Report - shefatravel.weebly.com/

Report Overview

Submitted URL
shefatravel.weebly.com/
IP
199.34.228.53
ASN
#27647 WEEBLY
Submitted
2022-11-28 17:49:53
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
cdn2.editmysite.com	11564	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.3 kB	208 kB	151.101.85.46
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.1 kB	8.4 kB	142.250.74.3
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
shefatravel.weebly.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	6.3 kB	2.3 MB	199.34.228.54
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	1.9 kB	54.230.245.110
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	5.3 kB	23.36.77.32
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.218.168.248
ajax.googleapis.com	12905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	398 B	35 kB	142.250.74.42
ec.editmysite.com	12806	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	753 B	44.232.247.128
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	372 B	18 kB	142.250.74.136
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.2 kB	142.250.74.10
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	2.4 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	67 kB	34.120.237.76
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	368 B	1.9 kB	104.18.21.226
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	66 kB	216.58.207.195

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	94 kB	2023-03-07	2024-05-10
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 142.250.74.42 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:53 Last Seen2024-05-10 23:57:14 Times Seen16709 Hash 3576a6e73c9dccdbbc4a2cf8ff544ad7 06e872300088b9ba8a08427d28ed0efcdf9c6ff5 61c6caebd23921741fb5ffe6603f16634fca9840c2bf56ac8201e9264d6daccf Loading...

	shefatravel.weebly.com/files/theme/plugins.js?1556898826	87 kB	2023-03-07	2024-04-30
Pretty URL shefatravel.weebly.com/files/theme/plugins.js?1556898826 IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:31 Last Seen2024-04-30 00:51:32 Times Seen113 Hash 1c8a26f413525e51e0716d20f48b9146 1e6b173fa4eca607428c458bc016cc5390abb807 04a6442538bbcd643a22e79a05200ea073ee4d8efb5bcae54ffb5d6303bb1385 Loading...

	shefatravel.weebly.com/	2.3 kB	2023-03-11	2023-03-11
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:00:02 Last Seen2023-03-11 22:00:02 Times Seen1 Hash c9b330477fec4a7ffb84cf8d3a8bee15 cbc706d5324abd859c7a8192bf04842a3d341d25 728351a4471dcd4c68dac1def25751db27346ee4f2e20118f15a2057a501e6e7 Loading...

	shefatravel.weebly.com/	117 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-10 19:06:50 Times Seen3035 Hash ef142665f07ac27f698aa34d471c4439 b9e0d81f97054a9a0a68f57096d992ba58f33184 fbfd3b11452dce82b76e405100aece37dcfe12df4c71fb8f2bc2fe2166e9f07f Loading...

	shefatravel.weebly.com/	62 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-10 19:06:51 Times Seen3044 Hash 461bd236ddeca3b8b6e3cca8599ccb43 73c74d3281452e483c11f944d798738afc7f5b89 aebd4ac1ead5b4987d8b975cafa889ca1a6831175bc206ca9552863e390bc0f1 Loading...

	cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1669228371	3.6 kB	2023-03-07	2024-05-10
Pretty URL cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1669228371 IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-10 05:53:27 Times Seen4530 Hash 40b81b2d52ba9d2e2c64c31ff6a24cd7 6b5689250661646ecbb841f2475f1556a113373c e06baca13f25df9c7d684fc1b1fdfbbbb95070a1d5a9cd648632da7bccc90b96 Loading...

	shefatravel.weebly.com/	263 B	2023-03-11	2023-03-11
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:35:23 Last Seen2023-03-11 22:00:02 Times Seen1 Hash 463e8f2a03037c16dbaefb11ed179b4b 0d4af0d17be52091aca4ac5c16cc0fe76d268f6d 1ea380ff79d31510212055ef3b70a4e2f2daac671427069b62cab6feb13c9044 Loading...

	shefatravel.weebly.com/	62 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-10 05:53:27 Times Seen2803 Hash 1afa8234115c6f382672d91917a6fb26 e96957cb655865327588927ebc34d1ae376e9e64 45988af53e17c3bc8103bbe22bd47dd6d2d03d4a90c4116dc0621ab24ff87258 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-05-09
Pretty URL ssl.google-analytics.com/ga.js IP 142.250.74.136 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-05-09 13:01:11 Times Seen3497 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	shefatravel.weebly.com/	1.8 kB	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-10 19:06:50 Times Seen3032 Hash 563cec0ace2baea4e867b491f66cd6b0 fc4451f8fa76c5d1e3714e9008510633cffaa4f7 e4538493fc4f43f93806d0239acac9b38b0453c8440dc5ba4fcb47eae6ab2556 Loading...

	shefatravel.weebly.com/	233 B	2023-03-11	2023-03-11
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:00:02 Last Seen2023-03-11 22:00:02 Times Seen1 Hash 7f51e00e8d7eb50b105d436e40e544f9 fe447d34e3602e0931fc7cba6573c9d42850e554 1fd20017dc24dd1442c625fcbc95e2391cdfc094167603e927b4004e367d86e8 Loading...

	shefatravel.weebly.com/	32 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-10 19:06:51 Times Seen3058 Hash 1bca01edca83d94091a2bb38d7ef8183 d05117e4ab3b3461be3855e95813a5c607e3ca95 fcf1cbf5cfad6d605868f42d38a0a937f5e6eaa91b05dcfbbbc95e4c3e23e528 Loading...

	shefatravel.weebly.com/	2.0 kB	2023-03-11	2023-03-11
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:00:02 Last Seen2023-03-11 22:00:02 Times Seen1 Hash 7c93925f57aa6f483717221c2b936f45 5dbf0ae358abd20f1b968bedb919711908c1d912 3e405fe87f03f91aaae65570637829b9513d6951f92954036c083c79ba00b2e6 Loading...

	shefatravel.weebly.com/	1.2 kB	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-10 19:06:51 Times Seen3010 Hash 24449345e209b8641a813eaef44a5244 21617897e4d35717e2e41b766501fbd883a8f16d 3e72636c6cf854c8657ccbf9e03f7af05bd4836066c329417a4f8251bb5d18c1 Loading...

	shefatravel.weebly.com/files/theme/custom.js?1556898826	5.4 kB	2023-03-07	2024-02-20
Pretty URL shefatravel.weebly.com/files/theme/custom.js?1556898826 IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:45 Last Seen2024-02-20 06:21:38 Times Seen12 Hash 601d14e35387be6ef5e30dfb1c8a8184 b4f223ba8021b7454f7c5726f3b5781cbf023137 c8a778c07be0c56988c3c0099c558b9ed5b4a2b226efaeeb3551fd6ebc5c222c Loading...

	shefatravel.weebly.com/	664 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:44 Last Seen2024-05-10 19:06:51 Times Seen3004 Hash fdd0b895b9cf69a9a4f4817533aa51f5 afc67ab62c3c91df626260407845fc41bf5d895e a50f8a487c23d76460681440220a85a28cdb09912ef451d59aa2b4f47c32aea0 Loading...

	cdn2.editmysite.com/js/wsnbn/snowday262.js	75 kB	2023-03-07	2024-05-10
Pretty URL cdn2.editmysite.com/js/wsnbn/snowday262.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:13 Last Seen2024-05-10 21:39:13 Times Seen30100 Hash 99bbe560926e583b8e99036251deb783 8d81b73ae06f664f9d9e53dd5829a799bf434491 648e766bf519673f9a90cc336cbecede80dcbe3419b43d36ecbb25d88f5584a3 Loading...

	cdn2.editmysite.com/js/site/main.js?buildTime=1580927965	477 kB	2023-03-07	2023-11-21
Pretty URL cdn2.editmysite.com/js/site/main.js?buildTime=1580927965 IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:53 Last Seen2023-11-21 08:41:00 Times Seen899 Hash f88ad9fb085a6c0dc219e8aa282ce47b 28d40d567859f99251bdc3337bafa088224da780 ba97504b136b447bea2ecc59111ba5a63200d2662f92936d0f7c206492b989d8 Loading...

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1580927965&	180 kB	2023-03-08	2023-03-11
Pretty URL cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1580927965& IP 151.101.85.46 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:46 Last Seen2023-03-11 23:49:51 Times Seen1 Hash b63339314118704151a7a4ffdcc5769e b134986f9c4f62502f612fc987f3ec6ae8b036fc 9ca660c0ccf8243e9ca31047373bb77a4bbbaf3ed3c90c5a68442b26b4e3f515 Loading...

	shefatravel.weebly.com/	58 B	2023-03-11	2023-03-11
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:00:02 Last Seen2023-03-11 22:00:02 Times Seen1 Hash 642d195bb247eaed7376413f0e21def6 17a50f85d41f65dcfd91dae29674c1b28475f740 b2df595c9a02d09d2e417353754ab44ccd317545ffbeb68bbfb2c8ab32eda505 Loading...

	shefatravel.weebly.com/	35 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-10 19:06:51 Times Seen3049 Hash 13385ea3f3e6184de3bfa80f08fe938b 6f859a2fd4b7e15ed74990516d97a52e7b4eeb20 5e87d85ec57af5d97b6c0d4c6e766afd2b53d077102827d19625a37d8cd11c2d Loading...

	shefatravel.weebly.com/	22 B	2023-03-07	2024-05-10
Pretty URL shefatravel.weebly.com/ IP 199.34.228.54 ASN #27647 WEEBLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:45 Last Seen2024-05-10 19:06:51 Times Seen2360 Hash 9a33cbad7c996ea8903a3eb3332a125c 8efed109b301f8aa0f3768dcd824d669d0129741 5d3b8f4578ca89904a46d014a8433346ca2773e8691f6cc9d09b2b30f0802dbc Loading...

HTTP Transactions (67)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 150792cfc458af013998f4ef6bdf5f74 d5179b2dcb11d06f82606bf6eb6648319998d63e 72937c756d3feeae6d04a6f445398b0436bdf559f8c7437e3a3233263943900e HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "72937C756D3FEEAE6D04A6F445398B0436BDF559F8C7437E3A3233263943900E" Last-Modified: Sat, 26 Nov 2022 21:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4465 Expires: Mon, 28 Nov 2022 19:04:06 GMT Date: Mon, 28 Nov 2022 17:49:41 GMT Connection: keep-alive`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 9408cc0694fcbea57966c3a3ba906092 fddcee1fdcf3209298e41a4b1b5560357fa165f0 6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 4699 Cache-Control: max-age=151199 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:41 GMT Etag: "63848df9-1d7" Expires: Wed, 30 Nov 2022 11:49:40 GMT Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 71f9c681a82440fd55e76c780a20e55d 3147768cfbcdd06e0c6e69684292e68e99917a80 5ea71ce6dd9e927f9bb3f97f59cc1ac7dc25a949024815965b29bc5835614786 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "5EA71CE6DD9E927F9BB3F97F59CC1AC7DC25A949024815965B29BC5835614786" Last-Modified: Sat, 26 Nov 2022 09:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6665 Expires: Mon, 28 Nov 2022 19:40:46 GMT Date: Mon, 28 Nov 2022 17:49:41 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	34.102.187.140	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash 30db107dcf4380cef05efea409c2e6a3 96e6a306fbc07299aba64e5c14e2bfca35872fa9 b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Retry-After, Content-Type, Backoff, Content-Length, Alert content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Mon, 28 Nov 2022 17:17:48 GMT cache-control: public,max-age=3600 content-type: application/json age: 1913 alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: 4mVS3SN/SpYV8yH2lSqsWoTLaE1PkTEsQ8B6rmsVD0bbwdcZWBZHQUyiIEXVe7Acpoy1C3t0oq8= x-amz-request-id: Q2Y27GVVTWG28KFH content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Mon, 28 Nov 2022 17:45:07 GMT age: 274 last-modified: Thu, 10 Nov 2022 09:21:27 GMT etag: "9ebddc2b260d081ebbefee47c037cb28" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	shefatravel.weebly.com/	199.34.228.54	301 Moved Permanently	370 B
URL HTTP/1.1 shefatravel.weebly.com/ IP 199.34.228.54:0 ASN #27647 WEEBLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text Size 370 B (370 bytes) Hash d5bcd42a0f698de08a949bacd0b18463 e69a9934466682ec5615f611b02553e9c74a311d 96615fe211d975f9f195fbe6ab0f58a9ff76b0ec0b8ad02ae7c9b7b37c3a5464 HTTP Headers `GET / HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 301 Moved Permanently Date: Mon, 28 Nov 2022 17:49:41 GMT Server: Apache Set-Cookie: is_mobile=0; path=/; domain=shefatravel.weebly.com Vary: X-W-SSL,User-Agent Location: https://shefatravel.weebly.com/ X-Host: blu9.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 370 Keep-Alive: timeout=10, max=44 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Mon, 28 Nov 2022 17:49:41 GMT content-type: application/json content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	34.102.187.140	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 34.102.187.140:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Mon, 28 Nov 2022 17:08:55 GMT cache-control: public,max-age=3600 age: 2446 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash be89eb2878663e720afc41ce412a0dca 35c7856b521eeeab8c4411f5852fabb50c09d72f 59f08de4486046039e82d777cf50a7bb39f77f38bba1e46a42d7fd1b4ad0e002 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2482 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:41 GMT Etag: "63843829-1d7" Last-Modified: Mon, 28 Nov 2022 17:08:20 GMT Server: ECS (amb/6BA1) X-Cache: HIT Content-Length: 471`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash 7ab2ef968cb6a3078f4b9cb2dda813d4 e669116047ca058a2c1b2999ff0ea8682719162c 6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2990 Cache-Control: max-age=144424 Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:41 GMT Etag: "63847a2f-1d7" Expires: Wed, 30 Nov 2022 09:56:45 GMT Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 471`

	shefatravel.weebly.com/	199.34.228.54	200 OK	8.3 kB
URL HTTP/1.1 shefatravel.weebly.com/ IP 199.34.228.54:0 ASN #27647 WEEBLY File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1350), with CRLF, LF line terminators Size 8.3 kB (8266 bytes) Hash 431ad0dce82fc14570d6396606f1460e e1e7fbd28779af6082090c7c82f46e4e3c09a3d4 ac92f09d6477b96d0f4abb535185045a06d42510ffa277562bcd7330444639f6 HTTP Headers `GET / HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/1.1 200 OK Date: Mon, 28 Nov 2022 17:49:41 GMT Server: Apache Vary: X-W-SSL,Accept-Encoding,User-Agent Set-Cookie: is_mobile=0; path=/; domain=shefatravel.weebly.com language=en; expires=Mon, 12-Dec-2022 17:49:41 GMT; Max-Age=1209600; path=/ Cache-Control: private ETag: W/"828cc0238abc56c011fa878c3da336e2-gzip" Content-Encoding: gzip X-Host: grn27.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 8266 Keep-Alive: timeout=10, max=72 Connection: Keep-Alive Content-Type: text/html; charset=UTF-8

	cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1669228371	151.101.85.46	200 OK	1.4 kB
URL HTTP/2 cdn2.editmysite.com/js/site/footerSignup.js?buildTime=1669228371 IP 151.101.85.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (3600), with no line terminators Size 1.4 kB (1372 bytes) Hash 121a5b9688d8e70ee7bb06cc79491f76 3a28220baa7d8879270c8311bed7dddefa7e43e9 181716c84474c9eb6685a809d69dda5d49ce44dfbf64c5dee89a3091e23def40 HTTP Headers `GET /js/site/footerSignup.js?buildTime=1669228371 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 23 Nov 2022 18:03:49 GMT etag: "637e6085-e10" expires: Wed, 07 Dec 2022 18:41:07 GMT cache-control: max-age=1209600 x-host: blu33.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 428915 x-served-by: cache-sjc10065-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 31, 1368 x-timer: S1669657782.085384,VS0,VE0 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1372 X-Firefox-Spdy: h2

	cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png	151.101.85.46	200 OK	9.7 kB
URL HTTP/2 cdn2.editmysite.com/images/site/footer/footer-toast-published-image-1.png IP 151.101.85.46:0 ASN #54113 FASTLY File type PNG image data, 199 x 97, 8-bit colormap, non-interlaced\012- data Size 9.7 kB (9677 bytes) Hash 6e0f7ad31bf187e0d88fc5787573ba71 14e8b85cc32a01c8901e4ac0160582d29a45e9e6 580ef6409e067a4ec4a427400c7d6216184869e2da53343df20753cc1f8a46cd HTTP Headers `GET /images/site/footer/footer-toast-published-image-1.png HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK x-guploader-uploadid: ADPycdujQNpHaXULXK5hWOudOsrFbrCOJBmkXkf6lNHnzHxB1q3PphW4yFVZQbxms7rfGEwEu0IdDaAyLbpAPqDN6NvCrqCgiKDD cache-control: public, max-age=86400, s-maxage=259200 expires: Thu, 06 Oct 2022 22:59:09 GMT last-modified: Tue, 12 Feb 2019 18:19:08 GMT etag: "6e0f7ad31bf187e0d88fc5787573ba71" x-goog-generation: 1549995548326466 x-goog-metageneration: 3 x-goog-stored-content-encoding: identity x-goog-stored-content-length: 9677 content-type: image/png x-goog-hash: crc32c=QhrKCw==, md5=bg960xvxh+DYj8V4dXO6cQ== x-goog-storage-class: STANDARD server: UploadServer accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT via: 1.1 varnish age: 154138 x-served-by: cache-bma1678-BMA x-cache: HIT x-cache-hits: 788 x-timer: S1669657782.085341,VS0,VE0 access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 9677 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash dfc6d93c89faf83ac654cd676c02764d ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d 83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash dfc6d93c89faf83ac654cd676c02764d ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d 83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash dfc6d93c89faf83ac654cd676c02764d ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d 83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	push.services.mozilla.com/	34.218.168.248	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 34.218.168.248:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: zto4WY9OU7XqnDernjXd7g== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: cUn3MvN2QGOB1HjD5kjtnn7Op+I=`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash dfc6d93c89faf83ac654cd676c02764d ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d 83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	cdn2.editmysite.com/css/old/fancybox.css?1580927965	151.101.85.46	200 OK	1.2 kB
URL HTTP/2 cdn2.editmysite.com/css/old/fancybox.css?1580927965 IP 151.101.85.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (3910) Size 1.2 kB (1218 bytes) Hash b644e92258f4c7c0b4270047652d1e60 93734d52ee9e86a768159e514076051813c39cd9 29199496fb817668f887938571046abcdfb49063d0207d571b361f221f467907 HTTP Headers `GET /css/old/fancybox.css?1580927965 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Wed, 16 Nov 2022 22:43:14 GMT etag: "63756782-f47" expires: Thu, 01 Dec 2022 08:41:39 GMT cache-control: max-age=1209600 x-host: grn49.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 983283 x-served-by: cache-sjc10066-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 88, 1 x-timer: S1669657782.091647,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1218 X-Firefox-Spdy: h2

	cdn2.editmysite.com/css/social-icons.css?buildtime=1580927965	151.101.85.46	200 OK	1.6 kB
URL HTTP/2 cdn2.editmysite.com/css/social-icons.css?buildtime=1580927965 IP 151.101.85.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (13080) Size 1.6 kB (1639 bytes) Hash dd1b976ae24c875642a63e4305fde2c6 7866a4d620fc0defccc6b55221ab0c57f1c9d01a e90611d41ff4a8eb0fce6aaab344605ea7c983105db1e8042768cd0aa9510dab HTTP Headers `GET /css/social-icons.css?buildtime=1580927965 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Mon, 21 Nov 2022 22:29:33 GMT etag: W/"637bfbcd-3319" expires: Wed, 07 Dec 2022 13:08:36 GMT cache-control: max-age=1209600 x-host: blu123.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 448865 x-served-by: cache-sjc10061-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 55, 1 x-timer: S1669657782.093981,VS0,VE2 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 1639 X-Firefox-Spdy: h2

	cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1580927965	151.101.85.46	200 OK	159 kB
URL HTTP/2 cdn2.editmysite.com/js/site/main-customer-accounts-site.js?buildTime=1580927965 IP 151.101.85.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (32007) Size 159 kB (159020 bytes) Hash 19fd4a473c58275a9e8110c598292a56 3ff56cbf5a3677387aef743acdf1a8abf822d28d 89b155f71eeef3fb8d9c95ff95288c29a0b5b722d9c0a3dfdeadfea8b8032884 HTTP Headers `GET /js/site/main-customer-accounts-site.js?buildTime=1580927965 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site TE: trailers` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Fri, 11 Nov 2022 17:05:34 GMT etag: "636e80de-82588" expires: Tue, 29 Nov 2022 09:16:44 GMT cache-control: max-age=1209600 x-host: grn25.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 1153977 x-served-by: cache-sjc10047-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 16, 1 x-timer: S1669657782.085361,VS0,VE2 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 159020 X-Firefox-Spdy: h2

	cdn2.editmysite.com/css/sites.css?buildTime=1580927965	151.101.85.46	200 OK	30 kB
URL HTTP/2 cdn2.editmysite.com/css/sites.css?buildTime=1580927965 IP 151.101.85.46:0 ASN #54113 FASTLY File type ASCII text, with very long lines (65536), with no line terminators Size 30 kB (29746 bytes) Hash d10158b22b553f723d99dc78eaee6390 80f2d6670cfb0d01cd20c471cf8e3e6465ddd3f6 939c7a8e1ad74a44e0c847e38533e69e36454b6805d25acf3fb0cb5c472d245e HTTP Headers `GET /css/sites.css?buildTime=1580927965 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: text/css last-modified: Mon, 21 Nov 2022 22:29:33 GMT etag: W/"637bfbcd-347ac" expires: Tue, 06 Dec 2022 10:30:05 GMT cache-control: max-age=1209600 x-host: grn5.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 544776 x-served-by: cache-sjc10021-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 61, 1 x-timer: S1669657782.089056,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 29746 X-Firefox-Spdy: h2

	ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js	142.250.74.42	200 OK	34 kB
URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.8.3/jquery.min.js IP 142.250.74.42:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (65483) Size 34 kB (33593 bytes) Hash a54a444f20643b131117dc2112cca05f 074964746b12ff1d30f7656310d6154ae1cc98b5 aa3ca8485dd777d4d880b38c1cf3bc2fc290d28a79ba3e3e43cba1f653132830 HTTP Headers `GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1 Host: ajax.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes vary: Accept-Encoding content-encoding: gzip access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers" report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]} timing-allow-origin: * content-length: 33593 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 22 Nov 2022 16:26:29 GMT expires: Wed, 22 Nov 2023 16:26:29 GMT cache-control: public, max-age=31536000, stale-while-revalidate=2592000 age: 523393 last-modified: Tue, 03 Mar 2020 19:15:00 GMT content-type: text/javascript; charset=UTF-8 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	shefatravel.weebly.com/files/main_style.css?1581029066	199.34.228.54	200 OK	6.2 kB
URL HTTP/1.1 shefatravel.weebly.com/files/main_style.css?1581029066 IP 199.34.228.54:0 ASN #27647 WEEBLY File type ASCII text, with very long lines (515) Size 6.2 kB (6238 bytes) Hash c746d353bca22816a46a1fd2e8570a7e 0a97407373c3483ca2fea0d88391cfffb21ce9f3 cf4c588e4a69a9d3c704d9fbd303a7f149cf7563ac6836831ca6b068226c5297 HTTP Headers `GET /files/main_style.css?1581029066 HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: text/css Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Access-Control-Allow-Headers: Origin, Authorization, Content-Type Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS Access-Control-Allow-Origin: * X-Host: blu41.sf2p.intern.weebly.net Content-Encoding: gzip`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash dfc6d93c89faf83ac654cd676c02764d ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d 83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash dfc6d93c89faf83ac654cd676c02764d ce10d3ff46b50f22f7f79a7df65b0b7a6ddb741d 83947c7c69062338e3712fe76a493a2798aa2d1f63709eac14ba908d71080dd0 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3	104.18.21.226	200 OK	1.5 kB
URL HTTP/1.1 ocsp.globalsign.com/ca/gsatlasr3dvtlsca2022q3 IP 104.18.21.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.5 kB (1462 bytes) Hash 38d831f371d83359500faeccd43ad926 ff3963b0586bc29bd6c19a99ef3355224970133d 30a9a90bef9d984438fb1d6a7d929afc2b51de4dbbeee9a80d3fa6d4b4ffddfc HTTP Headers `POST /ca/gsatlasr3dvtlsca2022q3 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: application/ocsp-response Transfer-Encoding: chunked Connection: keep-alive Etag: "994909EDDACF3D4C7BE5F2698A84298970D7E2D0" Expires: Tue, 29 Nov 2022 05:00:00 GMT Last-Modified: Mon, 28 Nov 2022 17:00:00 UTC Cache-Control: s-maxage=3600, public, no-transform, must-revalidate CF-Cache-Status: HIT Vary: Accept-Encoding Server: cloudflare CF-RAY: 7714f1124845b4eb-OSL`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash cd0a5be4865b85e858cfcaafa90f8dca 122569d314b0900b1f5e5f58cdad0d9fc16b7e1b 624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash cd0a5be4865b85e858cfcaafa90f8dca 122569d314b0900b1f5e5f58cdad0d9fc16b7e1b 624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash cd0a5be4865b85e858cfcaafa90f8dca 122569d314b0900b1f5e5f58cdad0d9fc16b7e1b 624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2	216.58.207.195	200 OK	24 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data Size 24 kB (23580 bytes) Hash e1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537 HTTP Headers `GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://shefatravel.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23580 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 22 Nov 2022 17:10:21 GMT expires: Wed, 22 Nov 2023 17:10:21 GMT cache-control: public, max-age=31536000 age: 520761 last-modified: Tue, 26 Apr 2022 15:48:56 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2	216.58.207.195	200 OK	17 kB
URL HTTP/2 fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 16588, version 1.0\012- data Size 17 kB (16588 bytes) Hash 6a93e73463e9f1b7c7b41c52c93843c5 48d5ed2bcc9c9c5c4182ae8957e5cef207cdfcbc 54eb546ba2203d87ad9a38ffdb92fdfed9733e08239dbea692a1ca059a287480 HTTP Headers `GET /s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://shefatravel.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 16588 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Thu, 24 Nov 2022 21:30:47 GMT expires: Fri, 24 Nov 2023 21:30:47 GMT cache-control: public, max-age=31536000 age: 332335 last-modified: Thu, 21 Apr 2022 16:38:59 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2	216.58.207.195	200 OK	23 kB
URL HTTP/2 fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP 216.58.207.195:0 ASN #15169 GOOGLE File type Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data Size 23 kB (23040 bytes) Hash de69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49 HTTP Headers `GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://shefatravel.weebly.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 23040 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Sat, 26 Nov 2022 21:11:39 GMT expires: Sun, 26 Nov 2023 21:11:39 GMT cache-control: public, max-age=31536000 age: 160683 last-modified: Tue, 26 Apr 2022 15:56:42 GMT content-type: font/woff2 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash cd0a5be4865b85e858cfcaafa90f8dca 122569d314b0900b1f5e5f58cdad0d9fc16b7e1b 624aa7cc70d5c36d732f15cdeb8de3854f30240cb770108dd88103f13393428d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:42 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	shefatravel.weebly.com/files/theme/plugins.js?1556898826	199.34.228.54	200 OK	20 kB
URL HTTP/1.1 shefatravel.weebly.com/files/theme/plugins.js?1556898826 IP 199.34.228.54:0 ASN #27647 WEEBLY File type ASCII text Size 20 kB (19572 bytes) Hash f949d0652f86cf688f158f57e45c8d88 f9634dc2aa2678f26708aefd82420a8aff002c92 3f3fb2fcdd039d7376833076b04ae214e0bb469fbf2f6ac9e40140ad0b6221f3 HTTP Headers `GET /files/theme/plugins.js?1556898826 HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Sat, 18 Apr 2020 15:10:21 GMT x-rgw-object-type: Normal ETag: W/"1c8a26f413525e51e0716d20f48b9146" x-amz-request-id: tx0000000000000011aa4d7-0061a76c35-a9f4046-sfo1 X-Storage-Bucket: z04a6 X-Storage-Object: 04a6442538bbcd643a22e79a05200ea073ee4d8efb5bcae54ffb5d6303bb1385 X-Host: grn79.sf2p.intern.weebly.net Content-Encoding: gzip

	shefatravel.weebly.com/files/theme/custom.js?1556898826	199.34.228.54	200 OK	1.6 kB
URL HTTP/1.1 shefatravel.weebly.com/files/theme/custom.js?1556898826 IP 199.34.228.54:0 ASN #27647 WEEBLY File type ASCII text Size 1.6 kB (1638 bytes) Hash 0143cfb26a9a3189ecf0cb69d81f9e5b 1bf51fd82c6f9e6ead2929636f40890d1cfea4dd 04ba1a3ad8d92cd2de45a33c26003de6a39e6450b5c54d0b136835f5117081cb HTTP Headers `GET /files/theme/custom.js?1556898826 HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: application/javascript Transfer-Encoding: chunked Connection: keep-alive Vary: Accept-Encoding Last-Modified: Fri, 27 Aug 2021 07:38:03 GMT ETag: W/"601d14e35387be6ef5e30dfb1c8a8184" x-amz-request-id: tx000000000000024323c8c-0061894798-1ff7178-las X-Storage-Bucket: zc8a7 X-Storage-Object: c8a778c07be0c56988c3c0099c558b9ed5b4a2b226efaeeb3551fd6ebc5c222c X-Host: grn14.sf2p.intern.weebly.net Content-Encoding: gzip`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2619 Expires: Mon, 28 Nov 2022 18:33:22 GMT Date: Mon, 28 Nov 2022 17:49:43 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2619 Expires: Mon, 28 Nov 2022 18:33:22 GMT Date: Mon, 28 Nov 2022 17:49:43 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2619 Expires: Mon, 28 Nov 2022 18:33:22 GMT Date: Mon, 28 Nov 2022 17:49:43 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 8bb181e3f5ca898c6e31a8efc2e28291 eda3a91f8e2cbc5467da08ad85e6f6a30702b66c 0e943aacb4a46480ab031ef294a0e089976ec125c331c15116b6c79f6b0f2ff0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0E943AACB4A46480AB031EF294A0E089976EC125C331C15116B6C79F6B0F2FF0" Last-Modified: Sat, 26 Nov 2022 04:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2619 Expires: Mon, 28 Nov 2022 18:33:22 GMT Date: Mon, 28 Nov 2022 17:49:43 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg	34.120.237.76	200 OK	8.9 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.9 kB (8885 bytes) Hash 3a1a4e00f1f15827cf651f373863c379 70c2a238f06ca7e56ef80c83738e081bf0de3330 3d936e1f0c96297f121faece12d6f8173e12eed5087165cd4eefc0fab368419f HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8f2e6328-f3c1-4a69-b0b6-73920b885144.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8885 x-amzn-requestid: 71b8367f-f79f-42a7-bcb8-c441a154babf x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cGDTEFSeIAMF3rg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637f18e0-631b775d3430a8c30c3b4420;Sampled=0 x-amzn-remapped-date: Thu, 24 Nov 2022 07:10:24 GMT x-amz-cf-pop: SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: jsmd6yxjJxLMEgv1jDa87iEoZXL2OuALsmUZ9Nxx1rUN-xOTdtN1-A== via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 559326ad73233233a9e52cb9e8601ede.cloudfront.net (CloudFront), 1.1 google date: Mon, 28 Nov 2022 10:13:33 GMT age: 27370 etag: "70c2a238f06ca7e56ef80c83738e081bf0de3330" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8771 bytes) Hash b0bd385532089b45a14e461abbecc1af 3da359b1ba09138a425094715b9f3a2f8d0257fe 803001528f2aefc1ea90e585d48de435975862861a1cbe8d898e5cd7ebd297dd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3a11c6ec-01ab-453a-a13d-c7804535dc69.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8771 x-amzn-requestid: 995d3904-9be1-4b40-9813-ff47e60639ec x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_MEAPoAMF0xw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d861-3fdb7958064e0c4b1aed2136;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:33 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: vrBB4JkuL3nbZnDWitQ4dvTruO9M6hSt8mw9NuJliCmcNOw8xvfWhw== via: 1.1 000f4a2f631bace380a0afa747a82482.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:16:08 GMT age: 70415 etag: "3da359b1ba09138a425094715b9f3a2f8d0257fe" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg	34.120.237.76	200 OK	9.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 9.4 kB (9430 bytes) Hash 1f434933b5bd6377d299ada22d1ae7ef 075531f525e625b117b2497f31139c9824d0e9c5 b587a3249e4f20112088608e3651c2ccbc44225a5c9d88d3bf5884d7f0e9029c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F165667de-df17-4cc6-832c-94f49703bdf2.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 9430 x-amzn-requestid: 454ca8bd-a256-45f2-8b41-feee86c5af82 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR7wyGCIIAMFhgw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d99e-1488f8ce71a91ebc3ad6b7e0;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:41:50 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: NMMuQ1NNks65LJK_HDAK69MfCJ3pS0Y6VzBs8_5Oku64v4FSWADCdw== via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:01:46 GMT age: 71277 etag: "075531f525e625b117b2497f31139c9824d0e9c5" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg	34.120.237.76	200 OK	7.0 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.0 kB (6954 bytes) Hash 2212cf75f99dc67fd45db47f7101d754 4b4a8c8e8aeccfff25d2748720dcef8fed287126 7b2d2e302faba8f273b51031fa48b444cb7839733b90e8c9d077ca63637320d8 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa57bc6cf-beaa-443b-9756-cf26e4fe3767.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6954 x-amzn-requestid: af6ab88e-884f-4c3f-a2ba-241d8bd04670 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b8I_xG2SIAMF3xQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637b21fe-573bfad8002144b7637e80f0;Sampled=0 x-amzn-remapped-date: Mon, 21 Nov 2022 07:00:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: icdx5uaiqsWXMMoKgOwAV4sOfVhAw7oLi79yfweIw5_1pTTzI_qm_w== via: 1.1 b23fb37cd7fff033ab21e3284f558a28.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:24:15 GMT age: 69928 etag: "4b4a8c8e8aeccfff25d2748720dcef8fed287126" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg	34.120.237.76	200 OK	6.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.4 kB (6376 bytes) Hash 78b1389f425425d0450c94d900404dc4 53b12a8702f7c5b7cc697e2a24da824d9434be65 0c1659ab3afc6e45f9e3acb12f8865bb99e4668f7df4501b1cc740e53f5b62ed HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F36d8942f-c540-4112-a5a9-c7ac53a00a23.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6376 x-amzn-requestid: 25b82353-9c15-44c0-ada5-55f4697de935 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cR6_KGeaoAMFb_Q= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6383d860-71711cca7c063030292c5e47;Sampled=0 x-amzn-remapped-date: Sun, 27 Nov 2022 21:36:32 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: odmAWkNyUMevvXStu7zRJyckokhyBjUwu7-JSvj8by-JWJ9eAm9P5Q== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 64f86ae1c24221f3a2e4d653d6dbc416.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 22:01:46 GMT age: 71277 etag: "53b12a8702f7c5b7cc697e2a24da824d9434be65" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg	34.120.237.76	200 OK	10 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 10 kB (10199 bytes) Hash 2cd887044e91d7ed0f1a8d7119ff7dd0 ae8aa4ce6ddaccba771fe65446926b60fc5628da bad283c15531000b7a8c126d442154b64a880cc26196a46cbd2e6266a526db67 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdee4f5d4-5a5e-4a39-9681-50795cecc0f4.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 10199 x-amzn-requestid: baee3bbe-7ded-425a-ae39-fccfc8169217 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: cOo4iF1VIAMF09g= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63828836-5522727b2f09b27e63b23270;Sampled=0 x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: CXOqm7bjsSV0aJBTkTI7LsMovjgPeISPt3sZotEc7CjZnUL_y4_OoQ== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google date: Sun, 27 Nov 2022 21:42:14 GMT age: 72449 etag: "ae8aa4ce6ddaccba771fe65446926b60fc5628da" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.sca1b.amazontrust.com/	54.230.245.110	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.110:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 43f411ea449c964cff67f17987f882b4 5eb4efaf34efc9b68f4ae4ebc8f51d9073f944cf f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Mon, 28 Nov 2022 17:49:43 GMT Last-Modified: Mon, 28 Nov 2022 17:13:26 GMT Server: ECS (nyb/1D1B) X-Cache: Miss from cloudfront Via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: -UyAB4x48rP2rb4f7mRrKFVWmHL-crVtfmI4xad0Fp2r_RxhMTaY6Q== Age: 2177`

	ocsp.sca1b.amazontrust.com/	54.230.245.110	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.110:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 43f411ea449c964cff67f17987f882b4 5eb4efaf34efc9b68f4ae4ebc8f51d9073f944cf f0bda1b41e9f570bacdd6a9e7aa4dabe70f7a62697fe3469bb9958a84ec71571 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: max-age=92343 Date: Mon, 28 Nov 2022 17:49:43 GMT Etag: "6383a1a3-1d7" Expires: Tue, 29 Nov 2022 19:28:46 GMT Last-Modified: Sun, 27 Nov 2022 17:42:59 GMT Server: ECS (nyb/1D10) X-Cache: Miss from cloudfront Via: 1.1 b2b04ca80b95df6bc86478a1bf96b7cc.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: X1rZY5lrQsDuOYEXpmQ7DO4bEAY3M8jERP3ZacoPk8gL3kgPZtFamw== Age: 6347

	shefatravel.weebly.com/uploads/8/6/5/4/86548548/pele-travel-guide_orig.png	199.34.228.54	200 OK	314 kB
URL HTTP/1.1 shefatravel.weebly.com/uploads/8/6/5/4/86548548/pele-travel-guide_orig.png IP 199.34.228.54:0 ASN #27647 WEEBLY File type PNG image data, 561 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 314 kB (314283 bytes) Hash f682146badaa98590aea66de7df51e67 4f006a8ce9e35e7e18c56afacda068ec6304470d 288f4b71a7fec8170795d575f6b312897ab13956348e5801c074ef4146e6d104 HTTP Headers `GET /uploads/8/6/5/4/86548548/pele-travel-guide_orig.png HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: image/png Content-Length: 314283 Connection: keep-alive Last-Modified: Mon, 28 Oct 2019 02:53:33 GMT x-rgw-object-type: Normal ETag: "f682146badaa98590aea66de7df51e67" x-amz-request-id: tx00000000000003c3f79fd-006384f4b6-c669cc6-sfo1 X-Storage-Bucket: z288f X-Storage-Object: 288f4b71a7fec8170795d575f6b312897ab13956348e5801c074ef4146e6d104 X-Host: blu18.sf2p.intern.weebly.net Accept-Ranges: bytes, bytes`

	ec.editmysite.com/com.snowplowanalytics.snowplow/tp2	44.232.247.128	200 OK	0 B
URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 IP 44.232.247.128:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type Referer: https://shefatravel.weebly.com/ Origin: https://shefatravel.weebly.com Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK date: Mon, 28 Nov 2022 17:49:43 GMT content-length: 0 server: nginx access-control-allow-origin: https://shefatravel.weebly.com access-control-allow-credentials: true access-control-allow-headers: Content-Type, SP-Anonymous access-control-max-age: 600 X-Firefox-Spdy: h2`

	shefatravel.weebly.com/uploads/8/6/5/4/86548548/nguna-travel-guide_orig.png	199.34.228.54	200 OK	385 kB
URL HTTP/1.1 shefatravel.weebly.com/uploads/8/6/5/4/86548548/nguna-travel-guide_orig.png IP 199.34.228.54:0 ASN #27647 WEEBLY File type PNG image data, 561 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 385 kB (384646 bytes) Hash 27e3dc0758c7ea06418515df1955d5bb 76ededdf50bf2af256932b1e00492f3f63be3a9d 6cf7a535758f946177de34ccd0b845b34e20ebb9b38697ec0a5db5317584bd51 HTTP Headers `GET /uploads/8/6/5/4/86548548/nguna-travel-guide_orig.png HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: image/png Content-Length: 384646 Connection: keep-alive Last-Modified: Mon, 28 Oct 2019 02:54:58 GMT x-rgw-object-type: Normal ETag: "27e3dc0758c7ea06418515df1955d5bb" x-amz-request-id: tx00000000000003c4d2d07-006384f4b6-c699baa-sfo1 X-Storage-Bucket: z6cf7 X-Storage-Object: 6cf7a535758f946177de34ccd0b845b34e20ebb9b38697ec0a5db5317584bd51 X-Host: blu63.sf2p.intern.weebly.net Accept-Ranges: bytes, bytes`

	shefatravel.weebly.com/uploads/8/6/5/4/86548548/efate-travel-guide_orig.png	199.34.228.54	200 OK	349 kB
URL HTTP/1.1 shefatravel.weebly.com/uploads/8/6/5/4/86548548/efate-travel-guide_orig.png IP 199.34.228.54:0 ASN #27647 WEEBLY File type PNG image data, 561 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 349 kB (349338 bytes) Hash 61ab0e1066e98b805bc1151922fdcca3 955cd47457be50c5af8345ca14414e25175a81e5 693dcf9147512d7fdd78d45609773f05f4854ed9ba2fe85ae78d762d508ff21e HTTP Headers `GET /uploads/8/6/5/4/86548548/efate-travel-guide_orig.png HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: image/png Content-Length: 349338 Connection: keep-alive Last-Modified: Mon, 28 Oct 2019 02:52:40 GMT x-rgw-object-type: Normal ETag: "61ab0e1066e98b805bc1151922fdcca3" x-amz-request-id: tx00000000000003c3f7a35-006384f4b6-c669cc6-sfo1 X-Storage-Bucket: z693d X-Storage-Object: 693dcf9147512d7fdd78d45609773f05f4854ed9ba2fe85ae78d762d508ff21e X-Host: grn14.sf2p.intern.weebly.net Accept-Ranges: bytes, bytes`

	ec.editmysite.com/com.snowplowanalytics.snowplow/tp2	44.232.247.128	200 OK	2 B
URL HTTP/2 ec.editmysite.com/com.snowplowanalytics.snowplow/tp2 IP 44.232.247.128:0 ASN #16509 AMAZON-02 File type ASCII text, with no line terminators Size 2 B (2 bytes) Hash 444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df HTTP Headers `POST /com.snowplowanalytics.snowplow/tp2 HTTP/1.1 Host: ec.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 Content-Length: 1792 Origin: https://shefatravel.weebly.com Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 200 OK date: Mon, 28 Nov 2022 17:49:43 GMT content-type: text/plain; charset=UTF-8 content-length: 2 server: nginx set-cookie: sp=160a3965-6ebf-499f-bcb4-e569861def54; Expires=Tue, 28 Nov 2023 17:49:43 GMT; Domain=; Path=/; Secure; SameSite=None p3p: policyref="/w3c/p3p.xml", CP="NOI DSP COR NID PSA OUR IND COM NAV STA" access-control-allow-origin: https://shefatravel.weebly.com access-control-allow-credentials: true X-Firefox-Spdy: h2`

	shefatravel.weebly.com/uploads/8/6/5/4/86548548/shepherds-travel-guide_orig.png	199.34.228.54	200 OK	270 kB
URL HTTP/1.1 shefatravel.weebly.com/uploads/8/6/5/4/86548548/shepherds-travel-guide_orig.png IP 199.34.228.54:0 ASN #27647 WEEBLY File type PNG image data, 561 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 270 kB (269509 bytes) Hash 41f64680b780ee4ad6fc5b15ba7f9054 612d9f821b42105b1ec82cd4b4e2082b9d4958bb 4800d41e44e9f4a7c7ce979a8740913c4477f1723863c129e3dcf7fcca4b1020 HTTP Headers `GET /uploads/8/6/5/4/86548548/shepherds-travel-guide_orig.png HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: image/png Content-Length: 269509 Connection: keep-alive Last-Modified: Mon, 28 Oct 2019 02:57:34 GMT x-rgw-object-type: Normal ETag: "41f64680b780ee4ad6fc5b15ba7f9054" x-amz-request-id: tx00000000000003c3f7a42-006384f4b6-c669cc6-sfo1 X-Storage-Bucket: z4800 X-Storage-Object: 4800d41e44e9f4a7c7ce979a8740913c4477f1723863c129e3dcf7fcca4b1020 X-Host: grn33.sf2p.intern.weebly.net Accept-Ranges: bytes, bytes`

	shefatravel.weebly.com/uploads/8/6/5/4/86548548/epi-travel-guide_orig.png	199.34.228.54	200 OK	349 kB
URL HTTP/1.1 shefatravel.weebly.com/uploads/8/6/5/4/86548548/epi-travel-guide_orig.png IP 199.34.228.54:0 ASN #27647 WEEBLY File type PNG image data, 561 x 800, 8-bit/color RGBA, non-interlaced\012- data Size 349 kB (348656 bytes) Hash 4f1ada47e84741b1dee73e9971b63ab7 854aae468db7c9ca2eb2f34cb5f1acb676d4a1f2 742dcc004c5e533724c663144c239cfd87f015efbc579a88207a6356b74e00e6 HTTP Headers `GET /uploads/8/6/5/4/86548548/epi-travel-guide_orig.png HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: image/png Content-Length: 348656 Connection: keep-alive Last-Modified: Mon, 28 Oct 2019 02:52:54 GMT x-rgw-object-type: Normal ETag: "4f1ada47e84741b1dee73e9971b63ab7" x-amz-request-id: tx00000000000003b662b87-006384f4b6-c67eadd-sfo1 X-Storage-Bucket: z742d X-Storage-Object: 742dcc004c5e533724c663144c239cfd87f015efbc579a88207a6356b74e00e6 X-Host: blu89.sf2p.intern.weebly.net Accept-Ranges: bytes, bytes`

	shefatravel.weebly.com/uploads/8/6/5/4/86548548/background-images/1434777207.jpg	199.34.228.54	200 OK	570 kB
URL HTTP/1.1 shefatravel.weebly.com/uploads/8/6/5/4/86548548/background-images/1434777207.jpg IP 199.34.228.54:0 ASN #27647 WEEBLY File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 1000x562, components 3\012- data Size 570 kB (569896 bytes) Hash 51ef6e383155b3c21663ffcbf97f7b83 ef225abad655deb36aa902421cb576b9e593dc7c 5c8d0e9efc134da042c44be273e5190babd5541035530f64da1bceecdaddcd65 HTTP Headers `GET /uploads/8/6/5/4/86548548/background-images/1434777207.jpg HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:42 GMT Content-Type: image/jpeg Content-Length: 569896 Connection: keep-alive Last-Modified: Mon, 28 Oct 2019 02:55:55 GMT x-rgw-object-type: Normal ETag: "51ef6e383155b3c21663ffcbf97f7b83" x-amz-request-id: tx00000000000003c3f79fb-006384f4b6-c669cc6-sfo1 X-Storage-Bucket: z5c8d X-Storage-Object: 5c8d0e9efc134da042c44be273e5190babd5541035530f64da1bceecdaddcd65 X-Host: grn75.sf2p.intern.weebly.net Accept-Ranges: bytes, bytes`

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c81653e99cfdfb43236c8d50248b2e51 a33bc0cb7d3bb714b7ef23b059bb304cf23d464f e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ssl.google-analytics.com/ga.js	142.250.74.136	200 OK	17 kB
URL HTTP/2 ssl.google-analytics.com/ga.js IP 142.250.74.136:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1305) Size 17 kB (17168 bytes) Hash 01d5892e6e243b52998310c2925b9f3a 58180151b6a6ee4af73583a214b68efb9e8844d4 7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d HTTP Headers `GET /ga.js HTTP/1.1 Host: ssl.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 17168 date: Mon, 28 Nov 2022 16:17:12 GMT expires: Mon, 28 Nov 2022 18:17:12 GMT cache-control: public, max-age=7200 age: 5552 last-modified: Tue, 27 Sep 2022 22:01:05 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	142.250.74.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 142.250.74.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash c81653e99cfdfb43236c8d50248b2e51 a33bc0cb7d3bb714b7ef23b059bb304cf23d464f e75fa0ce568755990d6949ef93e3e5c29213a5a11887f697af901f41b14e0274 HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 28 Nov 2022 17:49:44 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	shefatravel.weebly.com/favicon.ico	199.34.228.54	200 OK	4.3 kB
URL HTTP/1.1 shefatravel.weebly.com/favicon.ico IP 199.34.228.54:0 ASN #27647 WEEBLY File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data Size 4.3 kB (4286 bytes) Hash 4d27526198ac873ccec96935198e0fb9 b98d8b73ad6a0f7477c3397561b4aab37bf262aa 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 HTTP Headers GET /favicon.ico HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en; _snow_ses.992c=*; _snow_id.992c=69eef213-bcf8-467a-919a-551f5c956264.1669657782.1.1669657782.1669657782.0b6521cc-6965-425f-a736-62653f7a9802 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Server: nginx Date: Mon, 28 Nov 2022 17:49:44 GMT Content-Type: image/x-icon Content-Length: 4286 Connection: keep-alive Last-Modified: Fri, 24 Sep 2021 21:48:12 GMT x-rgw-object-type: Normal ETag: "4d27526198ac873ccec96935198e0fb9" x-amz-request-id: tx000000000000000c8f1f2-0061a70684-a9f1b25-sfo1 X-Storage-Bucket: z40a2 X-Storage-Object: 40a2146151863bcf46c786d596e81a308d1b0d26d74635be441e92656f29b1b4 X-Host: blu39.sf2p.intern.weebly.net Accept-Ranges: bytes`

	shefatravel.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails]	199.34.228.54	200 OK	348 B
URL HTTP/1.1 shefatravel.weebly.com/ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] IP 199.34.228.54:0 ASN #27647 WEEBLY File type JSON data\012- , ASCII text, with very long lines (348), with no line terminators Size 348 B (348 bytes) Hash a944dd688c99d2901d6719be713271c0 4f5454d5d434829baf46671638610791758725d9 adb97e1bc686c58b4286f1208d2bd969687c6cf3e2fc468697dfd956d260de49 HTTP Headers POST /ajax/api/JsonRPC/CustomerAccounts/?CustomerAccounts[CustomerAccounts::getAccountDetails] HTTP/1.1 Host: shefatravel.weebly.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json, text/javascript, /; q=0.01 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json; charset=UTF-8 X-Requested-With: XMLHttpRequest Content-Length: 83 Origin: https://shefatravel.weebly.com Connection: keep-alive Referer: https://shefatravel.weebly.com/ Cookie: is_mobile=0; language=en; _snow_ses.992c=*; _snow_id.992c=69eef213-bcf8-467a-919a-551f5c956264.1669657782.1.1669657782.1669657782.0b6521cc-6965-425f-a736-62653f7a9802 Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin `HTTP/1.1 200 OK Date: Mon, 28 Nov 2022 17:49:44 GMT Server: Apache Vary: X-W-SSL,User-Agent X-Host: blu61.sf2p.intern.weebly.net X-UA-Compatible: IE=edge,chrome=1 Content-Length: 348 Keep-Alive: timeout=10, max=75 Connection: Keep-Alive Content-Type: application/json`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg	34.120.237.76	200 OK	8.8 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.8 kB (8817 bytes) Hash 741ddfb19764ac9a77509e7e87cfbfb2 308c08784ce4a0757cbd112807555b83e17a1d56 e9271a76da94d8b655860c3b00d111396c5d3a227fd2f19e0ef400fd5e84d87e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fba57ea10-c30b-4188-bb72-b589f3564094.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers HTTP/2 200 OK server: nginx content-length: 8817 x-amzn-requestid: 31bd21c7-1d75-4159-af51-52035da16da4 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: b-krGE6AIAMF2Kg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-637c1b13-32a7b9c6642592c70783a0cf;Sampled=0 x-amzn-remapped-date: Tue, 22 Nov 2022 00:42:59 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: I6egDH0h7D08HhaoQHQ0vgghBhPfje2lGIbnWD-t7p4txzHsFxmZfg== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google date: Mon, 28 Nov 2022 10:31:22 GMT age: 26308 etag: "308c08784ce4a0757cbd112807555b83e17a1d56" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Fjalla+One&subset=latin,latin-ext	142.250.74.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Fjalla+One&subset=latin,latin-ext IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Fjalla+One&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 28 Nov 2022 17:49:42 GMT date: Mon, 28 Nov 2022 17:49:42 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Questrial&subset=latin,latin-ext	142.250.74.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Questrial&subset=latin,latin-ext IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Questrial&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 28 Nov 2022 17:49:42 GMT date: Mon, 28 Nov 2022 17:49:42 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

	cdn2.editmysite.com/js/site/main.js?buildTime=1580927965	151.101.85.46	200 OK	0 B
URL HTTP/2 cdn2.editmysite.com/js/site/main.js?buildTime=1580927965 IP 151.101.85.46:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/site/main.js?buildTime=1580927965 HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Wed, 16 Nov 2022 22:43:32 GMT etag: "63756794-74804" expires: Thu, 01 Dec 2022 12:03:17 GMT cache-control: max-age=1209600 x-host: grn85.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 971185 x-served-by: cache-sjc10064-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 22, 1 x-timer: S1669657782.085959,VS0,VE1 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 146400 X-Firefox-Spdy: h2

	cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1580927965&	151.101.85.46	200 OK	0 B
URL HTTP/2 cdn2.editmysite.com/js/lang/en/stl.js?buildTime=1580927965& IP 151.101.85.46:0 ASN #54113 FASTLY File type Size 0 B (0 bytes) Hash HTTP Headers `GET /js/lang/en/stl.js?buildTime=1580927965& HTTP/1.1 Host: cdn2.editmysite.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK server: nginx content-type: application/javascript last-modified: Mon, 21 Nov 2022 22:28:26 GMT etag: "637bfb8a-2c00a" expires: Wed, 07 Dec 2022 09:51:47 GMT cache-control: max-age=1209600 x-host: blu64.sf2p.intern.weebly.net content-encoding: gzip via: 1.1 varnish, 1.1 varnish accept-ranges: bytes date: Mon, 28 Nov 2022 17:49:42 GMT age: 460675 x-served-by: cache-sjc10081-SJC, cache-bma1678-BMA x-cache: HIT, HIT x-cache-hits: 30, 1 x-timer: S1669657782.114010,VS0,VE2 vary: Accept-Encoding access-control-allow-origin: * alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400 content-length: 32668 X-Firefox-Spdy: h2

	fonts.googleapis.com/css?family=Lato:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext	142.250.74.10	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css?family=Lato:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext IP 142.250.74.10:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers `GET /css?family=Lato:400,300,300italic,700,400italic,700italic&subset=latin,latin-ext HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://shefatravel.weebly.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 28 Nov 2022 17:49:42 GMT date: Mon, 28 Nov 2022 17:49:42 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations