GET /verify.html HTTP/1.1
Host: batfordapt.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
|
search
 172.67.169.42
HTTP/1.1 301 Moved Permanently
Date: Tue, 22 Nov 2022 18:35:29 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 22 Nov 2022 19:35:29 GMT
Location: https://batfordapt.buzz/verify.html
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bNo4C693egfbsWPlDAe5oP7uRJPSNq62j4wijCE%2BlU5vpnmEjS8mseWcr%2BP6%2FdiGyeA8HUIQix20AZP3iSfM0%2FtwWuUdXV7qYPEmRu9MyanpS4b1WP%2FtXrx0LezZn3kz3kk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76e3c3e27e040af6-OSL
alt-svc: h2=":443"; ma=60
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12491
Expires: Tue, 22 Nov 2022 22:03:40 GMT
Date: Tue, 22 Nov 2022 18:35:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
 93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6435
Cache-Control: max-age=150181
Date: Tue, 22 Nov 2022 18:35:29 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:18:30 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12264
Expires: Tue, 22 Nov 2022 21:59:53 GMT
Date: Tue, 22 Nov 2022 18:35:29 GMT
Connection: keep-alive
|
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Backoff, Alert, Content-Type, Retry-After, Content-Length
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 18:09:19 GMT
cache-control: public,max-age=3600
age: 1570
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
34.160.144.191
HTTP/2 200 OK
content-type: binary/octet-stream
x-amz-id-2: 5O0a0z/oZ1T5x5qh2iiWmfOgWHl6RotOf7kQ+kcua3xBbCxDB+hQDKgL2IeLBvOV3yxZYAfiWLI=
x-amz-request-id: Z7SA0CK9780X25GV
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 17:42:39 GMT
age: 3170
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.117.237.239
HTTP/2 200 OK
content-type: application/json
server: nginx
date: Tue, 22 Nov 2022 18:35:29 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 345
ETag: "82CD4E2237D05350D3E711E56655F3094B81E0831322E172F7F12D7601F7D8E4"
Last-Modified: Mon, 21 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21524
Expires: Wed, 23 Nov 2022 00:34:13 GMT
Date: Tue, 22 Nov 2022 18:35:29 GMT
Connection: keep-alive
|
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.102.187.140
HTTP/2 200 OK
content-type: application/json
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 18:08:53 GMT
cache-control: public,max-age=3600
age: 1596
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
alt-svc: clear
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.77.32
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 345
ETag: "82CD4E2237D05350D3E711E56655F3094B81E0831322E172F7F12D7601F7D8E4"
Last-Modified: Mon, 21 Nov 2022 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21524
Expires: Wed, 23 Nov 2022 00:34:13 GMT
Date: Tue, 22 Nov 2022 18:35:29 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3055
Cache-Control: max-age=141740
Date: Tue, 22 Nov 2022 18:35:30 GMT
Etag: "637c912f-1d7"
Expires: Thu, 24 Nov 2022 09:57:50 GMT
Last-Modified: Tue, 22 Nov 2022 09:06:55 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: CtacWHZ+sscaIicPlO1j0g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
54.148.70.121
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 6dsXJiHdyGyCqV002EnyOJBr0rM=
|
GET /css/css/link-initialize.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 88626
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "15a32-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/64.css HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: text/css
content-length: 1594
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "63a-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/app.css HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: text/css
content-length: 477
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "1dd-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/chunk-common.css HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: text/css
content-length: 9197
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "23ed-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/64.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 17523
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "4473-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/2.css HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: text/css
content-length: 833
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "341-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 18:35:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 18:35:30 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /css/css/chunk-common.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 190184
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "2e6e8-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/launch-1574d0b03693.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 220661
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "35df5-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/loadScripts HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-length: 508
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "1fc-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/AppMeasurement_Module_ActivityMap.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 3303
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "ce7-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/AppMeasurement.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 33481
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "82c9-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/logo.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 477
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "1dd-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/default.css HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: text/css
content-length: 14656
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "3940-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/customer.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 1217897
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "129569-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/vendor.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 2953924
date: Tue, 22 Nov 2022 18:35:30 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "2d12c4-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/app.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 300 Multiple Choices
content-type: text/html; charset=iso-8859-1
content-length: 545
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /css/css/config.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 232
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "e8-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/dcuLogoDark.png HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: image/png
content-length: 7743
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "1e3f-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/loader_only.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 3661
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "e4d-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /css/css/static_wdp.htm HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
74.208.236.14
HTTP/2 300 Multiple Choices
content-type: text/html; charset=iso-8859-1
content-length: 565
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
GET /verify.html HTTP/1.1
Host: batfordapt.buzz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
|
search
 104.21.95.18
HTTP/2 200 OK
content-type: text/html
date: Tue, 22 Nov 2022 18:35:29 GMT
last-modified: Tue, 22 Nov 2022 15:06:24 GMT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6M8R1tjGxiDb0Uuhv0qlG%2BsyPPMxx1WntR37jo%2F0GIuaZVA%2Fb4ImkDO3Org2HIUXVEQnFqQT8i5eJXWYdgK1ZVTo2FycI2F9NU6OmtNsPjb8KYNc0KS0n%2BuwqipwSH5UIW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e3c3e5bb93b4f3-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11428
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 18:35:31 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11428
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 18:35:31 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11428
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 18:35:31 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11428
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 18:35:31 GMT
Connection: keep-alive
|
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: nginx
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11428
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 18:35:31 GMT
Connection: keep-alive
|
GET /css/css/2.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 200 OK
content-type: application/javascript
content-length: 54217
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:30 GMT
etag: "d3c9-5dc929c597e80"
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z_LKFsiB_s81UenxBOVg9_qX_7vBHUZix7XF8YguDCytRn5opLkLRA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:01:10 GMT
age: 74061
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ZtjzvMh_vqVaOqm8xPfZ2EWGGl0X7Iv8GK40Z32EbKM4wk6tGPnlYA==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:26:05 GMT
age: 72566
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0e2c726b-e91a-4cf6-95b8-c267e110416c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 5342
x-amzn-requestid: e396cea4-ddae-4b88-a73a-ceafb1e11620
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b0b91EMLoAMFYYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63780d25-7f1187713f288a0c158508ea;Sampled=0
x-amzn-remapped-date: Fri, 18 Nov 2022 22:54:29 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: j7GPHu9Gq8cF2_j3-uXucAzJPSBWsFelX1EWZa_2sEW-Vo7b4WlaFg==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:55:58 GMT
age: 74373
etag: "2dcc6187d7173ce741975ad4ec24435c9dcb0880"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: StZ9dxgY8W0WwUUqsxyeISFnbm_WGGcm_AMuo9dzfhF9Yp7wM0TMMg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 ea699166e6ec77aa410ff505b0a8ce18.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 08:17:57 GMT
age: 37054
etag: "56414a905340e1b1478a0a40a52b25365a724524"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:02:46 GMT
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
age: 73965
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: eHLf2DFK-3yN5dEG22XItPxRzmODRdThIYJI2oZqDJpgTGQGSQnGzQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:46:07 GMT
age: 74964
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
GET /css/css/static_wdp.htm HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 300 Multiple Choices
content-type: text/html; charset=iso-8859-1
content-length: 565
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6251
Cache-Control: max-age=162192
Date: Tue, 22 Nov 2022 18:35:31 GMT
Etag: "637cd498-1d7"
Expires: Thu, 24 Nov 2022 15:38:43 GMT
Last-Modified: Tue, 22 Nov 2022 13:54:32 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 18:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /star HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://batfordapt.buzz
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: IWZIihOFI8ulxrnrz8ncBw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
|
search
 54.228.71.178
HTTP/1.1 101 Switching Protocols
Server: nginx
Date: Tue, 22 Nov 2022 18:35:31 GMT
Connection: upgrade
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Accept: owD+7EtqV+WGi6IsYWGcltSfjgA=
Upgrade: WebSocket
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 18:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 18:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc8GBs5tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17116
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 21 Nov 2022 21:55:35 GMT
expires: Tue, 21 Nov 2023 21:55:35 GMT
cache-control: public, max-age=31536000
age: 74396
last-modified: Mon, 09 May 2022 18:31:19 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/nunitosans/v12/pe0qMImSLYBIv1o4X1M8cce9I9s.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 08:32:12 GMT
expires: Thu, 16 Nov 2023 08:32:12 GMT
cache-control: public, max-age=31536000
age: 554599
last-modified: Mon, 09 May 2022 18:33:54 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
GET /s/nunitosans/v12/pe03MImSLYBIv1o4X1M8cc9iB85tU1E.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
216.58.207.195
HTTP/2 200 OK
content-type: font/woff2
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17156
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 16 Nov 2022 21:48:51 GMT
expires: Thu, 16 Nov 2023 21:48:51 GMT
cache-control: public, max-age=31536000
age: 506800
last-modified: Mon, 09 May 2022 18:33:24 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
142.250.74.35
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 18:35:31 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
GET /extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement_Module_ActivityMap.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
etag: "8b210658d66894c896047ae490138f1c:1629320642.068491"
last-modified: Wed, 18 Aug 2021 21:04:02 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 1593
expires: Tue, 22 Nov 2022 19:35:31 GMT
date: Tue, 22 Nov 2022 18:35:31 GMT
cache-control: no-cache
access-control-allow-origin: https://batfordapt.buzz
timing-allow-origin: *
X-Firefox-Spdy: h2
|
GET /extensions/EP40e3bec801244c59a61bf06eb622a63c/AppMeasurement.min.js HTTP/1.1
Host: assets.adobedtm.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
23.38.200.237
HTTP/2 200 OK
content-type: application/x-javascript
accept-ranges: bytes
etag: "4635bffccc756e9a52eae8011adb9137:1629320641.842128"
last-modified: Wed, 18 Aug 2021 21:04:01 GMT
server: AkamaiNetStorage
vary: Accept-Encoding
content-encoding: gzip
content-length: 12188
expires: Tue, 22 Nov 2022 19:35:31 GMT
date: Tue, 22 Nov 2022 18:35:31 GMT
cache-control: no-cache
access-control-allow-origin: https://batfordapt.buzz
timing-allow-origin: *
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 6000
Cache-Control: 'max-age=158059'
Date: Tue, 22 Nov 2022 18:35:31 GMT
Last-Modified: Tue, 22 Nov 2022 16:55:31 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
GET /css/css/time.mp3 HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 206 Partial Content
content-type: audio/mpeg
content-length: 504
date: Tue, 22 Nov 2022 18:35:31 GMT
server: Apache
last-modified: Thu, 14 Apr 2022 00:45:28 GMT
etag: "1f8-5dc929c3afa00"
accept-ranges: bytes
content-range: bytes 0-503/504
X-Firefox-Spdy: h2
|
GET /id?d_visid_ver=5.2.0&d_fieldgroup=MC&d_rtbd=json&d_ver=2&d_orgid=46051B125B89FACB0A495DD6%40AdobeOrg&d_nsid=0&ts=1669142131579 HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
3.248.130.194
HTTP/1.1 200 OK
Content-Type: application/json;charset=utf-8
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://batfordapt.buzz
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-1-v045-04fb65ba6.edge-irl1.demdex.com 9 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=30947846826831555293653395601749674921; Max-Age=15552000; Expires=Sun, 21 May 2023 18:35:32 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin
X-TID: b9NllW8qT/g=
Content-Length: 837
Connection: keep-alive
|
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 18:35:32 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 22 Nov 2022 18:21:27 GMT
Expires: Wed, 23 Nov 2022 18:21:27 GMT
ETag: "91304ff5b88b1be8ab4c2008d02fe6647b9299bf"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
|
GET /css/css/app.js HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 300 Multiple Choices
content-type: text/html; charset=iso-8859-1
content-length: 545
date: Tue, 22 Nov 2022 18:35:32 GMT
server: Apache
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 4416
Cache-Control: max-age=107816
Date: Tue, 22 Nov 2022 18:35:32 GMT
Etag: "637c075c-13a"
Expires: Thu, 24 Nov 2022 00:32:28 GMT
Last-Modified: Mon, 21 Nov 2022 23:18:52 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 314
|
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Accept-Ranges: bytes
Age: 3442
Cache-Control: max-age=86334
Date: Tue, 22 Nov 2022 18:35:32 GMT
Etag: "637bb740-1d7"
Expires: Wed, 23 Nov 2022 18:34:26 GMT
Last-Modified: Mon, 21 Nov 2022 17:37:04 GMT
Server: ECS (ska/F71E)
X-Cache: HIT
Content-Length: 471
|
GET /id?d_visid_ver=5.2.0&d_fieldgroup=A&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&mid=30308188544231329533624891943837218041&ts=1669142131869 HTTP/1.1
Host: digitalfederalcreditunion.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
 13.36.218.177
HTTP/2 200 OK
content-type: application/x-javascript;charset=utf-8
access-control-allow-origin: https://batfordapt.buzz
access-control-allow-credentials: true
date: Tue, 22 Nov 2022 18:35:32 GMT
p3p: CP="This is not a P3P policy"
server: jag
vary: Origin
content-length: 2
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /dest5.html?d_nsid=0 HTTP/1.1
Host: dcu.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
|
search
34.248.30.105
HTTP/1.1 200 OK
Content-Type: text/html;charset=UTF-8
Accept-Ranges: bytes
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
date: Tue, 22 Nov 2022 18:35:32 GMT
DCS: dcs-prod-irl1-2-v045-083f91df3.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
last-modified: Fri, 28 Oct 2022 11:22:24 GMT
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
vary: accept-encoding
X-TID: 9t7mONd9SV8=
Content-Length: 2791
Connection: keep-alive
|
GET /m2/digitalfederalcredit/mbox/json?mbox=target-global-mbox&mboxSession=072276ec28c94bbf8f03b0ba94fd30b1&mboxPC=&mboxPage=48710361c8f04693b1000ecc1c4cc1af&mboxRid=60c28774b22d4d169f57ce6d214ff4e3&mboxVersion=1.8.2&mboxCount=1&mboxTime=1669142131599&mboxHost=batfordapt.buzz&mboxURL=https%3A%2F%2Fbatfordapt.buzz%2Fverify.html&mboxReferrer=&browserHeight=939&browserWidth=1280&browserTimeOffset=0&screenHeight=1024&screenWidth=1280&colorDepth=24&devicePixelRatio=1&screenOrientation=landscape&pageurl=https%3A%2F%2Fbatfordapt.buzz%2Fverify.html&mboxMCSDID=005A4A532A712400-70435E58EC65F3BA&vst.trk=digitalfederalcreditunion.sc.omtrdc.net&vst.trks=digitalfederalcreditunion.sc.omtrdc.net&mboxMCGVID=30308188544231329533624891943837218041&mboxAAMB=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&mboxMCGLH=6 HTTP/1.1
Host: digitalfederalcredit.tt.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
|
search
108.129.53.90
HTTP/2 200 OK
content-type: application/json;charset=UTF-8
date: Tue, 22 Nov 2022 18:35:32 GMT
content-length: 96
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://batfordapt.buzz
access-control-allow-credentials: true
x-request-id: 60c28774b22d4d169f57ce6d214ff4e3
pragma: no-cache
cache-control: no-cache
timing-allow-origin: *
X-Firefox-Spdy: h2
|
GET /cobrowse/loadScripts HTTP/1.1
Host: us.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.173.103.247
HTTP/2 200 OK
content-type: application/javascript; charset=utf-8
date: Tue, 22 Nov 2022 18:35:32 GMT
content-length: 508
set-cookie: AWSALB=DsGPWoRrhiBbtL/yEM0XYApjzgnTotFJPhsd56MOqBIMJ6lK9GagJzRsAzAYd19gSvRoPYjAFae12LNuhScliC/saILi2tX+UyuU87lfPRS6OYRLPkrZhaUhV5xR; Expires=Tue, 29 Nov 2022 18:35:32 GMT; Path=/
AWSALBCORS=DsGPWoRrhiBbtL/yEM0XYApjzgnTotFJPhsd56MOqBIMJ6lK9GagJzRsAzAYd19gSvRoPYjAFae12LNuhScliC/saILi2tX+UyuU87lfPRS6OYRLPkrZhaUhV5xR; Expires=Tue, 29 Nov 2022 18:35:32 GMT; Path=/; SameSite=None; Secure
connect.sid=s%3A0XOAgx-Vs2KpDu8rdRnD08gldti0dpGK.GaLtAlCfiZqrYBe7UeNGWWfJNfHVAtnwKcBJHr1GN8E; Path=/; Expires=Thu, 24 Nov 2022 18:35:32 GMT; Secure; SameSite=None
server: nginx
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: X-CSRF-Token, X-Requested-With, accept, x-j-token, content-type
etag: W/"1fc-7h1D3lVTGQGfiwcTpoOkY4A6m0E"
X-Firefox-Spdy: h2
|
GET /assets/scripts/final/customer.js?v=8.6.1 HTTP/1.1
Host: usassets.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.173.103.247
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 22 Nov 2022 18:35:32 GMT
content-length: 261370
set-cookie: AWSALB=nzdgpTFH8dXNXDsDKxYaoAZCklL3kU8UXwpqFUYZir2fIpFe/+XykUm+YBQIkPbDgWwNBZ5Ni5ENFOVIbkdJxe75kIfUaO+qZrNcEHKCWvo62/RZ8Q/UT5cEwob8; Expires=Tue, 29 Nov 2022 18:35:32 GMT; Path=/
AWSALBCORS=nzdgpTFH8dXNXDsDKxYaoAZCklL3kU8UXwpqFUYZir2fIpFe/+XykUm+YBQIkPbDgWwNBZ5Ni5ENFOVIbkdJxe75kIfUaO+qZrNcEHKCWvo62/RZ8Q/UT5cEwob8; Expires=Tue, 29 Nov 2022 18:35:32 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Mon, 18 Jul 2022 06:30:25 GMT
etag: "62d4fe01-3fcfa"
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /assets/scripts/final/customer.js?v=8.7.1 HTTP/1.1
Host: usassets.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Cookie: AWSALBCORS=nzdgpTFH8dXNXDsDKxYaoAZCklL3kU8UXwpqFUYZir2fIpFe/+XykUm+YBQIkPbDgWwNBZ5Ni5ENFOVIbkdJxe75kIfUaO+qZrNcEHKCWvo62/RZ8Q/UT5cEwob8
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.173.103.247
HTTP/2 200 OK
content-type: application/javascript
date: Tue, 22 Nov 2022 18:35:32 GMT
content-length: 261370
set-cookie: AWSALB=s5TH3duid8FWMTnMdfVbJlUP0Ql+l81mSu4BiCr3PifiuUiLNtmKRcMVUVPPqMN1IIY9eInzeLly7klSTN0+QCzWYxc02qht/UFKFID2YirZRddz6l0LjwyLu/KW; Expires=Tue, 29 Nov 2022 18:35:32 GMT; Path=/
AWSALBCORS=s5TH3duid8FWMTnMdfVbJlUP0Ql+l81mSu4BiCr3PifiuUiLNtmKRcMVUVPPqMN1IIY9eInzeLly7klSTN0+QCzWYxc02qht/UFKFID2YirZRddz6l0LjwyLu/KW; Expires=Tue, 29 Nov 2022 18:35:32 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Mon, 18 Jul 2022 06:30:25 GMT
etag: "62d4fe01-3fcfa"
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /b/ss/dfcudigbankingprod,dfcumainglobal/1/JS-2.22.1-LBWB/s02839836551656?AQB=1&ndh=1&pf=1&t=22%2F10%2F2022%2018%3A35%3A32%202%200&sdid=005A4A532A712400-70435E58EC65F3BA&vid=30308188544231329533624891943837218041&mid=30308188544231329533624891943837218041&aamlh=6&ce=UTF-8&pageName=projectfinance%3Aen%3Averify.html&g=https%3A%2F%2Fbatfordapt.buzz%2Fverify.html&cc=USD&ch=verify.html&server=batfordapt.buzz&events=event1&aamb=6G1ynYcLPuiQxYZrsz_pkqfLG9yMXBpb2zX5dvJdYQJzPXImdj0y&v1=verify.html&c9=D%3Dv9&v9=https%3A%2F%2Fbatfordapt.buzz%2Fverify.html&v10=D%3Dc10&v11=projectfinance%3Aen%3Averify.html&v12=year%3D2022%20%7C%20month%3DNovember%20%7C%20date%3D22%20%7C%20day%3DTuesday%20%7C%20time%3D6%3A35%20PM&v13=New&c14=30&v14=D%3Dc14&c15=New%20Visitor&c16=1&c17=first%20hit%20of%20visit&v20=Project%20Finance&v41=30308188544231329533624891943837218041&s=1280x1024&c=24&j=1.6&v=N&k=Y&bw=1280&bh=939&mcorgid=46051B125B89FACB0A495DD6%40AdobeOrg&AQE=1 HTTP/1.1
Host: digitalfederalcreditunion.sc.omtrdc.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
13.36.218.177
HTTP/2 200 OK
content-type: image/gif;charset=utf-8
access-control-allow-origin: *
date: Tue, 22 Nov 2022 18:35:32 GMT
expires: Mon, 21 Nov 2022 18:35:32 GMT
last-modified: Wed, 23 Nov 2022 18:35:32 GMT
pragma: no-cache
p3p: CP="This is not a P3P policy"
server: jag
etag: 3584455435858444288-4619704705476526870
vary: *
content-length: 43
cache-control: no-cache, no-store, max-age=0, no-transform, private
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
X-Firefox-Spdy: h2
|
GET /general5/wdp.js?loaderVer=5.2.2&compat=false&tp=true&tp_split=false&fp_static=true&fp_dyn=true&flash=false HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.228.71.178
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Server: nginx
Date: Tue, 22 Nov 2022 18:35:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: io_token_7c6a6574-f011-4c9a-abdd-9894a102ccef=XVjY5sUZCXzq4lbWF4GCnXPati0e+uOZVQsq7tZqsgo=;Path=/;Expires=Wed, 22-Nov-2023 18:35:32 GMT;Max-Age=31536000;Secure;HttpOnly;SameSite=None
Cache-Control: no-cache, private
Pragma: no-cache
Expires: 0
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
|
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 18:35:33 GMT
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 22 Nov 2022 17:41:12 GMT
Expires: Wed, 23 Nov 2022 17:41:12 GMT
ETag: "238268933ba6633d6518b35f02f7259b80f4d8c2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
|
GET /5.4.0/logo.js HTTP/1.1
Host: mpsnare.iesnare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.228.71.178
HTTP/1.1 200 OK
Content-Type: text/javascript; charset=utf-8
Server: nginx
Date: Tue, 22 Nov 2022 18:35:32 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Tue, 06 May 2014 00:01:40 GMT
Expires: Wed, 22 Nov 2023 18:35:32 GMT
Cache-Control: private
p3p: CP="NON DSP COR CURa"
Accept-CH: ua, ua-arch, ua-platform, ua-model, ua-mobile, ua-full-version, ua-platform-version
Strict-Transport-Security: max-age=15552000; includeSubDomains
Content-Encoding: gzip
|
GET /css/css/dest5.htm HTTP/1.1
Host: virtualhost.gq
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
|
search
74.208.236.14
HTTP/2 404 Not Found
content-type: text/html
date: Tue, 22 Nov 2022 18:35:32 GMT
server: Apache
content-encoding: gzip
X-Firefox-Spdy: h2
|
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 68
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 18:35:33 GMT
Content-Length: 1731
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Tue, 22 Nov 2022 17:41:12 GMT
Expires: Wed, 23 Nov 2022 17:41:12 GMT
ETag: "238268933ba6633d6518b35f02f7259b80f4d8c2"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
|
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 18:35:33 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 21 Nov 2022 22:15:19 GMT
Expires: Tue, 22 Nov 2022 22:15:19 GMT
ETag: "e7ef92d3b52cce36bed872b889f604bdbf289adc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
|
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
54.230.245.100
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=157299
Date: Tue, 22 Nov 2022 18:35:32 GMT
Etag: "637cd61d-1d7"
Expires: Thu, 24 Nov 2022 14:17:11 GMT
Last-Modified: Tue, 22 Nov 2022 14:01:01 GMT
Server: ECS (dcb/7F5B)
X-Cache: Miss from cloudfront
Via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Xt8p9vtGhAnbkPZz4-RTPduU-u_rvhwUwvBYVRjkEwVAROINVRKwqg==
Age: 970
|
POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
|
search
192.124.249.36
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Server: Sucuri/Cloudproxy
Date: Tue, 22 Nov 2022 18:35:33 GMT
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 19036
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Mon, 21 Nov 2022 22:15:19 GMT
Expires: Tue, 22 Nov 2022 22:15:19 GMT
ETag: "e7ef92d3b52cce36bed872b889f604bdbf289adc"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"
|
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/favicon-16x16.png HTTP/1.1
Host: www.dcu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
104.17.115.72
HTTP/2 200 OK
content-type: image/png
date: Tue, 22 Nov 2022 18:35:32 GMT
content-length: 1133
x-dispatcher: dispatcher2useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Wed, 07 Aug 2019 15:45:59 GMT
etag: "46d-58f88d667bbc0"
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/
content-disposition: inline
x-cache: Miss from cloudfront
via: 1.1 d661c8f821b4dd0011bb1bb50baf07c2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: J0nZ-UclYBj1fFPPpTo8YLxsVa4D4VTCMIuooTM_1ZLQTlHJt2Mf9g==
cf-cache-status: HIT
age: 76952
expires: Wed, 22 Nov 2023 18:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e3c3fabc1efab8-OSL
X-Firefox-Spdy: h2
|
GET /etc.clientlibs/dcu/clientlibs/clientlib-site/resources/favicons/android-icon-192x192.png HTTP/1.1
Host: www.dcu.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
104.17.115.72
HTTP/2 200 OK
content-type: image/png
date: Tue, 22 Nov 2022 18:35:32 GMT
content-length: 9441
x-dispatcher: dispatcher2useast1
x-vhost: publish
cache-control: public, max-age=31536000
x-content-type-options: nosniff
last-modified: Wed, 07 Aug 2019 15:45:59 GMT
etag: "24e1-58f88d667bbc0"
strict-transport-security: max-age=31536000; includeSubDomains
content-security-policy: default-src *.quantummetric.com 'unsafe-inline' 'unsafe-eval' 'self' blob:; worker-src blob:; child-src blob:; object-src 'self'; media-src 'self' blob: usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com https://www.dcu.org https://manifest.prod.boltdns.net/ https://dcu-dev-65.adobecqms.net/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/; script-src 'self' 'unsafe-inline' 'unsafe-eval' blob: https://usuat.cobrowse.pega.com/ https://usuatassets.cobrowse.pega.com https://player.vimeo.com/ https://memchat.dcu-online.org/ https://geolocation.onetrust.com https://www.google.com https://cdn.cookielaw.org https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.quantummetric.com http://dfcumanagedservicesstageenvironment.112.2o7.net https://analytics.twitter.com/ *.ads-twitter.com https://us.cobrowse.pega.com https://usassets.cobrowse.pega.com *.steelhousemedia.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ *.cloudflare.com https://googleads.g.doubleclick.net https://chat.usefirefly.com https://usefirefly.com https://connect.facebook.net www.google-analytics.com assets.adobedtm.com *.timevaluecalculators.com *.bazaarvoice.com *.iesnare.com https://ajax.googleapis.com/ *.googleapis.com *.dcuinsurance.com tagmanager.google.com www.googletagmanager.com https://www.google-analytics.com https://firefly-chat-production.s3.amazonaws.com http://www.googleadservices.com https://connect.facebook.net http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://snap.licdn.com https://bat.bing.com https://up.pixel.ad https://ssl.google-analytics.com/ https://www.dcu.org/ https://static.ads-twitter.com/ https://players.brightcove.net/ https://vjs.zencdn.net/ https://bcbolt446c5271-a.akamaihd.net/ https://widget.use1.chat.pega.digital/; connect-src 'self' *.ads-twitter.com *.quantummetric.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com wss://usefirefly.com https://usefirefly.com * *.cloudflare.com https://www.calcxml.com/ *.dcu.org *.omtrdc.net *.demdex.net *.bazaarvoice.com wss://chat.usefirefly.com https://www.google-analytics.com https://www.dcuinsurance.com http://digitalfederalcreditunion.sc.omtrdc.net https://digitalfederalcreditunion.sc.omtrdc.net https://www.dcu.org/ https://static.ads-twitter.com/; img-src 'self' *.com *.yahoo.com http://t.co/ dsum.casalemedia.com su.addthis.com s.thebrighttag.com image2.pubmatic.com ads.scorecardresearch.com t.mookie1.com x.bidswitch.net usermatch.krxd.net match.sharethrough.com cm.g.doubleclick.net ads.yahoo.com pixel.advertising.com insight.adsrvr.org www.facebook.com usassets.chat.pega.com firefly-chat-production.s3.amazonaws.com *.bazaarvoice.com https://www.dcu.org https://www.google.co.in https://www.google.com *.timevaluecalculators.com *.everesttech.net *.demdex.net *.omtrdc.net *.googleapis.com *.gstatic.com *.112.2o7.net https://stats.g.doubleclick.net https://www.calcxml.com/ www.google-analytics.com *.doubleclick.net/ https://bcbolt446c5271-a.akamaihd.net/ https://players.brightcove.net/ https://www.dcu.org/ data:; style-src 'self' 'unsafe-inline' *.cloudflare.com https://usuatassets.cobrowse.pega.com https://usassets.cobrowse.pega.com https://usefirefly.com https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://www.calcxml.com/ https://tagmanager.google.com usassets.chat.pega.com *.timevaluecalculators.com https://fonts.googleapis.com/ *.googleapis.com *.bazaarvoice.com https://match.adsrvr.org https://match.prod.bidr.io https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage-65.adobecqms.net/ https://stage.dcu.org/ *.dcu.org https://dculocator.wave2.io/ https://www.dcu.org/; font-src 'self' https://fonts.gstatic.com/ fonts.gstatic.com https://www.dcu.org/ data:; frame-src 'self' https://player.vimeo.com/ *.quantummetric.com https://dcu.secure.nonprofitsoapbox.com https://americasaves.org/ https://app.loanspq.com/ https://dcu.mortgagewebcenter.com/ https://apps.rps.ascensus.com/ https://forms.fivision.com/ *.doubleclick.net *.culookup.com *.dcu.org *.demdex.net https://dcu.demdex.net *.locatorsearch.com *.bazaarvoice.com https://www.fmsi-lts.com/DIG_WS https://fmsi-lts.com/ *.adobecqms.net http://cookies.onetrust.mgr.consensu.org/ stage.dcu.org https://stage.dcu.org/ https://dcu-stage-65.adobecqms.net/ http://dcu-stage-65.adobecqms.net/ https://dcu-dev-65.adobecqms.net/ https://dcu-qa-65.adobecqms.net/ https://dcu-stage.adobecqms.net/ *.dcu.org https://dcu-mkt-stage1.campaign.adobe.com https://dcu.campaign.adobe.com https://js-staging.poshdevelopment.com/ https://js.poshdevelopment.com https://api.poshdevelopment.com https://staging.poshdevelopment.com *.youtube.com https://dculocator.wave2.io/ https://www.dcu.org/ https://pixel.sitescout.com/ https://memchat.dcu-online.org/
content-disposition: inline
x-cache: Miss from cloudfront
via: 1.1 b862e3687b36a4ee0dbc1b9352fbfbb2.cloudfront.net (CloudFront)
x-amz-cf-pop: ARN54-C1
x-amz-cf-id: 5SoaAZ_4gHcXZPc6ByJPpCw2NOp67QHaPucKQvAcTGVfdfbLcyAi2g==
cf-cache-status: HIT
age: 76952
expires: Wed, 22 Nov 2023 18:35:32 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 76e3c3facc35fab8-OSL
X-Firefox-Spdy: h2
|
GET /cm/dd?d_uuid=30947846826831555293653395601749674921 HTTP/1.1
Host: cm.everesttech.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
54.77.60.152
HTTP/1.1 302
Date: Tue, 22 Nov 2022 18:35:32 GMT
Content-Length: 0
Connection: keep-alive
Set-Cookie: everest_g_v2=g_surferid~Y30WdAAAAGUTEgN-; Domain=.everesttech.net; Expires=Wed, 22-Nov-2023 18:35:32 GMT; Path=/
everest_session_v2=Y30WdAAAAGUTEwN-; Domain=.everesttech.net; Path=/
P3P: CP="NOI NID DEVa PSAa PSDa OUR IND PUR COM NAV INT DEM"
Cache-Control: no-cache
Location: https://dpm.demdex.net/ibs:dpid=411&dpuuid=Y30WdAAAAGUTEgN-
Server: AMO-cookiemap/1.1
|
GET /ibs:dpid=411&dpuuid=Y30WdAAAAGUTEgN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://batfordapt.buzz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
3.248.130.194
HTTP/1.1 302 Found
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
DCS: dcs-prod-irl1-1-v045-085e2ce89.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
Location: https://dpm.demdex.net/demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y30WdAAAAGUTEgN-
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
set-cookie: demdex=00004399956200850191578001948568929219; Max-Age=15552000; Expires=Sun, 21 May 2023 18:35:32 GMT; Path=/; Domain=.demdex.net; Secure; SameSite=None
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-TID: NlNJGDLsTcM=
Content-Length: 0
Connection: keep-alive
|
GET /demconf.jpg?et:ibs%7cdata:dpid=411&dpuuid=Y30WdAAAAGUTEgN- HTTP/1.1
Host: dpm.demdex.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://batfordapt.buzz/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
3.248.130.194
HTTP/1.1 200 OK
Content-Type: image/gif
Cache-Control: no-cache,no-store,must-revalidate,max-age=0,proxy-revalidate,no-transform,private
content-encoding: gzip
DCS: dcs-prod-irl1-1-v045-0480615af.edge-irl1.demdex.com 0 ms
Expires: Thu, 01 Jan 1970 00:00:00 UTC
P3P: policyref="/w3c/p3p.xml", CP="NOI NID CURa ADMa DEVa PSAa PSDa OUR SAMa BUS PUR COM NAV INT"
Pragma: no-cache
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Content-Type-Options: nosniff
X-TID: qWtOsDMnTCw=
Content-Length: 59
Connection: keep-alive
|
GET /assets/stylesheets/customer/final/default.css?v=8.6.1 HTTP/1.1
Host: usassets.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Cookie: AWSALBCORS=s5TH3duid8FWMTnMdfVbJlUP0Ql+l81mSu4BiCr3PifiuUiLNtmKRcMVUVPPqMN1IIY9eInzeLly7klSTN0+QCzWYxc02qht/UFKFID2YirZRddz6l0LjwyLu/KW
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.173.103.247
HTTP/2 200 OK
content-type: text/css
date: Tue, 22 Nov 2022 18:35:34 GMT
content-length: 3489
set-cookie: AWSALB=IqchIib2QpknQoG9xuMjxRUOtPG55DmSHR1EDnZLzeaNXcrX2HX2VBztRnd7oolzEWzm2GeKev7kD2EhRK1TEqK4fuUR78hyD9itcIdqzpdRi7wLVunJ2ZwwaTVK; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/
AWSALBCORS=IqchIib2QpknQoG9xuMjxRUOtPG55DmSHR1EDnZLzeaNXcrX2HX2VBztRnd7oolzEWzm2GeKev7kD2EhRK1TEqK4fuUR78hyD9itcIdqzpdRi7wLVunJ2ZwwaTVK; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 13 Jul 2022 12:04:58 GMT
etag: "62ceb4ea-da1"
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /assets/stylesheets/customer/final/default.css?v=8.7.1 HTTP/1.1
Host: usassets.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://batfordapt.buzz/
Cookie: AWSALBCORS=IqchIib2QpknQoG9xuMjxRUOtPG55DmSHR1EDnZLzeaNXcrX2HX2VBztRnd7oolzEWzm2GeKev7kD2EhRK1TEqK4fuUR78hyD9itcIdqzpdRi7wLVunJ2ZwwaTVK
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.173.103.247
HTTP/2 200 OK
content-type: text/css
date: Tue, 22 Nov 2022 18:35:34 GMT
content-length: 3489
set-cookie: AWSALB=xyDj6EnqtCFglXZ7sSq7dihFK72/yqYGZldxNETmaaAqRkrVmSf6Qnf1SQd34JOif3+gsajug0JSkI6GonydS31yngQQh5qQLx1AkprTbMSlDmu/EPrQ4lLwUASw; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/
AWSALBCORS=xyDj6EnqtCFglXZ7sSq7dihFK72/yqYGZldxNETmaaAqRkrVmSf6Qnf1SQd34JOif3+gsajug0JSkI6GonydS31yngQQh5qQLx1AkprTbMSlDmu/EPrQ4lLwUASw; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/; SameSite=None; Secure
server: nginx
last-modified: Wed, 13 Jul 2022 12:04:58 GMT
etag: "62ceb4ea-da1"
access-control-allow-origin: *
content-encoding: gzip
accept-ranges: bytes
X-Firefox-Spdy: h2
|
GET /api/config?messagesType=customer&language=en-US&company=7e93b5d5-334d-4b59-b925-4db0d6b5d066 HTTP/1.1
Host: us.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://batfordapt.buzz/
Cookie: AWSALBCORS=DsGPWoRrhiBbtL/yEM0XYApjzgnTotFJPhsd56MOqBIMJ6lK9GagJzRsAzAYd19gSvRoPYjAFae12LNuhScliC/saILi2tX+UyuU87lfPRS6OYRLPkrZhaUhV5xR; connect.sid=s%3A0XOAgx-Vs2KpDu8rdRnD08gldti0dpGK.GaLtAlCfiZqrYBe7UeNGWWfJNfHVAtnwKcBJHr1GN8E
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.173.103.247
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Tue, 22 Nov 2022 18:35:34 GMT
content-length: 23494
set-cookie: AWSALB=2w7l+6KWTvQnXuN2q+k6B7FqvxBax3RZK4CXwwjZt8ywtM4mHGAdz6/CEWkxOAIcdH6GdwcW65Y1svqktI6zDpGwOOvi4N1OIXBsmjMc8dugGUM6tVJDVL+zgzGW; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/
AWSALBCORS=2w7l+6KWTvQnXuN2q+k6B7FqvxBax3RZK4CXwwjZt8ywtM4mHGAdz6/CEWkxOAIcdH6GdwcW65Y1svqktI6zDpGwOOvi4N1OIXBsmjMc8dugGUM6tVJDVL+zgzGW; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/; SameSite=None; Secure
server: nginx
x-powered-by: Express
access-control-allow-origin: https://batfordapt.buzz
access-control-allow-credentials: true
access-control-allow-headers: X-CSRF-Token, X-Requested-With, accept, x-j-token, content-type
etag: W/"5bc6-48DoYcJKijLaUFwVIIxji9ZHYnM"
X-Firefox-Spdy: h2
|
POST /logserver HTTP/1.1
Host: us.cobrowse.pega.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 250
Origin: https://batfordapt.buzz
Connection: keep-alive
Referer: https://batfordapt.buzz/
Cookie: AWSALBCORS=2w7l+6KWTvQnXuN2q+k6B7FqvxBax3RZK4CXwwjZt8ywtM4mHGAdz6/CEWkxOAIcdH6GdwcW65Y1svqktI6zDpGwOOvi4N1OIXBsmjMc8dugGUM6tVJDVL+zgzGW; connect.sid=s%3A0XOAgx-Vs2KpDu8rdRnD08gldti0dpGK.GaLtAlCfiZqrYBe7UeNGWWfJNfHVAtnwKcBJHr1GN8E
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
|
search
54.173.103.247
HTTP/2 200 OK
content-type: text/plain
date: Tue, 22 Nov 2022 18:35:34 GMT
set-cookie: AWSALB=3z1uUF+/cV28BByp8C3BCqddE4NmrrArHFlZtMgeLgEOS1s1axR/6wKSuEh4TlgrE1Cr/gn9AwxA5r8swxDX0/synRenuTuylz7dxDwpS79aX7G6xuO1Z2m2vXHO6fmn4UI1P7y4L0aof3eVzmSVa1DlyvH9mdxDfVNbRQxW8pdooAtiVHue8Oz9QTwBng==; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/
AWSALBCORS=3z1uUF+/cV28BByp8C3BCqddE4NmrrArHFlZtMgeLgEOS1s1axR/6wKSuEh4TlgrE1Cr/gn9AwxA5r8swxDX0/synRenuTuylz7dxDwpS79aX7G6xuO1Z2m2vXHO6fmn4UI1P7y4L0aof3eVzmSVa1DlyvH9mdxDfVNbRQxW8pdooAtiVHue8Oz9QTwBng==; Expires=Tue, 29 Nov 2022 18:35:34 GMT; Path=/; SameSite=None; Secure
server: nginx
access-control-allow-origin: https://batfordapt.buzz
access-control-allow-methods: POST
access-control-allow-credentials: true
access-control-allow-headers: accept, x-csrf-token, content-type
X-Firefox-Spdy: h2
--- Additional Info ---
|
GET /css2?family=Nunito+Sans:wght@300;400;600;700;800&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://virtualhost.gq/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
|
search
142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 18:35:30 GMT
date: Tue, 22 Nov 2022 18:35:30 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
--- Additional Info ---
|
104.21.45.199