r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 4b8b051d555b46b1e9e64faebf91b4ab
bdab7f1f4146f0e7c16665692e4f1edd83c10a24
e069730519f658e767ec8edb57edd8e2b1ccb18d4f0ade0920654eac18f83456
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E069730519F658E767EC8EDB57EDD8E2B1CCB18D4F0ADE0920654EAC18F83456"
Last-Modified: Tue, 17 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15850
Expires: Wed, 18 Jan 2023 03:16:03 GMT
Date: Tue, 17 Jan 2023 22:51:53 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash cc07d664b5dadee6f9120d54904dfa57
df75a55b0b2019684a6c512bee528c51a2c4a756
14a1bd6315a3256468edafedfd1c02a6ba147914c0f01e8504e7d8cc67781c34
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "14A1BD6315A3256468EDAFEDFD1C02A6BA147914C0F01E8504E7D8CC67781C34"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16093
Expires: Wed, 18 Jan 2023 03:20:06 GMT
Date: Tue, 17 Jan 2023 22:51:53 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d38f4bb41e1264b8a1e11ff0b1499d20
21c3e36bd908df43e0d49b747e270ec75cb882b0
3ff822eb56d2218ad6244fd013a82e0d27450ae21d47e08f1e3fdf4c82a8aad7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FF822EB56D2218AD6244FD013A82E0D27450AE21D47E08F1E3FDF4C82A8AAD7"
Last-Modified: Mon, 16 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14659
Expires: Wed, 18 Jan 2023 02:56:12 GMT
Date: Tue, 17 Jan 2023 22:51:53 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 17 Jan 2023 22:49:17 GMT
content-type: application/json
age: 156
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DIS/AUcLb6g0e1j3GXpP/Y41ZWAEfOUAo200lfYgtIe1mqYjFkXVLFTGN4/eMgY/w89E1Lnaky1kbBeWReJ7ng==
x-amz-request-id: 9HJMAYHHX4B20GPQ
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 17 Jan 2023 22:45:10 GMT
age: 403
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 17 Jan 2023 22:51:53 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
han.gl/
188.114.96.1301 Moved Permanently 223 B IP 188.114.96.1:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 43de553295a1e6fe3f5e0be44a111285
9d5db5aee80f68112e5503cd92163b33008613f2
00251aaac1a1bb01d0a13a3844e81cd2fb984c1ca730577f69a158c876e55263
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: han.gl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 17 Jan 2023 22:51:53 GMT
Content-Type: text/html; charset=iso-8859-1
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Expires: Sat, 01 Jan 2000 00:00:00 GMT
Location: https://han.gl/
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LuNRHZdFGF%2FzZgGPhjHr9JhvRcbhV1QXfnpfvGG6v%2BovS7Fls05zHPARMS0dxYIFFCbosE9K0fH5WGxcEGjLeY3l%2BLglzSoN3aieMUPdH14GLVP3j%2FB%2BKm0%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 78b2a8795ee20b55-OSL
alt-svc: h2=":443"; ma=60
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Pragma, Content-Length, Alert, Expires, ETag, Last-Modified, Backoff, Content-Type, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 17 Jan 2023 22:17:25 GMT
age: 2068
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 8720730dce33d0026a1a354ac93d4a7d
ed5f086bc646a4d93d2344b19ff7821c96e44f7c
b2892fda88242fbc4d58dd1f3bb159ca02cbf98b77c57dde66fba98d183c0136
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2839
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 22:51:54 GMT
Last-Modified: Tue, 17 Jan 2023 22:04:35 GMT
Server: ECS (ska/F713)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.160.150.87101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.160.150.87:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: tYMgyBAPCgTyuZ9TVk6s1Q==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: VRUsoTiJZ1bETVEpDKIzVe/Lzt8=
cdn.jsdelivr.net/npm/typed.js@2.0.12
151.101.129.229200 OK 3.5 kB URL HTTP/2 cdn.jsdelivr.net/npm/typed.js@2.0.12
IP 151.101.129.229:0
File type ASCII text, with very long lines (11549)
Hash e7508f5dd7d3e64e2e8bc4c00bcd48fc
c1f3501d88d686c423fa940c8e3d770743d5e553
266c8703b9d3dff94e9255ef6495ce475ff0122ee80f7248a6f1bec5673b1a06
GET /npm/typed.js@2.0.12 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 2.0.12
x-jsd-version-type: version
etag: W/"2e10-6vJ5gph5DsP60X9saLXTsC39Bpw"
content-encoding: gzip
accept-ranges: bytes
date: Tue, 17 Jan 2023 22:51:55 GMT
age: 4126376
x-served-by: cache-fra-eddf8230062-FRA, cache-bma1653-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 3522
X-Firefox-Spdy: h2
ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
104.18.20.226200 OK 1.8 kB URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q4
IP 104.18.20.226:0
Hash 92852a755e90f7bc8c64c2d442000f39
7f17c0e22bd8182b8814fb4aacb03ef336a6d551
c682246d62d79b5390d174e15048c458051d0631345d72e4c164c6576c9a59c3
POST /ca/gsatlasr3dvtlsca2022q4 HTTP/1.1
Host: ocsp.globalsign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 22:51:55 GMT
Content-Type: application/ocsp-response
Transfer-Encoding: chunked
Connection: keep-alive
Etag: "BAF9401AFDC0AF449CA5CB86120E48E81E08AF7D"
Expires: Wed, 18 Jan 2023 09:00:00 GMT
Last-Modified: Tue, 17 Jan 2023 21:00:00 UTC
Cache-Control: s-maxage=3600, public, no-transform, must-revalidate
CF-Cache-Status: HIT
Age: 3116
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 78b2a88648a1b4f1-OSL
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 1.0 kB IP 142.250.74.131:0
Hash ce4a575bf6c357fe654549f35e501826
27c9d804aadfd9c01122eb91fa59d9ad175d4b06
2534c56978516d0d3a2e9433afe2b87ea49506cdaaa3e505cf314b881e49d28d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 22:51:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-107267968-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-107267968-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1921)
Hash 0d9584ef59b67f031f32d2b3aa1685ed
631238fc05301bb0a31fcdd0719616b13a47b516
201c168024d430e1589b9ef4f90f9b918b9b40fb210b3f909c5b57a6dc8b29a5
GET /gtag/js?id=UA-107267968-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 17 Jan 2023 22:51:55 GMT
expires: Tue, 17 Jan 2023 22:51:55 GMT
cache-control: private, max-age=900
last-modified: Tue, 17 Jan 2023 22:05:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44193
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 773596e36fe4af70225f1ee08e977461
5595433fd09a22008b2c739f6626aef116ad5285
fb18080471e9a54e7d1c060d2e26b023f09c135e0d195e48917cd064549d7fdc
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 22:51:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 697fb2b3be04f39ba8b4cf021c828a93
60fba6090ce1cd8a48c0b8d6a2328e522d0b430e
adc92fa9fd0b30a941e52c426482e68ec5ae264f1415fe68366fb3283e019fd0
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 22:51:55 GMT
Etag: "63c5ca7b-1d7"
Last-Modified: Tue, 17 Jan 2023 21:34:58 GMT
Server: ECS (bsa/EB12)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: uptu08LrqEKl5qmwmdWmTnHDqXQb3jzVKvlirN0h-Yg18RSIRc05fw==
Age: 4617
cdn.channel.io/plugin/ch-plugin-web.js
54.230.111.70200 OK 1.2 kB URL HTTP/2 cdn.channel.io/plugin/ch-plugin-web.js
IP 54.230.111.70:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1817), with no line terminators
Hash a6e3a61aacf874c90a941c742b4491bc
c6a54a85165197439119969d2728692f270660c1
9df51be2574825301a29215760295a111840286dbac76af741075262afcf494d
GET /plugin/ch-plugin-web.js HTTP/1.1
Host: cdn.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
last-modified: Fri, 13 Jan 2023 06:46:07 GMT
server: AmazonS3
content-encoding: br
date: Tue, 17 Jan 2023 22:42:19 GMT
cache-control: max-age=3600,public
etag: W/"9c7ce2583d365f5acc3bb63fd15bcc40"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: bh1UwkjPmtKe9XfyaMZaa151_4Jm_M9lULPUtjtjG08aJE1oy0LT6g==
age: 631
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7db9f11a1c6ab0117ed3dd1d36e3aecc
61a4de77803ce4ad730c21dd88b5b55a196f26d6
b52c568528f72c5653bad85a1f72fb22f43dcb5d96ad234ab2772a7f95ca6cc2
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B52C568528F72C5653BAD85A1F72FB22F43DCB5D96AD234AB2772A7F95CA6CC2"
Last-Modified: Tue, 17 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8720
Expires: Wed, 18 Jan 2023 01:17:15 GMT
Date: Tue, 17 Jan 2023 22:51:55 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f491398239265c63ac162d47ab006ce6
c95e1bba76e910100e86f8abf789e5b5c1a2baa6
cdada2d9608e9d3f8e03cf9ced211550b6f7c8f7e0b5ee027a96f45af38523f1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F873f34de-bef8-46f1-9dc4-d277bf6c1c65.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7741
x-amzn-requestid: 9af04340-5be9-42b0-96be-0264661c6dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A6LEMtoAMFW_w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c7150d-2348c8846249175e74efc226;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:37:17 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: _7YOm38n8-T2LAL-cRA7R8KvEUBhXEM0dOXjOZ6HyPRNfMu6Z0Fh3g==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:17:05 GMT
age: 2090
etag: "c95e1bba76e910100e86f8abf789e5b5c1a2baa6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif
34.120.237.76200 OK 25 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif
IP 34.120.237.76:0
File type GIF image data, version 89a, 296 x 148\012- data
Hash e9e29acd071f93411556a2a1cbb076fa
6cc5c64b7e82cc5bdc148be6f4760e98cb06f414
a1d23e683f912c5c9a334df441908c7d522ae8f41c91dbb0e99e6bf5162bc54e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F861225b5-aa80-4ecb-b68c-3a62a2e3d376.gif HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 24970
x-amzn-requestid: 65ccc511-17aa-468c-a607-f531ccba1e91
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K86HLgIAMFfxA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-798eaf875ae85c5e1d73e183;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 7j81MDyPkCWO5SwMKCSmfqcnvTOrH1sfFgciUIB1g3gTRCdcsyb6ew==
via: 1.1 c7c3cdef911c9ee3c1a83a78f425dc5a.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 03:56:35 GMT
age: 68120
etag: "6cc5c64b7e82cc5bdc148be6f4760e98cb06f414"
content-type: image/gif
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg
34.120.237.76200 OK 3.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 928e970121a035e9f8d537e4bfe6bf5c
ce4aadc6b3500508d1c4b42b76f09be4414b6eee
2da1438b17cf05aed64e565350dcc706420f2bae7e8c5e36d1b5bad38248c275
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4ce66831-56e0-4f6e-ba05-da99c3485e5e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3599
x-amzn-requestid: 5b743b27-b6d4-4d98-9984-3a5e17cb28e6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6A1xH8BIAMFuZQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c714f1-2f1031db0871abae4760d5b6;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:36:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: jyWosZVSdPHomvHRyf-MuxVp0gR7sKIJ0-jmMStDeixhd8Bhoqzitg==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 22:01:09 GMT
age: 3046
etag: "ce4aadc6b3500508d1c4b42b76f09be4414b6eee"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg
34.120.237.76200 OK 9.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 18d44fef1be0f8ba8ae6e29788478e47
a881d39e5e2aea041f30b476f1e3d7d135ca691b
a7bd1b6e2615f6fa898d55cdd6370330b89aba74348cc3b020df81a3ee51b9d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5040d384-c89f-4aa4-8652-aea8a1600738.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9819
x-amzn-requestid: ed88b40e-5e06-41f9-a1ba-a3bef07eb12a
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0LT4G5qoAMFwFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4bf4b-513cb0eb6ec4f22f23a26da7;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:06:51 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: x6xEfCqpXziyWiy0ZxXVp8yRH_munH9cmIGQa7oB8Qf-0wLOjyPo-g==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 03:13:42 GMT
age: 70693
etag: "a881d39e5e2aea041f30b476f1e3d7d135ca691b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
34.120.237.76200 OK 27 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg
IP 34.120.237.76:0
Hash 46fec9c090381d098d6d46a895e5d7c8
a4d8826ad5735bc1f39df036f5619f8804e6dfcf
4d80ba60e622aa4a1ca9edfdaa9ac1e5cf58ceea1999c3004576686acd39f291
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe52164e3-afec-433e-87ab-adb17222f1cd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13848
x-amzn-requestid: 93bbdd19-aa04-49ec-858f-9fa1d6b736d3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e6BKCGEtoAMFgsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c71573-008911af44c3998d7b27b837;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 21:38:59 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: adtKl3gOcesaXNHcRbi71-1Wz6caEgtXrAvbhB9qhId7eJEkd7d7pQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 21:59:45 GMT
age: 3130
etag: "fba424e1d09cbdc839ca320458b51715dafbbccc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F733c65c8-0653-43b1-b641-62ae4b851842.webp
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F733c65c8-0653-43b1-b641-62ae4b851842.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4c2ec38b03a1ce94bd8fd536dc45c839
8c84b5a008c9c87b59ac44cd2fc96947cbd8f7c8
f2ff781c9dca88a1ce8af26ddc3994f47f9b2667c9863cdd641441c3c2cb5f52
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F733c65c8-0653-43b1-b641-62ae4b851842.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4267
x-amzn-requestid: bdd5b77e-d95a-41b9-9797-9d45f937d54e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e0K84HeZoAMF2QQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c4beb8-0bf2fce0197d41711a43cde2;Sampled=0
x-amzn-remapped-date: Mon, 16 Jan 2023 03:04:24 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: S2wtXw8cRoB4mNymE_UBNogmSTuht1G9fT_jkF5TtbHFnTvtF09U7w==
via: 1.1 a20e81b65d2465c729ce2f6bfe539dd0.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 17 Jan 2023 05:27:01 GMT
age: 62694
etag: "8c84b5a008c9c87b59ac44cd2fc96947cbd8f7c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
t1.daumcdn.net/kas/static/ba.min.js
95.101.10.8200 OK 47 kB URL HTTP/2 t1.daumcdn.net/kas/static/ba.min.js
IP 95.101.10.8:0
ASN #20940 Akamai International B.V.
File type Unicode text, UTF-8 text, with very long lines (65323)
Hash fd610dd9d42f020f11fc05af9494e51b
96270cf60a982cf3c5ba579e4f41a5f1e0051bd3
af27f214b1a7c3f1d1a87eb7ba06e2deed9440bf65847050e4c194725cd5142f
GET /kas/static/ba.min.js HTTP/1.1
Host: t1.daumcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 09 Jan 2023 05:02:31 GMT
server: openresty
content-type: text/javascript
content-length: 46681
accept-ranges: bytes
content-encoding: gzip
x-wcss: dC1jb21tb24wMS1id2NhY2hlMTowOmNodHRwOjA3
cache-control: max-age=2383
expires: Tue, 17 Jan 2023 23:31:38 GMT
date: Tue, 17 Jan 2023 22:51:55 GMT
vary: Accept-Encoding
X-Firefox-Spdy: h2
js.sentry-cdn.com/b05367f6be924bb49e15838987b99ce6.min.js
151.101.194.217200 OK 1.0 kB URL HTTP/2 js.sentry-cdn.com/b05367f6be924bb49e15838987b99ce6.min.js
IP 151.101.194.217:0
File type ASCII text, with very long lines (512)
Hash bb3b73fcebaaa6a0ea6180b6b894e008
bb5a440d3639e4145997c971a9f6f44b00487489
48ca673574720f44f476d59664e26adb2b9087a87f2e9a136b37c73b8bef4bbe
GET /b05367f6be924bb49e15838987b99ce6.min.js HTTP/1.1
Host: js.sentry-cdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://han.gl
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript
access-control-allow-origin: *
cache-control: public, max-age=3600, s-maxage=60, stale-while-revalidate=315360000, stale-if-error=315360000
x-frame-options: deny
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
x-envoy-attempt-count: 1
x-envoy-upstream-service-time: 12
content-encoding: gzip
accept-ranges: bytes
date: Tue, 17 Jan 2023 22:51:55 GMT
age: 69
x-served-by: getsentry-web-default-common-production-f64fcfdf8-rng5d, cache-bma1637-BMA
vary: Accept-Encoding
timing-allow-origin: https://sentry.io
strict-transport-security: max-age=31536000; includeSubDomains
content-length: 1022
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.46200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.46:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Tue, 17 Jan 2023 21:45:20 GMT
expires: Tue, 17 Jan 2023 23:45:20 GMT
cache-control: public, max-age=7200
age: 3996
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.google-analytics.com/j/collect?v=1&_v=j99&a=809010496&t=pageview&_s=1&dl=https%3A%2F%2Fhan.gl%2F&ul=en-us&de=UTF-8&dt=han.gl-url%EB%8B%A8%EC%B6%95%2C%EC%A3%BC%EC%86%8C%EC%A4%84%EC%9D%B4%EA%B8%B0%2C%EB%9D%BC%ED%83%80%EA%B2%8C%ED%8C%85%2C%ED%94%BD%EC%85%80%2C%EB%A7%81%ED%81%AC%EC%A4%84%EC%9D%B4%EA%B8%B0%2C%EB%8B%A8%EC%B6%95url.%ED%95%9C%EA%B8%80&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1826761204&gjid=493213401&cid=252473739.1673995916&tid=UA-107267968-1&_gid=1251742353.1673995916&_r=1&_slc=1>m=2ou1a1&z=1063573236
142.250.74.46200 OK 2 B URL HTTP/2 www.google-analytics.com/j/collect?v=1&_v=j99&a=809010496&t=pageview&_s=1&dl=https%3A%2F%2Fhan.gl%2F&ul=en-us&de=UTF-8&dt=han.gl-url%EB%8B%A8%EC%B6%95%2C%EC%A3%BC%EC%86%8C%EC%A4%84%EC%9D%B4%EA%B8%B0%2C%EB%9D%BC%ED%83%80%EA%B2%8C%ED%8C%85%2C%ED%94%BD%EC%85%80%2C%EB%A7%81%ED%81%AC%EC%A4%84%EC%9D%B4%EA%B8%B0%2C%EB%8B%A8%EC%B6%95url.%ED%95%9C%EA%B8%80&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1826761204&gjid=493213401&cid=252473739.1673995916&tid=UA-107267968-1&_gid=1251742353.1673995916&_r=1&_slc=1>m=2ou1a1&z=1063573236
IP 142.250.74.46:0
File type ASCII text, with no line terminators
Hash 38684612f0c6bb6dfa16da92f4a6878f
6fe62d0dd7db314b7f9bb945672f078e01d27f0f
a048e640908046be06e00eab37742b5d5ff80964af58cfd22f7cb2de4dfe375f
POST /j/collect?v=1&_v=j99&a=809010496&t=pageview&_s=1&dl=https%3A%2F%2Fhan.gl%2F&ul=en-us&de=UTF-8&dt=han.gl-url%EB%8B%A8%EC%B6%95%2C%EC%A3%BC%EC%86%8C%EC%A4%84%EC%9D%B4%EA%B8%B0%2C%EB%9D%BC%ED%83%80%EA%B2%8C%ED%8C%85%2C%ED%94%BD%EC%85%80%2C%EB%A7%81%ED%81%AC%EC%A4%84%EC%9D%B4%EA%B8%B0%2C%EB%8B%A8%EC%B6%95url.%ED%95%9C%EA%B8%80&sd=24-bit&sr=1280x1024&vp=1268x939&je=0&_u=YEBAAUABAAAAACAAI~&jid=1826761204&gjid=493213401&cid=252473739.1673995916&tid=UA-107267968-1&_gid=1251742353.1673995916&_r=1&_slc=1>m=2ou1a1&z=1063573236 HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://han.gl
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://han.gl
date: Tue, 17 Jan 2023 22:51:56 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 750b507b0e32a82d1ec4e99d6cba7e87
3c4519da4d72e56ac715b1d4174f30758d71f5d6
2c7b78f49a984522c6c3b7297d746986607b25efbb97929a7feb0d4d35440b99
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 22:51:56 GMT
Etag: "63c5e81f-1d7"
Last-Modified: Tue, 17 Jan 2023 21:54:11 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Kv_DWw_u9ma1cibKZzqHtjrWocVtiBbR_t38mpDemyMhGERQlOC-CA==
Age: 3466
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 750b507b0e32a82d1ec4e99d6cba7e87
3c4519da4d72e56ac715b1d4174f30758d71f5d6
2c7b78f49a984522c6c3b7297d746986607b25efbb97929a7feb0d4d35440b99
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 22:51:56 GMT
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Pyoa-mDUzQrCewWbw_fjhm1Go1ixqRK2oXgF0UiFWSpDBC_sLej1TQ==
api.channel.io/front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056?
54.180.200.183200 OK 0 B URL HTTP/2 api.channel.io/front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056?
IP 54.180.200.183:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056? HTTP/1.1
Host: api.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://han.gl/
Origin: https://han.gl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 17 Jan 2023 22:51:56 GMT
content-length: 0
set-cookie: AWSALB=pv+tkfKBl9rB8uOKK+vWyTo9Bzo010IuaIdlktfUgGn/LZLpePPyXv3vg55T+z9YB1kpJnJoX1qzUq/kIOfYeOBWWp5aK7rieTecJ/MEALHLzspkZx+CgNVfUKeF; Expires=Tue, 24 Jan 2023 22:51:56 GMT; Path=/
AWSALBCORS=pv+tkfKBl9rB8uOKK+vWyTo9Bzo010IuaIdlktfUgGn/LZLpePPyXv3vg55T+z9YB1kpJnJoX1qzUq/kIOfYeOBWWp5aK7rieTecJ/MEALHLzspkZx+CgNVfUKeF; Expires=Tue, 24 Jan 2023 22:51:56 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://han.gl
access-control-allow-credentials: true
access-control-max-age: 1800
access-control-allow-methods: OPTIONS,GET,PUT,POST,DELETE,HEAD,PATCH
access-control-allow-headers: origin,content-type,accept,accept-language,x-access-key,x-access-secret,x-account,x-session,x-personal,x-cafe24-iam,x-shopify-iam,x-color-me-iam,x-iwchannel-iam
X-Firefox-Spdy: h2
status.thawte.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 83fdccee28bfb340f3c225463595e6c7
f9f9e9eb154d2caf3fba6e4003cc282aa9802662
a417d08bbf11a7567bae40733a46e82936ae9baeeb012810136bd5ed2310df9d
POST / HTTP/1.1
Host: status.thawte.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1709
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 17 Jan 2023 22:51:57 GMT
Last-Modified: Tue, 17 Jan 2023 22:23:28 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471
api.channel.io/front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056?
54.180.200.183200 OK 329 B URL HTTP/2 api.channel.io/front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056?
IP 54.180.200.183:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (466), with no line terminators
Hash 60dc52995256e9d4e5fb9d5abb85b340
e485ca0638456c76a251eb86bdb9deb41110dea2
78a3661bdba27e66459c5a8b7044633f31310e96dfd41332d944770c3fad6903
GET /front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056? HTTP/1.1
Host: api.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://han.gl/
Content-Type: application/json
Origin: https://han.gl
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 22:51:57 GMT
content-type: application/json
content-length: 329
set-cookie: AWSALB=CUBckVaT2ilnqpAdz2aD4npP7iFGr/A3cga0itdck9AzaznSMXHinan2uG8lHzar4LvnrWS/BI0iIcLjsFY2jMX8PrYH217Rf+ZVMwJsN7XRZbl+cQnlvZMgz0uZ; Expires=Tue, 24 Jan 2023 22:51:57 GMT; Path=/
AWSALBCORS=CUBckVaT2ilnqpAdz2aD4npP7iFGr/A3cga0itdck9AzaznSMXHinan2uG8lHzar4LvnrWS/BI0iIcLjsFY2jMX8PrYH217Rf+ZVMwJsN7XRZbl+cQnlvZMgz0uZ; Expires=Tue, 24 Jan 2023 22:51:57 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://han.gl
access-control-allow-credentials: true
access-control-expose-headers: Date,Content-Disposition,x-account,x-session
vary: Origin, Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
api.channel.io/front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056/boot
54.180.200.183200 OK 2.7 kB URL HTTP/2 api.channel.io/front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056/boot
IP 54.180.200.183:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (2553), with no line terminators
Hash 02acdd8604565b8012650364f0aa00c0
1fa0da6090cb7c071da9415574a32ee400aed680
dbd7f5f3b7e6ce81986f7fae3b7872ae39d34cf3ac6576a12716bc0130b1917c
POST /front/v5/elastic/plugins/a32692e6-f43c-441b-8eb1-427d1529f056/boot HTTP/1.1
Host: api.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://han.gl/
Content-Type: application/x-www-form-urlencoded
Origin: https://han.gl
Content-Length: 27
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 22:51:57 GMT
content-type: application/json
content-length: 2667
set-cookie: AWSALB=5Ia4A82K43/n5J+ScEm0kDtoJUhunTSvg7c2IvfqC7W56oXjb1OLC6Hacja1YAY5OrVN+O7Spj1h0uEc3zqlrCxN16bgwuZTnqQeaOLZwqhlaOo4tpd4inWCPCzy; Expires=Tue, 24 Jan 2023 22:51:57 GMT; Path=/
AWSALBCORS=5Ia4A82K43/n5J+ScEm0kDtoJUhunTSvg7c2IvfqC7W56oXjb1OLC6Hacja1YAY5OrVN+O7Spj1h0uEc3zqlrCxN16bgwuZTnqQeaOLZwqhlaOo4tpd4inWCPCzy; Expires=Tue, 24 Jan 2023 22:51:57 GMT; Path=/; SameSite=None; Secure
x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089;Version=1;Domain=.channel.io;Path=/;Max-Age=31536000;Secure;HttpOnly;SameSite=None
access-control-allow-origin: https://han.gl
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: Date,Content-Disposition,x-account,x-session
X-Firefox-Spdy: h2
cf.channel.io/asset/plugin/images/shadow-body.png
143.204.55.31200 OK 3.4 kB URL HTTP/2 cf.channel.io/asset/plugin/images/shadow-body.png
IP 143.204.55.31:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash ab4e2bd4af4c8be7cb3ec4eb937e4995
dc060a98686ccda80e6f49a0ae5b4030ec9abd95
cdce5d864d3b0a05ba2793480b56db8ae7ae26aae101bc29b34d1fae93b15343
GET /asset/plugin/images/shadow-body.png HTTP/1.1
Host: cf.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Cookie: x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 3401
date: Sat, 14 Jan 2023 01:41:33 GMT
last-modified: Thu, 12 Jan 2023 13:19:44 GMT
etag: "ab4e2bd4af4c8be7cb3ec4eb937e4995"
cache-control: public, max-age=604800
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZESBJ5gDLSYnFw2otESnurO3lZXSrXiuPsqOj7c9Z27AQr1hxGQt8w==
age: 335424
X-Firefox-Spdy: h2
cf.channel.io/asset/plugin/images/normal.svg
143.204.55.31200 OK 377 B URL HTTP/2 cf.channel.io/asset/plugin/images/normal.svg
IP 143.204.55.31:0
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 39be817e142d4662c075eb449548aa9d
ed3ebfaf4ecac3e024bc6251d43ffb84c16ae8a4
1045a27f78c9abf1120791ddd2bace89fdc635b690f47fd9dabc4094d9ecd3a3
GET /asset/plugin/images/normal.svg HTTP/1.1
Host: cf.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Cookie: x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/svg+xml
content-length: 377
date: Thu, 12 Jan 2023 13:20:09 GMT
last-modified: Thu, 12 Jan 2023 13:19:44 GMT
etag: "39be817e142d4662c075eb449548aa9d"
cache-control: public, max-age=604800
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cMvyhxCTsiNs0cBB1oclizk9TTxnMaXk_DGIu63TYsbC-4aUvzWeaA==
age: 466309
X-Firefox-Spdy: h2
cf.channel.io/asset/plugin/images/gradient-body.png
143.204.55.31200 OK 10 kB URL HTTP/2 cf.channel.io/asset/plugin/images/gradient-body.png
IP 143.204.55.31:0
File type PNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced\012- data
Hash 4a1ecb492f8acdfd2dc64dce0dfae0b5
eb82b5dac8d34deeaec7e5ea0541a9b5538df858
3765c61f4e883389683ed2a203d9700a02641a847bae837c41189521a20eb1fe
GET /asset/plugin/images/gradient-body.png HTTP/1.1
Host: cf.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Cookie: x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/png
content-length: 10399
date: Thu, 12 Jan 2023 13:20:09 GMT
last-modified: Thu, 12 Jan 2023 13:19:44 GMT
etag: "4a1ecb492f8acdfd2dc64dce0dfae0b5"
cache-control: public, max-age=604800
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: eFRcDqhrngfVjwDlEbuqilHTjY50ZRoiwQTdmrR2DcmOASbgKY5pZg==
age: 466309
X-Firefox-Spdy: h2
display.ad.daum.net/sdk/banner?id=DAN-29TVuKbmb9y190Yg&cnt=1&pxratio=1&pwidth=1280&pheight=1024&containerid=kakao_ad_yr3Rc0&ppi=96&lmt=N&containerwidth=0&test=N&ctag=%7B%7D&sdktype=web&sdkver=4.9.0&secretmode=N&network=0&surl=https%3A%2F%2Fhan.gl%2F&cookiedisabled=N&rfseq=1&browser=firefox&sdkid=03c396dc-3bea-4869-9b1f-91f3907a73ef
211.249.201.89200 OK 1.5 kB URL HTTP/1.1 display.ad.daum.net/sdk/banner?id=DAN-29TVuKbmb9y190Yg&cnt=1&pxratio=1&pwidth=1280&pheight=1024&containerid=kakao_ad_yr3Rc0&ppi=96&lmt=N&containerwidth=0&test=N&ctag=%7B%7D&sdktype=web&sdkver=4.9.0&secretmode=N&network=0&surl=https%3A%2F%2Fhan.gl%2F&cookiedisabled=N&rfseq=1&browser=firefox&sdkid=03c396dc-3bea-4869-9b1f-91f3907a73ef
IP 211.249.201.89:0
File type JSON data\012- , ASCII text, with very long lines (3282), with no line terminators
Hash cc7db1a50301058b5a48b2f819031e24
3aa8ba4987d072313de7196af8ca391b2643140a
972014f16e72d25e37917c7e4f1bb102071912ca4465dd4fa2b9b087e58d6ac7
GET /sdk/banner?id=DAN-29TVuKbmb9y190Yg&cnt=1&pxratio=1&pwidth=1280&pheight=1024&containerid=kakao_ad_yr3Rc0&ppi=96&lmt=N&containerwidth=0&test=N&ctag=%7B%7D&sdktype=web&sdkver=4.9.0&secretmode=N&network=0&surl=https%3A%2F%2Fhan.gl%2F&cookiedisabled=N&rfseq=1&browser=firefox&sdkid=03c396dc-3bea-4869-9b1f-91f3907a73ef HTTP/1.1
Host: display.ad.daum.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://han.gl
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Date: Tue, 17 Jan 2023 22:51:57 GMT
Server: Apache
Vary: Origin,Accept-Encoding
Referrer-Policy: origin-when-cross-origin, strict-origin-when-cross-origin
Access-Control-Allow-Origin: https://han.gl
Access-Control-Allow-Credentials: true
Content-Type: application/json
Set-Cookie: aid=7358c49581c5429fbf10c439b98dbb59; Max-Age=31536000; Expires=Wed, 17 Jan 2024 22:51:57 GMT; SameSite=None; Path=/; Domain=.ad.daum.net; Secure; HTTPOnly
aid_ts=1673995917600; Max-Age=31536000; Expires=Wed, 17 Jan 2024 22:51:57 GMT; SameSite=None; Path=/; Domain=.ad.daum.net; Secure; HTTPOnly
Content-Encoding: gzip
P3P: CP="ALL CURa ADMa DEVa TAIa OUR BUS IND PHY ONL UNI PUR FIN COM NAV INT DEM CNT STA POL HEA PRE LOC OTC"
Cache-Control: no-cache, no-store, must-revalidate
Content-Length: 1512
Connection: close
cf.channel.io/thumb/200x200/pub-file/63922/6159d9d6d1d3fd7b68b3/2150503_connection_link_linkage_seo_url_icon-3.png
143.204.55.31200 OK 23 kB URL HTTP/2 cf.channel.io/thumb/200x200/pub-file/63922/6159d9d6d1d3fd7b68b3/2150503_connection_link_linkage_seo_url_icon-3.png
IP 143.204.55.31:0
File type PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash f6d618a97b2a75e6927e25d619a7b498
0679cca9ccb85af7ce4d23df70e76d62e93cca25
6d97229d400a6d3fd75b81fb64a9f5fa306c7fad33b282c0cd3bd61b88ab87fb
GET /thumb/200x200/pub-file/63922/6159d9d6d1d3fd7b68b3/2150503_connection_link_linkage_seo_url_icon-3.png HTTP/1.1
Host: cf.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Cookie: x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 10 Jan 2023 05:46:29 GMT
x-powered-by: Express
access-control-allow-credentials: true
cache-control: public, max-age=2592000
x-cache: Hit from cloudfront
via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: zcjaic25RlYnmbG-l1RIzVhmqdmjrKT4tWlg8lJTCLnIbp4SfeUaPA==
age: 666328
X-Firefox-Spdy: h2
t1.daumcdn.net/biz/ui/ad/ADmark/i_mark_200803.png
95.101.10.8200 OK 498 B URL HTTP/2 t1.daumcdn.net/biz/ui/ad/ADmark/i_mark_200803.png
IP 95.101.10.8:0
ASN #20940 Akamai International B.V.
File type PNG image data, 56 x 56, 8-bit colormap, non-interlaced\012- data
Hash b3f8927fe99b4c71c7ab61cc166ec8db
1e776a28f41caf790ce3e89da676b65a4ff041aa
7ff20e7deaf5f26d2756e668df8229eca78b316b5f9d230e0527c100f4d06540
GET /biz/ui/ad/ADmark/i_mark_200803.png HTTP/1.1
Host: t1.daumcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t1.daumcdn.net/adfit/adunit_style/af19f2279aaf4af2163a81bc22f9222f97cd9990?surl=https%3A%2F%2Fhan.gl%2F
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 03 Aug 2020 02:06:37 GMT
unused62: 8096267
server: openresty
content-type: image/png
content-length: 498
accept-ranges: bytes
x-wcss: dC1jb21tb24wMS1id2NhY2hlMTQ6MDpjaHR0cDozMg==
cache-control: max-age=18536
expires: Wed, 18 Jan 2023 04:00:53 GMT
date: Tue, 17 Jan 2023 22:51:57 GMT
X-Firefox-Spdy: h2
t1.daumcdn.net/b2/creative/42384/bead5c89548a335b02b5b9c5f011310c.png
95.101.10.8200 OK 19 kB URL HTTP/2 t1.daumcdn.net/b2/creative/42384/bead5c89548a335b02b5b9c5f011310c.png
IP 95.101.10.8:0
ASN #20940 Akamai International B.V.
File type PNG image data, 300 x 300, 8-bit/color RGBA, non-interlaced\012- data
Hash a9b115ed703fc7baa26886700cdedae0
f98e52b3f77ef7a60c5cb70cff42f8dacf41bcc4
da69ba6ee946966ddb44763f9513e639875a3092f2a839aeab8ba6142f0b7967
GET /b2/creative/42384/bead5c89548a335b02b5b9c5f011310c.png HTTP/1.1
Host: t1.daumcdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://t1.daumcdn.net/adfit/adunit_style/af19f2279aaf4af2163a81bc22f9222f97cd9990?surl=https%3A%2F%2Fhan.gl%2F
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 21 Apr 2020 01:19:06 GMT
server: openresty
content-type: image/png
content-length: 19093
accept-ranges: bytes
x-wcss: dC1jb21tb24wMS1id2NhY2hlMTA6MDpjaHR0cDoyNw==
cache-control: max-age=15389
expires: Wed, 18 Jan 2023 03:08:26 GMT
date: Tue, 17 Jan 2023 22:51:57 GMT
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
54.230.245.110200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 54.230.245.110:0
Hash 4089ea8b4adac59e814feabee403a5fd
ef95550a59a42f6cf9fa0f4ecf1089d8252ad795
3be2f6021c217f8172cdb5ba39091b3b592117f6db9861392508b68a2fab4d30
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 17 Jan 2023 22:51:58 GMT
Last-Modified: Tue, 17 Jan 2023 21:12:24 GMT
Server: ECS (dcb/7FA5)
X-Cache: Miss from cloudfront
Via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 1M9C05mEGR4K-iEttgjCrrDy7pB0fFXjWD8n-v9kpoBjw6mZi2c4Tw==
Age: 5974
2.front-ws.channel.io/socket.io/?EIO=4&transport=websocket
43.200.115.227101 Switching Protocols 0 B URL HTTP/1.1 2.front-ws.channel.io/socket.io/?EIO=4&transport=websocket
IP 43.200.115.227:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /socket.io/?EIO=4&transport=websocket HTTP/1.1
Host: 2.front-ws.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://han.gl
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dXOZf0YuO1fdn38V6GXxKw==
Connection: keep-alive, Upgrade
Cookie: x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Tue, 17 Jan 2023 22:51:59 GMT
Connection: upgrade
Set-Cookie: AWSALB=Da9P2IMw3+DH1Z6k3Y2QHC4pZCtXB0WQgodk2c+mCDvr7snt4Nv+isj8dObmbX+rwPScKxTXM2dCzi+OW5QUVh/IsYpi7E5cDJDvvAHl2rwDO38Q0q5ZYVWTkwvh; Expires=Tue, 24 Jan 2023 22:51:59 GMT; Path=/
AWSALBCORS=Da9P2IMw3+DH1Z6k3Y2QHC4pZCtXB0WQgodk2c+mCDvr7snt4Nv+isj8dObmbX+rwPScKxTXM2dCzi+OW5QUVh/IsYpi7E5cDJDvvAHl2rwDO38Q0q5ZYVWTkwvh; Expires=Tue, 24 Jan 2023 22:51:59 GMT; Path=/; SameSite=None; Secure
Upgrade: websocket
Sec-WebSocket-Accept: C8FZ5uTvdVCtSWGGq0/I3l4gw60=
api.channel.io/front/v5/channels/63922/events
54.180.200.183200 OK 492 B URL HTTP/2 api.channel.io/front/v5/channels/63922/events
IP 54.180.200.183:0
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (448), with no line terminators
Hash b2481c7a56772f5d7bdd4292585f5716
d3283b90edc3570c48e4edf13ed6e539648d2f73
22f7d45325f54132af0dac23675bb2f2c9ddc65c82236aefe538359c14a94eeb
POST /front/v5/channels/63922/events HTTP/1.1
Host: api.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en
Accept-Encoding: gzip, deflate, br
Referer: https://han.gl/
Content-Type: application/x-www-form-urlencoded
Origin: https://han.gl
Content-Length: 575
Connection: keep-alive
Cookie: AWSALBCORS=5Ia4A82K43/n5J+ScEm0kDtoJUhunTSvg7c2IvfqC7W56oXjb1OLC6Hacja1YAY5OrVN+O7Spj1h0uEc3zqlrCxN16bgwuZTnqQeaOLZwqhlaOo4tpd4inWCPCzy; x-veil-id=8b696c70-78ec-455d-a2cf-2c996c101089
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 17 Jan 2023 22:52:00 GMT
content-type: application/json
content-length: 492
set-cookie: AWSALB=0Weqd85FaPAK2fH07DCUQUSzWNExiAqWCF5M/Rxbus/miCRZWKZYCouspTBihv3kdk+CHZBKKF6CuzUbkEcHKLB4E4QRYeDgSGc/BrrDP2KltyiE+QS8fs542vz8; Expires=Tue, 24 Jan 2023 22:52:00 GMT; Path=/
AWSALBCORS=0Weqd85FaPAK2fH07DCUQUSzWNExiAqWCF5M/Rxbus/miCRZWKZYCouspTBihv3kdk+CHZBKKF6CuzUbkEcHKLB4E4QRYeDgSGc/BrrDP2KltyiE+QS8fs542vz8; Expires=Tue, 24 Jan 2023 22:52:00 GMT; Path=/; SameSite=None; Secure
access-control-allow-origin: https://han.gl
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: Date,Content-Disposition,x-account,x-session
X-Firefox-Spdy: h2
cdn.channel.io/plugin/ch-plugin-core.672f5e20.vendor.js
54.230.111.70200 OK 0 B URL HTTP/2 cdn.channel.io/plugin/ch-plugin-core.672f5e20.vendor.js
IP 54.230.111.70:0
GET /plugin/ch-plugin-core.672f5e20.vendor.js HTTP/1.1
Host: cdn.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 13 Jan 2023 06:46:11 GMT
last-modified: Fri, 13 Jan 2023 06:45:49 GMT
etag: W/"af89abf4f881d1ac53b985bceac03335"
cache-control: max-age=31536000,public
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: A5i0t18Rf21WofDLT7vk5f55KcGWAoHG96OLy7U5kr7wcey614SpHA==
age: 403544
X-Firefox-Spdy: h2
cdn.channel.io/plugin/ch-plugin-core-20230113154429.js
54.230.111.70200 OK 0 B URL HTTP/2 cdn.channel.io/plugin/ch-plugin-core-20230113154429.js
IP 54.230.111.70:0
GET /plugin/ch-plugin-core-20230113154429.js HTTP/1.1
Host: cdn.channel.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://han.gl/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 13 Jan 2023 06:46:12 GMT
last-modified: Fri, 13 Jan 2023 06:45:46 GMT
etag: W/"bd8f80962a7e8ad99d31b877a69d7fa4"
cache-control: max-age=31536000,public
server: AmazonS3
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 9d4a908d41124cba1276d6cef8f00c60.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: TF8znHI_4tgijf4_ZbJraHtXQmYi9wBSchwnSykGu1pUlCeSRb8G_A==
age: 403544
X-Firefox-Spdy: h2
han.gl/
188.114.97.1200 OK 0 B IP 188.114.97.1:0
Analyzer Verdict Alert quad9 Sinkholed
GET / HTTP/1.1
Host: han.gl
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
date: Tue, 17 Jan 2023 22:51:54 GMT
content-type: text/html; charset=UTF-8
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: PHPSESSID=r6cr5ljinff8cgnva53tk99ecf; path=/
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FdyHcrJTovgnzrKjS2HRA%2FGMXpNfJiaVZ5Ht3mPhpz%2FQ%2FFCqUJnEg8cd9CwT8tAfq01ZjpGB9qAAxc4GS91Qiq%2BPUuA0GtQvAva86hpBXf7WFlILeWpkfVQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 78b2a87d5af3b52d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2