-length: 5430
date: Sun, 18 Sep 2022 22:38:47 GMT
last-modified: Wed, 14 Sep 2022 16:17:48 GMT
etag: "dc94f1054a50b313ee14bbd3d4bc1c0a"
cache-control: public,max-age=604800,must-revalidate
x-amz-version-id: kOoCnyfKO9f4Gs3P_jPWEIblBD3kxrBl
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: rWLIEiioh_He0AUKlCaVbFiiDSYs83GZhyFv9M96BuISftSvBYzvdA==
age: 386885
x-xss-protection: 1; mode=block
x-frame-options: DENY
referrer-policy: no-referrer-when-downgrade
content-security-policy: report-uri https://adobeid-na1.services.adobe.com/renga-idprovider/pages/csp-violation-report
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8336d166d0905ea437fdc4aca4ccb9c8
bb7ec3d23acf84082b3c06279b502e07d5ad97f0
06f3d8a9182dfabc47e0d2c6badac2d6fc4771df3b25a303c9c6a9db5a2daea4
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4887
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:52 GMT
Last-Modified: Fri, 23 Sep 2022 08:45:25 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
islandhouse-470927714.phsafarilodge.co.zm/assets/KFOmCnqEu92Fr1Mu4mxM.f2abf7fb.woff
196.12.12.102200 OK 20 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/KFOmCnqEu92Fr1Mu4mxM.f2abf7fb.woff
IP 196.12.12.102:0
File type Web Open Font Format, TrueType, length 20344, version 1.1\012- data
Hash d3907d0ccd03b1134c24d3bcaf05b698
d9cfe6b477b49d47b6241b4281f4858d98eaca65
f2abf7fbabe298e5823d257e48f5dc2138c6d5e0c210066f76b0067e8eda194f
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/KFOmCnqEu92Fr1Mu4mxM.f2abf7fb.woff HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/assets/index.52370c57.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 20344
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: font/woff
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7dfa8d1fa52a8658781242f4d1ff4717
f8c894bcf3c242731bb5bd0abaf0b06573ebdd0b
1ad0b617acad0b1c3e5e9a66fa5fcf62ae002620e8287eeceb517ef9f7b785ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=91450
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:52 GMT
Etag: "632c4776-118"
Expires: Sat, 24 Sep 2022 11:31:02 GMT
Last-Modified: Thu, 22 Sep 2022 11:31:02 GMT
Server: nginx
Content-Length: 280
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7dfa8d1fa52a8658781242f4d1ff4717
f8c894bcf3c242731bb5bd0abaf0b06573ebdd0b
1ad0b617acad0b1c3e5e9a66fa5fcf62ae002620e8287eeceb517ef9f7b785ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: ECS (amb/6B85)
Content-Length: 280
ns.cdn-services.com/socket.io/?EIO=3&transport=websocket
104.21.73.63101 Switching Protocols 0 B URL HTTP/1.1 ns.cdn-services.com/socket.io/?EIO=3&transport=websocket
IP 104.21.73.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?EIO=3&transport=websocket HTTP/1.1
Host: ns.cdn-services.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://islandhouse-470927714.phsafarilodge.co.zm
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: VFCl0+0ga10T/vQISKifAg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 23 Sep 2022 10:06:52 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ZlN8JCEFk4mgmD8PAHV+hn2HNUY=
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=SFOy%2Bis8qM%2BaFzJc8MUUYLf6y46T59wv5jY0yxe3l2BiXdh4pRcIW5S29n6gMnYfx2PUcJ%2FjeoOpHSlV89peNxwrmxLNS4R4fc5ek1MQwCB5%2FrCsUmoOUNeAo4ujUC9wXxnS9ueZ"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 74f27859fe500b4d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
islandhouse-470927714.phsafarilodge.co.zm/assets/MainLayout.32eca8de.js
196.12.12.102200 OK 11 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/MainLayout.32eca8de.js
IP 196.12.12.102:0
File type ASCII text, with very long lines (11148)
Hash 0aa7f8783e706b264baf0817f5699481
c85d998ae1366a7991b2c48a559cb5d20b24814c
def3a0484eabe6969a5647938bc9811318b311803b1d46f17265492e10cc4142
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/MainLayout.32eca8de.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 11149
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/use-router-link.7f4d4e69.js
196.12.12.102200 OK 5.8 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/use-router-link.7f4d4e69.js
IP 196.12.12.102:0
File type Java source, ASCII text, with very long lines (5842)
Hash 122c71cd8da432a3ef656dc4d33743bd
7bf8385be1a0c974d55f978729e8b45035febe66
8d19a1eafe666fa502dca5254bae721965132c55a9824885aabde5aa2ac3411b
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/use-router-link.7f4d4e69.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 5843
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/use-dark.d0900f63.js
196.12.12.102200 OK 1.5 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/use-dark.d0900f63.js
IP 196.12.12.102:0
File type Java source, ASCII text, with very long lines (1548)
Hash c71543cc7c4b4f617e10f83240c13728
bdf4d10cab580f49b3453743b2ea948523afdefe
25d2959f89a76010919885b5c5061a3c67334831121db133c9462796a7d6a4d4
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/use-dark.d0900f63.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 1549
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash 7dfa8d1fa52a8658781242f4d1ff4717
f8c894bcf3c242731bb5bd0abaf0b06573ebdd0b
1ad0b617acad0b1c3e5e9a66fa5fcf62ae002620e8287eeceb517ef9f7b785ef
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: ECS (amb/6BA7)
Content-Length: 280
ns.cdn-services.com/quality?token=PTCh2jX5qVaswtVHw7cdCLpg6LVFJhCr&ip=91.90.42.154
104.21.73.63204 No Content 0 B URL HTTP/2 ns.cdn-services.com/quality?token=PTCh2jX5qVaswtVHw7cdCLpg6LVFJhCr&ip=91.90.42.154
IP 104.21.73.63:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /quality?token=PTCh2jX5qVaswtVHw7cdCLpg6LVFJhCr&ip=91.90.42.154 HTTP/1.1
Host: ns.cdn-services.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: cache,cache-control,pragma
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Origin: https://islandhouse-470927714.phsafarilodge.co.zm
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Fri, 23 Sep 2022 10:06:53 GMT
content-length: 0
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
vary: Access-Control-Request-Headers
access-control-allow-headers: cache,cache-control,pragma
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=06A57mpqxvYB2kQo8qgUtPfhnhTFhYTxkQhzUAEvPPdnEyy1KHXHglCrXQPkfNJUIqJbseiLE%2F%2BPS03bX89TY%2BI%2FepqM6ivAIb4Qim8drn%2Ft8K7ilvdI9yQgklAOljIyBkMHV%2Ft%2F"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f2785b6f91fabc-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
islandhouse-470927714.phsafarilodge.co.zm/assets/QBtn.c610b80c.js
196.12.12.102200 OK 10 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/QBtn.c610b80c.js
IP 196.12.12.102:0
File type ASCII text, with very long lines (10383)
Hash 269e2b5f321c85a77cf5e07d4a561913
98de1a5af9facc21c1c01b27c9a863a100eff03b
06bef940005baed370201227fb98938b94f5626845077b0e75ba89de5db8f7e3
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/QBtn.c610b80c.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 10384
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/IndexPage.9057585a.js
196.12.12.102200 OK 66 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/IndexPage.9057585a.js
IP 196.12.12.102:0
File type ASCII text, with very long lines (43915)
Hash 7115f168ca5bb488bafe8fc8d8a3d1db
e7f0fe090253caed454b9245d083f29e20ab2f4b
5362dbc511aad5ff4c2fd57d7e1ec6766c039284f709da7b321b8dd5ce8f8b37
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/IndexPage.9057585a.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:52 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 65546
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/plugin-vue_export-helper.21dcd24c.js
196.12.12.102200 OK 89 B URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/plugin-vue_export-helper.21dcd24c.js
IP 196.12.12.102:0
Hash b29b145139fc88e89a46af507277557d
0d1213a92fca118774cbd65d543090d5ffe4e49e
8c1ad0a8a6ad277bc3f538059700b6203db444104b00c122f550423673f0728d
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/plugin-vue_export-helper.21dcd24c.js HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:53 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 89
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript
islandhouse-470927714.phsafarilodge.co.zm/assets/KFOlCnqEu92Fr1MmWUlfBBc-.e0fd57c0.woff
196.12.12.102200 OK 20 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/KFOlCnqEu92Fr1MmWUlfBBc-.e0fd57c0.woff
IP 196.12.12.102:0
File type Web Open Font Format, TrueType, length 20408, version 1.1\012- data
Hash 0774a8b7ca338dc1aba5a0ec8f2b9454
6baf2c7cc3a03676c10ce872ef9fa1aa4e185901
e0fd57c0d9537d9c9884b6a8ad8c1823800d94dcfb6a2cc988780fe65a592fe6
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/KFOlCnqEu92Fr1MmWUlfBBc-.e0fd57c0.woff HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/assets/index.52370c57.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:53 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 20408
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: font/woff
i.postimg.cc/RFw93ZNF/logo.jpg
141.94.200.42200 OK 10 kB URL HTTP/2 i.postimg.cc/RFw93ZNF/logo.jpg
IP 141.94.200.42:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 519x147, components 3\012- data
Hash 561bd3b2f936383800ed021228adea68
1d30b983a42f082711b251f7577c8ba2d98adf57
ac044f01311effaf8520e1c44d4d788491a5ef06f8d923ea7e44aaf476f935e2
GET /RFw93ZNF/logo.jpg HTTP/1.1
Host: i.postimg.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 23 Sep 2022 10:06:53 GMT
content-type: image/jpeg
content-length: 10262
last-modified: Sat, 03 Sep 2022 11:24:25 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
accept-ranges: bytes
X-Firefox-Spdy: h2
islandhouse-470927714.phsafarilodge.co.zm/assets/KFOlCnqEu92Fr1MmEU9fBBc-.9ce7f3ac.woff
196.12.12.102200 OK 20 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/KFOlCnqEu92Fr1MmEU9fBBc-.9ce7f3ac.woff
IP 196.12.12.102:0
File type Web Open Font Format, TrueType, length 20544, version 1.1\012- data
Hash 40bcb2b8cc5ed94c4c21d06128e0e532
02edc7784ea80afc258224f3cb8c86dd233aaf19
9ce7f3ac47b91743893a2d29fe511a7ebec7aef52b2ea985fa127448d1f227c1
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/KFOlCnqEu92Fr1MmEU9fBBc-.9ce7f3ac.woff HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/assets/index.52370c57.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:53 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 20544
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: font/woff
islandhouse-470927714.phsafarilodge.co.zm/assets/materialdesignicons-webfont.8bded8f4.woff
196.12.12.102200 OK 465 kB URL HTTP/1.1 islandhouse-470927714.phsafarilodge.co.zm/assets/materialdesignicons-webfont.8bded8f4.woff
IP 196.12.12.102:0
File type Web Open Font Format, TrueType, length 465188, version 1.0\012- data
Size 465 kB (465188 bytes)
Hash 147e3378b44bc9570418b1eece10dd7c
8f38f5c7e2ab075641b5c10cdd25d5fb3378f945
8bded8f4aea0937d237944bf918a88f9d7e41719a5ddf5836f79381124fd3f0e
Analyzer Verdict Alert openphish Adobe Inc.
fortinet Phishing
GET /assets/materialdesignicons-webfont.8bded8f4.woff HTTP/1.1
Host: islandhouse-470927714.phsafarilodge.co.zm
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/assets/index.52370c57.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 23 Sep 2022 10:06:54 GMT
Server: Apache
Last-Modified: Sat, 03 Sep 2022 11:25:35 GMT
Accept-Ranges: bytes
Content-Length: 465188
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: font/woff
use.typekit.net/ecr2zvs.js
23.36.76.186200 OK 21 kB URL HTTP/2 use.typekit.net/ecr2zvs.js
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (51096)
Hash 2893f822b2e7af76f06e2e067ee34f3f
c554d1a2477f1ea6a70f47dcddf3a73615cb2f5a
fbcc72a503bd4cdd450b3e7ee1286535e63c7bad0749ab24c48eb1472cf680f6
GET /ecr2zvs.js HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.services.adobe.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: text/javascript;charset=utf-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains;
cache-control: public, max-age=600, stale-while-revalidate=604800
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
content-encoding: gzip
content-length: 6643
date: Fri, 23 Sep 2022 10:06:55 GMT
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 17933e8b1d3e7215a383b2b1866206cc
963ae7c348b9599a48012d2088dbf30bf9c37232
67c869074705589c154567a83965bff789acb55248b2cc70521cefaf15e6c30d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1952
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:55 GMT
Last-Modified: Fri, 23 Sep 2022 09:34:23 GMT
Server: ECS (ska/F719)
X-Cache: HIT
Content-Length: 471
dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215
52.49.126.217302 Found 0 B URL HTTP/1.1 dpm.demdex.net/id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215
IP 52.49.126.217:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /id?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://auth.services.adobe.com
Connection: keep-alive
Referer: https://auth.services.adobe.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 302 Found
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://auth.services.adobe.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v042-0d47f9f46.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=39380489121499231503019440655024853526; Max-Age=15552000; Expires=Wed, 22 Mar 2023 10:06:55 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: vGnrdxgtR3g=
Content-Length: 0
Connection: keep-alive
auth.services.adobe.com/en_US/index.html
143.204.55.105200 OK 41 kB URL HTTP/2 auth.services.adobe.com/en_US/index.html
IP 143.204.55.105:0
Hash a72e667cc1492e1ddf2644afb7f773aa
936145e075744107a5a1788f7a159de0d7278eba
66d8595f541fb8f32eb34a2d750f6aa3f63f8abcd25583fbb03d8dd5be511c0e
GET /en_US/index.html HTTP/1.1
Host: auth.services.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html
last-modified: Mon, 19 Sep 2022 12:47:50 GMT
x-amz-version-id: ilQsuRyuQxpQ32ZHOPEBGPVcwnrMVO6A
server: AmazonS3
content-encoding: gzip
date: Fri, 23 Sep 2022 10:06:54 GMT
cache-control: no-cache
etag: W/"ca4e047de488e28242a03d53d833f167"
vary: Accept-Encoding
x-cache: RefreshHit from cloudfront
via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ZUZMF2SAlOoIG2Pu9PI45KIy5SwrofkWn6WIeffoPAZRM09VXKsVWQ==
x-xss-protection: 1; mode=block
x-frame-options: DENY
referrer-policy: no-referrer-when-downgrade
content-security-policy: report-uri https://adobeid-na1.services.adobe.com/renga-idprovider/pages/csp-violation-report
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex
X-Firefox-Spdy: h2
use.typekit.net/af/eaf09c/000000000000000000017703/27/l?subset_id=2&fvd=n7&v=3
23.36.76.186200 OK 30 kB URL HTTP/2 use.typekit.net/af/eaf09c/000000000000000000017703/27/l?subset_id=2&fvd=n7&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 29980, version 1.0\012- data
Hash 864fc6d95444fd085441968a712f6c9f
7e54f060df28a16e146ab1eb15ab3a59d3d9be06
371f06319fa71de555aebefcffbe3c1f755e5761d90aacd9bba0c64c6cf40090
GET /af/eaf09c/000000000000000000017703/27/l?subset_id=2&fvd=n7&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://auth.services.adobe.com
Connection: keep-alive
Referer: https://auth.services.adobe.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29980
etag: "43c835b2f5dd7a9e7fea805e0e9631e337d18a90"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 23 Sep 2022 10:06:55 GMT
X-Firefox-Spdy: h2
use.typekit.net/af/40207f/0000000000000000000176ff/27/l?subset_id=2&fvd=n3&v=3
23.36.76.186200 OK 30 kB URL HTTP/2 use.typekit.net/af/40207f/0000000000000000000176ff/27/l?subset_id=2&fvd=n3&v=3
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type Web Open Font Format (Version 2), CFF, length 29752, version 1.0\012- data
Hash b45f7b0b58ea5cd543323a5e4ba4724b
03e815a2fa7461f31fc8ecc18a7063930fc87475
9aba873d54c84d8d56cfe572ab802bb34322de6fd945c286d278fabe29a9f3f0
GET /af/40207f/0000000000000000000176ff/27/l?subset_id=2&fvd=n3&v=3 HTTP/1.1
Host: use.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://auth.services.adobe.com
Connection: keep-alive
Referer: https://auth.services.adobe.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/font-woff2
content-length: 29752
etag: "fd4970a0ef1a58daf4039ec623a0f43c55c4f6d2"
timing-allow-origin: *
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: public, max-age=31536000
date: Fri, 23 Sep 2022 10:06:55 GMT
X-Firefox-Spdy: h2
p.typekit.net/p.gif?s=1&k=ecr2zvs&ht=tk&h=auth.services.adobe.com&f=7180.7182.7184&a=1164490&js=1.21.0&app=typekit&e=js&_=1663927614434
23.36.76.186200 OK 35 B URL HTTP/2 p.typekit.net/p.gif?s=1&k=ecr2zvs&ht=tk&h=auth.services.adobe.com&f=7180.7182.7184&a=1164490&js=1.21.0&app=typekit&e=js&_=1663927614434
IP 23.36.76.186:0
ASN #20940 Akamai International B.V.
File type GIF image data, version 89a, 1 x 1\012- data
Hash 81144d75b3e69e9aa2fa3e9d83a64d03
f0fbc60b50edf5b2a0b76e0aa0537b76bf346ffc
9b9265c69a5cc295d1ab0d04e0273b3677db1a6216ce2ccf4efc8c277ed84b39
GET /p.gif?s=1&k=ecr2zvs&ht=tk&h=auth.services.adobe.com&f=7180.7182.7184&a=1164490&js=1.21.0&app=typekit&e=js&_=1663927614434 HTTP/1.1
Host: p.typekit.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://auth.services.adobe.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=604800
content-type: image/gif
cross-origin-resource-policy: cross-origin
etag: "61c32ad2-23"
last-modified: Wed, 22 Dec 2021 13:40:34 GMT
server: nginx
content-length: 35
unused62: 8096267
date: Fri, 23 Sep 2022 10:06:55 GMT
X-Firefox-Spdy: h2
dpm.demdex.net/id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215
52.49.126.217200 OK 1.4 kB URL HTTP/1.1 dpm.demdex.net/id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215
IP 52.49.126.217:0
File type JSON data\012- , ASCII text, with very long lines (4124), with no line terminators
Hash 6873071df27a4b988b84ef309a6a677a
59bbce0c99f7b1d8eff4298fddf9cd1f122aff61
47da28dcb858a06907307c4f509f8f33a50234c9c292ef456ba419b1f30ff4e7
GET /id/rd?d_visid_ver=5.4.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_verify=1&d_orgid=9E1005A551ED61CA0A490D45%40AdobeOrg&d_nsid=0&ts=1663927614215 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://auth.services.adobe.com
Content-Type: application/x-www-form-urlencoded
Referer: https://auth.services.adobe.com/
Connection: keep-alive
Cookie: demdex=39380489121499231503019440655024853526
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://auth.services.adobe.com
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
Content-Type: application/json;charset=utf-8
DCS: dcs-prod-irl1-1-v042-0f3c853e9.edge-irl1.demdex.com 3 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=39380489121499231503019440655024853526; Max-Age=15552000; Expires=Wed, 22 Mar 2023 10:06:55 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: PDbh+qAiTEk=
Content-Length: 1386
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 0a3046d4201e2628f3bcd3a2bf081b93
dbb3711893050af1d9b2bf8dd05d68a737f761eb
2159cd4cbe6918ae39de6cb59a8c174938d260596ec3dc0659c6520e068b6018
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5970
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 23 Sep 2022 10:06:55 GMT
Last-Modified: Fri, 23 Sep 2022 08:27:26 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
sstats.adobe.com/id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=9E1005A551ED61CA0A490D45%40AdobeOrg&mid=39581489677600813443003861755794646680&ts=1663927614507
15.188.95.229200 OK 48 B URL HTTP/2 sstats.adobe.com/id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=9E1005A551ED61CA0A490D45%40AdobeOrg&mid=39581489677600813443003861755794646680&ts=1663927614507
IP 15.188.95.229:0
File type JSON data\012- , ASCII text, with no line terminators
Hash b92dcf9a2b963e3ef2b44831e42c6c50
96e269a272a307cbd25ba23b81b1d0eee028e851
dfecc36b405491cdada6634271182eaca4631beada6183b866832b098c4eac5f
GET /id?d_visid_ver=5.4.0&d_fieldgroup=A&mcorgid=9E1005A551ED61CA0A490D45%40AdobeOrg&mid=39581489677600813443003861755794646680&ts=1663927614507 HTTP/1.1
Host: sstats.adobe.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://auth.services.adobe.com/en_US/index.html
Content-Type: application/x-www-form-urlencoded
Origin: https://auth.services.adobe.com
Connection: keep-alive
Cookie: sat_domain=A; AMCV_9E1005A551ED61CA0A490D45%40AdobeOrg=1176715910%7CMCMID%7C39581489677600813443003861755794646680%7CMCAAMLH-1664532414%7C6%7CMCAAMB-1664532414%7CRKhpRz8krg2tLO6pguXWp5olkAcUniQYPHaMWWgdJ3xzPWQmdj0y%7CMCOPTOUT-1663934814s%7CNONE%7CvVersion%7C5.4.0; AMCVS_9E1005A551ED61CA0A490D45%40AdobeOrg=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
access-control-allow-origin: https://auth.services.adobe.com
access-control-allow-credentials: true
date: Fri, 23 Sep 2022 10:06:55 GMT
p3p: CP="This is not a P3P policy"
server: jag
set-cookie: s_ecid=MCMID%7C39581489677600813443003861755794646680; Path=/; Domain=adobe.com; Max-Age=63072000; Expires=Sun, 22 Sep 2024 10:06:06 GMT; SameSite=Lax;
vary: Origin
content-type: application/x-javascript;charset=utf-8
content-length: 48
cross-origin-resource-policy: cross-origin
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
ns.cdn-services.com/ip
104.21.73.63200 OK 0 B IP 104.21.73.63:0
GET /ip HTTP/1.1
Host: ns.cdn-services.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
Origin: https://islandhouse-470927714.phsafarilodge.co.zm
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:06:52 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
set-cookie: cook-session=eyJ1c2VySUQiOiI0Njc4MyJ9; path=/; secure; httponly
cook-session.sig=DXrLU9lm9vb-cw_WR-YEcY0AfyA; path=/; secure; httponly
etag: W/"13d-+cK0ZY/3WenpUKC4WEVV6OYEvTU"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vzGkHB2SU4sbgbW9l6UvqxlWnKzbgTxtiatZC9vjWAHL6AzhYDGonFKFvefv4i3sxEcorSQweNtaxA5dAx3k%2FnfuFdpoMPZa%2FmoEuYH9lm7WUaooK2MqN2%2BaVEp50myn2KcV5uXK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f27859de4dfabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ns.cdn-services.com/quality?token=PTCh2jX5qVaswtVHw7cdCLpg6LVFJhCr&ip=91.90.42.154
104.21.73.63200 OK 0 B URL HTTP/2 ns.cdn-services.com/quality?token=PTCh2jX5qVaswtVHw7cdCLpg6LVFJhCr&ip=91.90.42.154
IP 104.21.73.63:0
GET /quality?token=PTCh2jX5qVaswtVHw7cdCLpg6LVFJhCr&ip=91.90.42.154 HTTP/1.1
Host: ns.cdn-services.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://islandhouse-470927714.phsafarilodge.co.zm/
cache: no-store
cache-control: no-cache
pragma: no-cache
Origin: https://islandhouse-470927714.phsafarilodge.co.zm
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Fri, 23 Sep 2022 10:06:53 GMT
content-type: application/json; charset=utf-8
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept
etag: W/"1fd-FdfuQfAQVNfljwhdJ+dqvUppsro"
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pTCF7otW6yta8UmPlYJeCzs6j%2BGl36mOE3bvjuTTQjFSXhar7kniRoNumqymA9fsP7uGJAwpscE9GlV7tlWURL7%2Fh5qw0emBOxX4uDT%2FaiuMvYGOzQQlmIEWZXVgI0LkfdzrYxbN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 74f2785d88bdfabc-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2