Report - nuphy.refr.cc/

Report Overview

Submitted URL
nuphy.refr.cc/
IP
54.255.36.167
ASN
#16509 AMAZON-02
Submitted
2023-02-07 07:24:29
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
3
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
cdn.referralcandy.com	333895	2013-10-02T01:59:21Z	2023-02-28T22:18:35Z	1.3 kB	2.8 kB	54.230.111.95
client-assets.referralcandy.com	494014	2018-06-20T18:05:17Z	2023-02-24T01:47:14Z	451 B	12 kB	54.230.111.107
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
ocsp.r2m02.amazontrust.com	unknown	2022-10-12T16:01:39Z	2023-03-13T08:10:58Z	700 B	1.9 kB	54.230.80.227
nuphy.refr.cc	unknown	2023-02-07T08:24:02Z	2023-02-07T08:24:02Z	788 B	810 B	52.76.125.46
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.161.147.150
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	40 kB	34.120.237.76
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.7 kB	2.9 kB	93.184.220.29
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
nuphy.referralcandy.com	unknown	2022-12-22T19:12:54Z	2023-01-14T19:16:38Z	1.1 kB	941 B	52.76.125.46
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	2.0 kB	630 B	142.250.74.106
cdnjs.cloudflare.com	235	2015-04-17T22:46:33Z	2023-03-13T05:09:21Z	1.8 kB	75 kB	104.17.25.14
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	216.58.211.3
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	380 B	21 kB	142.250.74.14
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-13T05:09:17Z	837 B	1.7 kB	172.64.132.15
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	2.0 kB	5.3 kB	95.101.11.115
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	350 B	966 B	54.230.245.100

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-02-07 07:25:07	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-07 07:25:07	medium	Client IP	Internal IP	ET DNS Query for .cc TLD
2023-02-07 07:25:07	medium	Client IP	Internal IP	ET DNS Query for .cc TLD

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	Size	First Seen	Last Seen
	nuphy.referralcandy.com/	359 B	2023-03-13	2023-03-13
Pretty URL nuphy.referralcandy.com/ IP 52.76.125.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:53:10 Last Seen2023-03-13 18:53:10 Times Seen1 Hash ec0264418857020f913498c37bbd9441 4d87aab135ea4f595e352d80fed4e5da2d3506a2 fbb8e1dcaf859ed2722c7f6b657cd923dd16e124ac1f0d8cee78bdae07ada6e4 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.14 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.6.1/clipboard.min.js	11 kB	2023-03-07	2024-04-06
Pretty URL cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.6.1/clipboard.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:11:51 Last Seen2024-04-06 21:42:50 Times Seen234 Hash e77a83c01eb89942d5ae12a79183a741 d4c23f3a7e2f18585ea69e626a77fac782ea6f23 125d1f1220f760e33bb88559cedc90ce66db3e58048f4a09571456ce2521e141 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	87 kB	2023-03-07	2024-04-26
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-26 12:52:28 Times Seen106348 Hash a09e13ee94d51c524b7e2a728c7d4039 0dc32db4aa9c5f03f3b38c47d883dbd4fed13aae 160a426ff2894252cd7cebbdd6d6b7da8fcd319c65b70468f10b6690c45d02ef Loading...

	cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/js/foundation.min.js	149 kB	2023-03-07	2024-03-18
Pretty URL cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/js/foundation.min.js IP 104.17.25.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:51 Last Seen2024-03-18 18:06:54 Times Seen141 Hash af2faf64ef4f5cd2c9ff762170e2b227 38b919269d571717271bba48ab0374e109eaf387 9916250aee441bea2e0f4ed6c4b17cbf8640658080e96ae67485f29f506ff559 Loading...

	nuphy.referralcandy.com/	1.4 kB	2023-03-13	2023-06-16
Pretty URL nuphy.referralcandy.com/ IP 52.76.125.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:53:10 Last Seen2023-06-16 16:09:42 Times Seen18 Hash 7d9293d0128aa0077436303dbcd43fef add3a663852339a4875751904519e057766ea4ae 60952e223401e90b98394f54b0d3bcc1f26483abc3d3daca90a04c46f2cad8cd Loading...

	nuphy.referralcandy.com/	2.9 kB	2023-03-13	2023-03-13
Pretty URL nuphy.referralcandy.com/ IP 52.76.125.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:53:10 Last Seen2023-03-13 18:53:10 Times Seen1 Hash e30d484284f5655007c50bd22755e44d 9ca73fe91a475295363d5ef0c384daf33ccdc1af eb965c200a3242501eae768e6828e7ea4dc82c87be459893a1d5eb56bf5977b8 Loading...

	nuphy.referralcandy.com/	2.4 kB	2023-03-13	2023-03-14
Pretty URL nuphy.referralcandy.com/ IP 52.76.125.46 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 18:53:10 Last Seen2023-03-14 06:00:10 Times Seen1 Hash a286c1357a6d19d7e63b70a08897a735 5c30ae0a369811ce7d6223a29ea91c538b9ea9a5 1846165f9769e1ec2492f3ae3e40b9b22ffed2a7be52113ba9f7d72392851dcd Loading...

HTTP Transactions (45)

	URL	IP	Response	Size
	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 507011ccb9124dcd57e84a90a0965cc4 1a6575d0ac979c7184490cc9836ac4812ad2afd1 01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE" Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6980 Expires: Tue, 07 Feb 2023 09:20:38 GMT Date: Tue, 07 Feb 2023 07:24:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 565c1bbc5c1c40be1988b3bf6fd9dc1a cfdba5bc597130461dd67bf6cda53183be592493 60ceb36a8329c92fc49a3caf50daf511a38e01eac21a07d7a0a838166bea058d HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "60CEB36A8329C92FC49A3CAF50DAF511A38E01EAC21A07D7A0A838166BEA058D" Last-Modified: Mon, 06 Feb 2023 23:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10025 Expires: Tue, 07 Feb 2023 10:11:23 GMT Date: Tue, 07 Feb 2023 07:24:18 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash cc14b0d2f7c451f6431dc87ba54d1d60 bab8bfda6fa3e2f17125353f5147211787dc25d0 b58fe18a5cc8fe5aaf49ba7eadd0ef34692892e68e9c52eb5bb56ea27e1300ad HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "B58FE18A5CC8FE5AAF49BA7EADD0EF34692892E68E9C52EB5BB56EA27E1300AD" Last-Modified: Mon, 06 Feb 2023 20:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=17663 Expires: Tue, 07 Feb 2023 12:18:41 GMT Date: Tue, 07 Feb 2023 07:24:18 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash bf0c602d32b3c14606f22a86183b5e3c 6eabd8d83475eba731968abe1a05a8bfd272f160 6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Retry-After, Backoff, Alert, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 07 Feb 2023 06:34:07 GMT content-type: application/json age: 3011 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash e76071a28ee566dababb3834f46d68ed aebb4e68c1ba2de0f90025283e8ed8470944fde0 78b6df2627172e5b35476bc31020f02898cdc412aaf4337af2c3b049a60912b6 HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-03-20-18-44-46.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: bDyiNrdcuvk17h9rBREOWGdaaI059ENlB+3JmmBhNatZ/jEnR8S1N/H3E49J6Ahd4yk+6vAxso0= x-amz-request-id: 9B65S7GTGPTQEA74 content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 07 Feb 2023 06:45:28 GMT age: 2330 last-modified: Sun, 29 Jan 2023 18:44:47 GMT etag: "e76071a28ee566dababb3834f46d68ed" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 07 Feb 2023 07:24:18 GMT content-type: application/json content-length: 12 access-control-allow-credentials: true access-control-expose-headers: content-type vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	nuphy.refr.cc/	52.76.125.46	302 Moved Temporarily	138 B
URL HTTP/1.1 nuphy.refr.cc/ IP 52.76.125.46:0 ASN #16509 AMAZON-02 File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 138 B (138 bytes) Hash aff950cab4c0265e21d401db15f1026d f03e18461817f7a6546c8bf8fa8d686d7e30aca0 753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0 HTTP Headers `GET / HTTP/1.1 Host: nuphy.refr.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1` `HTTP/1.1 302 Moved Temporarily Date: Tue, 07 Feb 2023 07:24:18 GMT Content-Type: text/html Content-Length: 138 Connection: keep-alive Server: nginx Location: https://nuphy.refr.cc/`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Last-Modified, Content-Type, Pragma, ETag, Retry-After, Backoff, Expires, Alert, Cache-Control, Content-Length content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 07 Feb 2023 06:51:19 GMT age: 1980 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 9b88bae61bca33aba8aa99f6128db8d9 a07b61fb2458917699613fcae68710941b595416 54915c2f79822732e06a592d027da421ad1e7a6458c545f98333db25612b3dea HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "54915C2F79822732E06A592D027DA421AD1E7A6458C545F98333DB25612B3DEA" Last-Modified: Mon, 06 Feb 2023 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=4959 Expires: Tue, 07 Feb 2023 08:46:58 GMT Date: Tue, 07 Feb 2023 07:24:19 GMT Connection: keep-alive`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 531e332a8d02ad0924b1960870d14161 3983f53b470918573fd55045e7b5042f5ba7e568 1ef05174efb87419edb9eee30c4d63f772dc77d8c0a2efebc1ade86010a455c6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 07 Feb 2023 07:24:19 GMT Last-Modified: Tue, 07 Feb 2023 06:22:00 GMT Server: ECS (nyb/1D35) X-Cache: Miss from cloudfront Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: pJIvw_Y6M0vvn3bwp9_seH_ySfZ6uHA0tUBjoMN22WFlGmavE7fI2Q== Age: 3739`

	push.services.mozilla.com/	35.161.147.150	101 Switching Protocols	0 B
URL HTTP/1.1 push.services.mozilla.com/ IP 35.161.147.150:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: 9N8e5nibs7tdC1uzDsHZ0g== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket `HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: tkBB1oC17iRrmOxD9cseDaFSHLM=`

	ocsp.r2m02.amazontrust.com/	54.230.80.227	200 OK	471 B
URL HTTP/1.1 ocsp.r2m02.amazontrust.com/ IP 54.230.80.227:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash 531e332a8d02ad0924b1960870d14161 3983f53b470918573fd55045e7b5042f5ba7e568 1ef05174efb87419edb9eee30c4d63f772dc77d8c0a2efebc1ade86010a455c6 HTTP Headers `POST / HTTP/1.1 Host: ocsp.r2m02.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 07 Feb 2023 07:24:20 GMT Last-Modified: Tue, 07 Feb 2023 06:22:00 GMT Server: ECS (bsa/EB23) X-Cache: Miss from cloudfront Via: 1.1 a2c3c8b833b34851dca4f7753ecaae58.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: xuYk9A-Enqw2RJQxOtWLAgn7Ue-1Z-lwYZSPybKixHDDugF0nzVZZg== Age: 3740`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12014 Expires: Tue, 07 Feb 2023 10:44:34 GMT Date: Tue, 07 Feb 2023 07:24:20 GMT Connection: keep-alive`

	r3.o.lencr.org/	95.101.11.115	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 95.101.11.115:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 68273225f74fbf7493f395610d7a73fc 5a8779ef5656aeeba23b365aad60b7901c5dd7fc c83f285a1f3df0f7ac758a68ee95cc3d2671f80264c2e143cc0561cc574e3f19 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "C83F285A1F3DF0F7AC758A68EE95CC3D2671F80264C2E143CC0561CC574E3F19" Last-Modified: Mon, 06 Feb 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=12014 Expires: Tue, 07 Feb 2023 10:44:34 GMT Date: Tue, 07 Feb 2023 07:24:20 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg	34.120.237.76	200 OK	6.4 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.4 kB (6384 bytes) Hash 88178e0f623494e30ece4da4eed04d60 7f016d87157a577e4ad4e4cf6c854a0489f8571a e5658ac599ca37e797637a596ca9b65c80c1053b2ce5dacc667ae3b8b1ce54a3 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09bdaec3-9afd-4cea-87ec-6adabc28a3e8.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6384 x-amzn-requestid: 5f91a438-31d9-42ca-96b4-71344cc736c6 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f77IcE2-oAMFbZA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e17235-1ce1ebfa4e9ae6053434c48d;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 21:33:41 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: ee3lrCu0ZcpPQ-tQiF3j59bjY0W_zFOKl2H__y_twSGGESxmir3JHg== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:46:30 GMT age: 34670 etag: "7f016d87157a577e4ad4e4cf6c854a0489f8571a" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg	34.120.237.76	200 OK	4.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 4.2 kB (4227 bytes) Hash eedb4de12585c70ddb5b8f94fe6a59e2 83c9437e71a0a03b3e8ff652155a85eafa76cdda d4493a30f62e9ad224b3595ba3af8a322e2d4a3d9238a1847973f962bdcc0c82 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8ada2635-3335-4f49-9e7f-22d2ae016030.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 4227 x-amzn-requestid: b45f2ab7-0102-4542-9514-54fb93a0e27f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f77sTH4jIAMFnsQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e1731b-4a24bcb1102e58543cd81343;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 21:37:31 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: V_4NzIAVBOZMjf_YIM3bowFdlP1y4peI5JI-jO105s3NVjmyYnC0Tg== via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:48:48 GMT age: 34532 etag: "83c9437e71a0a03b3e8ff652155a85eafa76cdda" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg	34.120.237.76	200 OK	3.7 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 3.7 kB (3712 bytes) Hash 0594f78c4fdfed5dd2e0666312555f40 db903b9a3f387c1510170f8d16dd4d289f7df83f 8874083a529064657b18be58147ae7df5fe79c822c4bd2a023fdf3df7186a62e HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e47a0b9-4a27-4f39-8f25-f88789a2408f.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 3712 x-amzn-requestid: 44c7e7bd-1a95-49b6-9b0a-f8aff3725ded x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: ftbOtH-lIAMF0xw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dba591-2fb19c33646c3d327681e9f9;Sampled=0 x-amzn-remapped-date: Thu, 02 Feb 2023 11:59:13 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: ws42XiDa6w4O13v7obhNXNfA0QQIv03RG0Ze0IPrKWxxvsvUY2eCVg== via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:48:55 GMT age: 34525 etag: "db903b9a3f387c1510170f8d16dd4d289f7df83f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg	34.120.237.76	200 OK	7.2 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.2 kB (7183 bytes) Hash 92008e687831334af1cdbf4b8a57579f e6ff750f12836637adf5b253d64c2102fdf3c180 39af3e630e0271b54139849c1b596efbdc69a23ce943e5330341d49f77798c7c HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd09b3928-4257-4aee-9978-7c13c20b5a23.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7183 x-amzn-requestid: 02695a8d-2ab8-4d77-bfbe-f99418d8ef00 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: f78YOGsyoAMF5wA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63e17434-2614cef4059e7fd5009cb46d;Sampled=0 x-amzn-remapped-date: Mon, 06 Feb 2023 21:42:12 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 5wy_7Z30HRIcZufSPCTKu9UoJD1o_NDlhuyL5bvidDwbqC_3p99yYA== via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 21:44:57 GMT age: 34763 etag: "e6ff750f12836637adf5b253d64c2102fdf3c180" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg	34.120.237.76	200 OK	6.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 6.3 kB (6316 bytes) Hash c3cd20c6639e2b0d996fbbd7df2d4f47 2e54c22fb83981e2690161cd521e4fc3998e9c16 9b2b1f3e062fca74341d09540e44d2a02ec451b8349440ed5917073e8fab988d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F32cb7a16-13bc-4d42-8e17-7be2a40cfc82.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 6316 x-amzn-requestid: 1988058c-5aee-4964-9046-83a5f14a927d x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fwhjnFdxoAMFgpQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dce2e3-5ec35d0d6bef4d4944c629c0;Sampled=0 x-amzn-remapped-date: Fri, 03 Feb 2023 10:33:07 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Z9b1A_GpinQXvbA-g2PoKhVSNVd5gMrId0WUTmKSCkg-YAan1dtp-w== via: 1.1 49b94a8674d6e86a841d6523f7dbaf14.cloudfront.net (CloudFront), 1.1 e4d3d5aafc7d7d582423c073065ab562.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 22:21:35 GMT age: 32565 etag: "2e54c22fb83981e2690161cd521e4fc3998e9c16" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5634 bytes) Hash cf292b03a5db7eb8e0660a518f41233c 8fa486cdecffff8a663da2df88227ee784c298a2 cfc5efb92068bdeeda5c95f9851213b14afa76776486d0493cf4c05b30453cf0 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7926951f-dd16-4029-a877-933fa5d3c0f5.png HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5634 x-amzn-requestid: c380f2eb-c707-4086-9646-179ea89ba210 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fy9JKEpqoAMF9RA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63dddbd4-49510561740468ba7b39f211;Sampled=0 x-amzn-remapped-date: Sat, 04 Feb 2023 04:15:16 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: ofAz9sRlztBs3zypgsL9DkiJypsxagC7ZcUX3PLL_7FzUALp_MxtKA== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google date: Mon, 06 Feb 2023 18:44:39 GMT age: 45581 etag: "8fa486cdecffff8a663da2df88227ee784c298a2" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 639b4ed809597e03ff6fd6297015c2e9 dcfa40acb18ff8b82da6e1a71fe56c5ba344c3e5 4a647643c16b1ffe6b712d3f82e4be2c337cca1f8fe719b49cecf5133c67c18c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6235 Cache-Control: max-age=139478 Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Etag: "63e16220-118" Expires: Wed, 08 Feb 2023 22:08:59 GMT Last-Modified: Mon, 06 Feb 2023 20:25:04 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 639b4ed809597e03ff6fd6297015c2e9 dcfa40acb18ff8b82da6e1a71fe56c5ba344c3e5 4a647643c16b1ffe6b712d3f82e4be2c337cca1f8fe719b49cecf5133c67c18c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6494 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Last-Modified: Tue, 07 Feb 2023 05:36:07 GMT Server: ECS (ska/F71D) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 639b4ed809597e03ff6fd6297015c2e9 dcfa40acb18ff8b82da6e1a71fe56c5ba344c3e5 4a647643c16b1ffe6b712d3f82e4be2c337cca1f8fe719b49cecf5133c67c18c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6045 Cache-Control: max-age=139288 Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Etag: "63e16220-118" Expires: Wed, 08 Feb 2023 22:05:49 GMT Last-Modified: Mon, 06 Feb 2023 20:25:04 GMT Server: ECS (ska/F6FC) X-Cache: HIT Content-Length: 280`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 639b4ed809597e03ff6fd6297015c2e9 dcfa40acb18ff8b82da6e1a71fe56c5ba344c3e5 4a647643c16b1ffe6b712d3f82e4be2c337cca1f8fe719b49cecf5133c67c18c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 2837 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Last-Modified: Tue, 07 Feb 2023 06:37:05 GMT Server: ECS (ska/F719) X-Cache: HIT Content-Length: 280`

	cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.6.1/clipboard.min.js	104.17.25.14	200 OK	3.0 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/clipboard.js/1.6.1/clipboard.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (10491) Size 3.0 kB (2974 bytes) Hash 9ef73eca070aaddcf19ac5fbb8deda22 4af6ab051c40116137d3b2301d0ad12381b608bd d94d48dde1ebde2bf47da4987d903ce4111ab79e09947ddb0a6750fe28a39740 HTTP Headers `GET /ajax/libs/clipboard.js/1.6.1/clipboard.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://nuphy.referralcandy.com Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: application/javascript; charset=utf-8 content-length: 2974 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e29-2967" last-modified: Mon, 04 May 2020 16:09:13 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 980386 expires: Sun, 28 Jan 2024 07:24:21 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y3NkNDnQg8oU6yojN%2BhO6lPQmgunE5hSI%2FWQ2k51OT7YF2kTyAJOvfM1mL9krFfg9tZLoookV6zXfPmlcvZtzdYPhTmdWlNZ%2FlzGrYlEn7k3Ycd2B8scD12w3S7OSk4EPhwyfqZk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 795a62aae8a9b4f9-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js	104.17.25.14	200 OK	27 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/jquery/3.3.1/jquery.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (65451) Size 27 kB (27433 bytes) Hash 77bd61b98f7b67af56639229724f8dd4 f04f07dd8ff53e58c32b738f81b71a014bca441d 8ce54c3b77bf31899b27b29188ff4936b580f2bd2b3222d43dda2851ba272e24 HTTP Headers `GET /ajax/libs/jquery/3.3.1/jquery.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://nuphy.referralcandy.com Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: application/javascript; charset=utf-8 content-length: 27433 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03ec4-1538f" last-modified: Mon, 04 May 2020 16:11:48 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 2718712 expires: Sun, 28 Jan 2024 07:24:21 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=way%2FhYeoAVh%2B%2FgXV3zvnFum0RANPoqJ5j%2BrwbSrNVVIgLAzuSBBaACuAlcJ6olmAQwY984rEfeUOJgBIn7tkOdPJB5xCOqgciec6aVwoS%2FZQIGPx3FKF9u8u21g7YsMwDaMqZI6x"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 795a62aae8aab4f9-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/js/foundation.min.js	104.17.25.14	200 OK	27 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/js/foundation.min.js IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type ASCII text, with very long lines (31995) Size 27 kB (27396 bytes) Hash 66358e017a404ebc94c7e7c959fdd593 d4f9d2b339d8afbed0ae7ac763b077ca97c2ad36 ec75fb40ce717e55f8017b91b3179dca2a919007b586d0f30385c347b25494a7 HTTP Headers `GET /ajax/libs/foundation/6.4.3/js/foundation.min.js HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://nuphy.referralcandy.com Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: application/javascript; charset=utf-8 content-length: 27396 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e65-2454f" last-modified: Mon, 04 May 2020 16:10:13 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 322307 expires: Sun, 28 Jan 2024 07:24:21 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=HHuqdv2a3J0KRfHMK8gbFF6bp7wOk7sKevgHiW6VVzfSp1hwKxpJrWv6J0Ito%2BoVn4IXQCQIfspGItW7agwZKy2oWQFThrm1g6FASZI7URIV%2BHv02DpPuVVtbIxlCSN7%2FQcWsCCk"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 795a62aae8abb4f9-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/css/foundation.min.css	104.17.25.14	200 OK	13 kB
URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/foundation/6.4.3/css/foundation.min.css IP 104.17.25.14:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (65534), with no line terminators Size 13 kB (13273 bytes) Hash fbb458026765e76f691ab821bb46b824 efdafc865c392def7526064620d63a923f266208 59071587a7fa9e3ca35595e868754a6e1a77bce8b07a093063aefd164b60f407 HTTP Headers `GET /ajax/libs/foundation/6.4.3/css/foundation.min.css HTTP/1.1 Host: cdnjs.cloudflare.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: https://nuphy.referralcandy.com Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: text/css; charset=utf-8 content-length: 13273 access-control-allow-origin: * cache-control: public, max-age=30672000 content-encoding: br etag: "5eb03e65-1d66a" last-modified: Mon, 04 May 2020 16:10:13 GMT cf-cdnjs-via: cfworker/kv cross-origin-resource-policy: cross-origin timing-allow-origin: * x-content-type-options: nosniff vary: Accept-Encoding cf-cache-status: HIT age: 647811 expires: Sun, 28 Jan 2024 07:24:21 GMT accept-ranges: bytes report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=noS%2F6LR9cKRY7IRk05xTbbQiUWBX5YoZNaovq8tnvRXLlzXkzc4TbJ6LtO4NWXyQOvRi3Um7nlsPyXRX2MEvphiFiS%2BaBNf92xIBmw%2FEnndBjzAKsvXMgIIR0nABxsG3%2BBTZnbgK"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800} strict-transport-security: max-age=15780000 server: cloudflare cf-ray: 795a62aae8a6b4f9-OSL alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ad2d72821808ee5f77c0598fed0f8bd1 adcd92881d1c5ac3cca4687dc6347369240f4726 c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.digicert.com/	93.184.220.29	200 OK	280 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 280 B (280 bytes) Hash 639b4ed809597e03ff6fd6297015c2e9 dcfa40acb18ff8b82da6e1a71fe56c5ba344c3e5 4a647643c16b1ffe6b712d3f82e4be2c337cca1f8fe719b49cecf5133c67c18c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 6235 Cache-Control: max-age=139478 Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Etag: "63e16220-118" Expires: Wed, 08 Feb 2023 22:08:59 GMT Last-Modified: Mon, 06 Feb 2023 20:25:04 GMT Server: ECS (ska/F71C) X-Cache: HIT Content-Length: 280`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	471 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 471 B (471 bytes) Hash ad2d72821808ee5f77c0598fed0f8bd1 adcd92881d1c5ac3cca4687dc6347369240f4726 c7ce86611bf0b0063c0bcb2c6a6a4b85fe6be2d89e382b8907e8bbb2e1e5962d HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:21 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	ocsp.sca1b.amazontrust.com/	54.230.245.100	200 OK	471 B
URL HTTP/1.1 ocsp.sca1b.amazontrust.com/ IP 54.230.245.100:0 ASN #16509 AMAZON-02 File type data Size 471 B (471 bytes) Hash d50779473d53045f58ce2333c0ef63e5 e72848b39a116bae64a4cafdec991a04ec90c1ed e313da0351251c9888e24e16185333f4026097fbe9572dc085e7f5da6fe492f8 HTTP Headers `POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Accept-Ranges: bytes Cache-Control: 'max-age=158059' Date: Tue, 07 Feb 2023 07:24:21 GMT Etag: "63e0df66-1d7" Last-Modified: Tue, 07 Feb 2023 05:35:37 GMT Server: ECS (dcb/7F39) X-Cache: Miss from cloudfront Via: 1.1 4c07121ca6e32bcda85cc9091b92050e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: xJD1RzQImLcxdy63PNC2h1KUaapMXnmxegobgHUyYuAjh4EEBLGu_Q== Age: 6524`

	cdn.referralcandy.com/themes/evergreen-dev/page/gift.svg	54.230.111.95	200 OK	476 B
URL HTTP/1.1 cdn.referralcandy.com/themes/evergreen-dev/page/gift.svg IP 54.230.111.95:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (476), with no line terminators Size 476 B (476 bytes) Hash 13dcacb19c6d92654f7b20fd72340781 6ea89a9fde8c98a2054acf1f97e03cc981d81585 fb7144dab6433d688d25ee8635de529966278d9265a1e875c7cae36c15852482 HTTP Headers `GET /themes/evergreen-dev/page/gift.svg HTTP/1.1 Host: cdn.referralcandy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 476 Connection: keep-alive Date: Tue, 07 Feb 2023 04:33:54 GMT Last-Modified: Mon, 31 Oct 2022 06:02:22 GMT ETag: "13dcacb19c6d92654f7b20fd72340781" x-amz-version-id: smN74Wntt.KVIC68Ev14Fh69eh.76PXX Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: QP_gN-r7uAqNZ_Leazb230VM5FnGi5dPIVGk7qI2wASmkwv5nX9EIQ== Age: 10228`

	cdn.referralcandy.com/themes/evergreen-dev/page/message-circle.svg	54.230.111.95	200 OK	423 B
URL HTTP/1.1 cdn.referralcandy.com/themes/evergreen-dev/page/message-circle.svg IP 54.230.111.95:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (423), with no line terminators Size 423 B (423 bytes) Hash 552dfffbec57f2771786e61f67175fb5 ee5a50f898eba93bd4348200c44caf53bc8a4e40 544c626fefb0d1d5b5ecc7082959cbbae4988843539abed4ce30a28e762e01e2 HTTP Headers `GET /themes/evergreen-dev/page/message-circle.svg HTTP/1.1 Host: cdn.referralcandy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 423 Connection: keep-alive Last-Modified: Mon, 31 Oct 2022 06:18:44 GMT x-amz-version-id: iakry7dsMt4PU.YJhXOSZirgyceTcteB Accept-Ranges: bytes Server: AmazonS3 Date: Mon, 06 Feb 2023 08:57:01 GMT ETag: "552dfffbec57f2771786e61f67175fb5" X-Cache: Hit from cloudfront Via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: LEq6OHv8BSFW8yfpBcm5pO0CNEyIydH5SXafj-tn2SbWsZAV9ixKjg== Age: 80841`

	client-assets.referralcandy.com/evergreen-dev/41122/ihQHsxoVTCCXaHZZ5ne5_logo-test-2.png	54.230.111.107	200 OK	11 kB
URL HTTP/1.1 client-assets.referralcandy.com/evergreen-dev/41122/ihQHsxoVTCCXaHZZ5ne5_logo-test-2.png IP 54.230.111.107:0 ASN #16509 AMAZON-02 File type PNG image data, 465 x 195, 8-bit/color RGBA, interlaced\012- data Size 11 kB (11093 bytes) Hash 891a388fccd8e4a2550be379495c7ba3 cad453369a1d42834e6110664078b36ae9278001 bb8fac1b136151fef0b9448b8fe18c74e292718378f6fd70486f579f46054b8d HTTP Headers `GET /evergreen-dev/41122/ihQHsxoVTCCXaHZZ5ne5_logo-test-2.png HTTP/1.1 Host: client-assets.referralcandy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/1.1 200 OK Content-Type: image/png Content-Length: 11093 Connection: keep-alive Date: Tue, 07 Feb 2023 05:36:21 GMT Last-Modified: Thu, 07 Oct 2021 10:03:44 GMT ETag: "891a388fccd8e4a2550be379495c7ba3" Accept-Ranges: bytes Server: AmazonS3 X-Cache: Hit from cloudfront Via: 1.1 15d199af49035dc206cb81292fd87de2.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: lTp_rEQcjKU05oKqR3wwkR0iM1NwKNzbqiHoALRW0J_uTDsARVXG7g== Age: 6481`

	cdn.referralcandy.com/themes/evergreen-dev/page/shopping-cart.svg	54.230.111.95	200 OK	378 B
URL HTTP/1.1 cdn.referralcandy.com/themes/evergreen-dev/page/shopping-cart.svg IP 54.230.111.95:0 ASN #16509 AMAZON-02 File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (378), with no line terminators Size 378 B (378 bytes) Hash 9312bae07ed4d31e591a6ed3edce8dc7 49d885705c00d6aabd65060643af1e17afeba853 e83c5202106902a8651a4f622467ed645e02cf4c71766cd5eb2e3c7b5098b2f2 HTTP Headers `GET /themes/evergreen-dev/page/shopping-cart.svg HTTP/1.1 Host: cdn.referralcandy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-site` `HTTP/1.1 200 OK Content-Type: image/svg+xml Content-Length: 378 Connection: keep-alive Last-Modified: Mon, 31 Oct 2022 06:11:15 GMT x-amz-version-id: q2C5EHomHbwZk9TGYULdE7Uj34.A9peb Accept-Ranges: bytes Server: AmazonS3 Date: Tue, 07 Feb 2023 07:24:21 GMT ETag: "9312bae07ed4d31e591a6ed3edce8dc7" X-Cache: Hit from cloudfront Via: 1.1 6a0f63864791329e89a4b233ec4c3a36.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-P1 X-Amz-Cf-Id: 1I3Mz_92G7bOjSVKbY29YsFguqTn-aY5NmLrQdTLY8f1jsMQ1xgL4A== Age: 6462`

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 70d7e4cd91d9f630c160410d22c1cede 82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85 b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	www.google-analytics.com/analytics.js	142.250.74.14	200 OK	20 kB
URL HTTP/2 www.google-analytics.com/analytics.js IP 142.250.74.14:0 ASN #15169 GOOGLE File type ASCII text, with very long lines (1490) Size 20 kB (20085 bytes) Hash ca7fbbfd120e3e329633044190bbf134 d17f81e03dd827554ddd207ea081fb46b3415445 847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db HTTP Headers `GET /analytics.js HTTP/1.1 Host: www.google-analytics.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK strict-transport-security: max-age=10886400; includeSubDomains; preload x-content-type-options: nosniff vary: Accept-Encoding content-encoding: gzip cross-origin-resource-policy: cross-origin server: Golfe2 content-length: 20085 date: Tue, 07 Feb 2023 05:45:20 GMT expires: Tue, 07 Feb 2023 07:45:20 GMT cache-control: public, max-age=7200 age: 5942 last-modified: Tue, 10 Jan 2023 21:29:14 GMT content-type: text/javascript alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	ocsp.pki.goog/gts1c3	216.58.211.3	200 OK	472 B
URL HTTP/1.1 ocsp.pki.goog/gts1c3 IP 216.58.211.3:0 ASN #15169 GOOGLE File type data Size 472 B (472 bytes) Hash 70d7e4cd91d9f630c160410d22c1cede 82f5d0fbb11bcde09c107b6c1cbc6e014bb08b85 b8679be6c92167c51793ca4a8774caf0a50949737a99652243208fcfda917faf HTTP Headers `POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Tue, 07 Feb 2023 07:24:22 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN`

	nuphy.referralcandy.com/favicon.ico	52.76.125.46	200 OK	0 B
URL HTTP/2 nuphy.referralcandy.com/favicon.ico IP 52.76.125.46:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers GET /favicon.ico HTTP/1.1 Host: nuphy.referralcandy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Cookie: _referral_corner_session=BAh7B0kiD3Nlc3Npb25faWQGOgZFVEkiJTZjZjBjMzdjZDY5ZWU4YTA2ZmNjZmNiMTE5ZDM2NzFhBjsAVEkiEF9jc3JmX3Rva2VuBjsARkkiMVl4SWZ1YUhlYjNjUnZmeHJrWDRJNzhHTi9DRnpMUGt5anRCOU1nWXcwWDg9BjsARg%3D%3D--57d680f1c0f51fc8806b2385ce4be6477f0daa57; rfcr_fs=5 Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers `HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:22 GMT content-type: image/x-icon content-length: 0 server: nginx/1.10.3 (Ubuntu) last-modified: Tue, 07 Feb 2023 05:26:03 GMT etag: "63e1e0eb-0" accept-ranges: bytes X-Firefox-Spdy: h2`

	nuphy.refr.cc/	52.76.125.46	302 Found	0 B
URL HTTP/2 nuphy.refr.cc/ IP 52.76.125.46:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: nuphy.refr.cc User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/2 302 Found date: Tue, 07 Feb 2023 07:24:19 GMT content-type: text/html; charset=utf-8 location: https://nuphy.referralcandy.com server: nginx/1.10.3 (Ubuntu) content-security-policy: frame-ancestors 'self' myshopify.com .myshopify.com mybigcommerce.com .mybigcommerce.com x-frame-options: SAMEORIGIN x-ua-compatible: IE=Edge,chrome=1 cache-control: no-cache x-request-id: aadedd5f1a8fdea6583123529a75b820 x-runtime: 0.006164 x-rack-cache: miss X-Firefox-Spdy: h2`

	nuphy.referralcandy.com/	52.76.125.46	200 OK	0 B
URL HTTP/2 nuphy.referralcandy.com/ IP 52.76.125.46:0 ASN #16509 AMAZON-02 File type Size 0 B (0 bytes) Hash HTTP Headers `GET / HTTP/1.1 Host: nuphy.referralcandy.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: text/html; charset=utf-8 server: nginx/1.10.3 (Ubuntu) x-ua-compatible: IE=Edge,chrome=1 etag: W/"47e815d03c642794c30f244572e1ba7c" cache-control: max-age=0, private, must-revalidate set-cookie: _referral_corner_session=BAh7B0kiD3Nlc3Npb25faWQGOgZFVEkiJTZjZjBjMzdjZDY5ZWU4YTA2ZmNjZmNiMTE5ZDM2NzFhBjsAVEkiEF9jc3JmX3Rva2VuBjsARkkiMVl4SWZ1YUhlYjNjUnZmeHJrWDRJNzhHTi9DRnpMUGt5anRCOU1nWXcwWDg9BjsARg%3D%3D--57d680f1c0f51fc8806b2385ce4be6477f0daa57; path=/; HttpOnly; Secure; SameSite=None x-request-id: d02b3ba6dcedaaf410749f51a2c36c23 x-runtime: 0.237488 x-rack-cache: miss vary: Origin content-encoding: gzip X-Firefox-Spdy: h2

	fonts.googleapis.com/css2?family=Abel&family=Abril+Fatface&family=Alegreya&family=Alegreya+Sans&family=Amiri&family=Anonymous+Pro&family=Arapey&family=Archivo&family=Archivo+Narrow&family=Arimo&family=Armata&family=Arvo&family=Asap&family=Assistant&family=Asul&family=Bitter&family=Cabin&family=Cardo&family=Catamaran&family=Chivo&family=Crimson+Text&family=Domine&family=Dosis&family=Fira+Sans&family=Fjalla+One&family=Glegoo&family=IBM+Plex+Sans&family=Inconsolata&family=Josefin+Sans&family=Josefin+Slab&family=Kalam&family=Karla&family=Kreon&family=Lato&family=Libre+Baskerville&family=Libre+Franklin&family=Lobster&family=Lobster+Two&family=Lora&family=Maven+Pro&family=Megrim&family=Merriweather+Sans&family=Montserrat&family=Mouse+Memoirs&family=Neuton&family=News+Cycle&family=Nobile&family=Noticia+Text&family=Noto+Serif&family=Nunito&family=Nunito+Sans&family=Old+Standard+TT&family=Open+Sans&family=Oswald&family=Ovo&family=Oxygen&family=PT+Mono&family=PT+Sans&family=PT+Sans+Narrow&family=PT+Serif&family=Pacifico&family=Playball&family=Playfair+Display&family=Poppins&family=Prata&family=Prompt&family=Quantico&family=Quattrocento&family=Quattrocento+Sans&family=Questrial&family=Quicksand&family=Rajdhani&family=Raleway&family=Righteous&family=Roboto&family=Roboto+Condensed&family=Roboto+Mono&family=Roboto+Slab&family=Rubik&family=Shadows+Into+Light&family=Slabo+13px&family=Source+Code+Pro&family=Source+Sans+Pro&family=Tenor+Sans&family=Tinos&family=Titillium+Web&family=Ubuntu&family=Unica+One&family=Unna&family=Varela&family=Varela+Round&family=Vidaloka&family=Volkhov&family=Vollkorn&family=Work+Sans&display=swap	142.250.74.106	200 OK	0 B
URL HTTP/2 fonts.googleapis.com/css2?family=Abel&family=Abril+Fatface&family=Alegreya&family=Alegreya+Sans&family=Amiri&family=Anonymous+Pro&family=Arapey&family=Archivo&family=Archivo+Narrow&family=Arimo&family=Armata&family=Arvo&family=Asap&family=Assistant&family=Asul&family=Bitter&family=Cabin&family=Cardo&family=Catamaran&family=Chivo&family=Crimson+Text&family=Domine&family=Dosis&family=Fira+Sans&family=Fjalla+One&family=Glegoo&family=IBM+Plex+Sans&family=Inconsolata&family=Josefin+Sans&family=Josefin+Slab&family=Kalam&family=Karla&family=Kreon&family=Lato&family=Libre+Baskerville&family=Libre+Franklin&family=Lobster&family=Lobster+Two&family=Lora&family=Maven+Pro&family=Megrim&family=Merriweather+Sans&family=Montserrat&family=Mouse+Memoirs&family=Neuton&family=News+Cycle&family=Nobile&family=Noticia+Text&family=Noto+Serif&family=Nunito&family=Nunito+Sans&family=Old+Standard+TT&family=Open+Sans&family=Oswald&family=Ovo&family=Oxygen&family=PT+Mono&family=PT+Sans&family=PT+Sans+Narrow&family=PT+Serif&family=Pacifico&family=Playball&family=Playfair+Display&family=Poppins&family=Prata&family=Prompt&family=Quantico&family=Quattrocento&family=Quattrocento+Sans&family=Questrial&family=Quicksand&family=Rajdhani&family=Raleway&family=Righteous&family=Roboto&family=Roboto+Condensed&family=Roboto+Mono&family=Roboto+Slab&family=Rubik&family=Shadows+Into+Light&family=Slabo+13px&family=Source+Code+Pro&family=Source+Sans+Pro&family=Tenor+Sans&family=Tinos&family=Titillium+Web&family=Ubuntu&family=Unica+One&family=Unna&family=Varela&family=Varela+Round&family=Vidaloka&family=Volkhov&family=Vollkorn&family=Work+Sans&display=swap IP 142.250.74.106:0 ASN #15169 GOOGLE File type Size 0 B (0 bytes) Hash HTTP Headers GET /css2?family=Abel&family=Abril+Fatface&family=Alegreya&family=Alegreya+Sans&family=Amiri&family=Anonymous+Pro&family=Arapey&family=Archivo&family=Archivo+Narrow&family=Arimo&family=Armata&family=Arvo&family=Asap&family=Assistant&family=Asul&family=Bitter&family=Cabin&family=Cardo&family=Catamaran&family=Chivo&family=Crimson+Text&family=Domine&family=Dosis&family=Fira+Sans&family=Fjalla+One&family=Glegoo&family=IBM+Plex+Sans&family=Inconsolata&family=Josefin+Sans&family=Josefin+Slab&family=Kalam&family=Karla&family=Kreon&family=Lato&family=Libre+Baskerville&family=Libre+Franklin&family=Lobster&family=Lobster+Two&family=Lora&family=Maven+Pro&family=Megrim&family=Merriweather+Sans&family=Montserrat&family=Mouse+Memoirs&family=Neuton&family=News+Cycle&family=Nobile&family=Noticia+Text&family=Noto+Serif&family=Nunito&family=Nunito+Sans&family=Old+Standard+TT&family=Open+Sans&family=Oswald&family=Ovo&family=Oxygen&family=PT+Mono&family=PT+Sans&family=PT+Sans+Narrow&family=PT+Serif&family=Pacifico&family=Playball&family=Playfair+Display&family=Poppins&family=Prata&family=Prompt&family=Quantico&family=Quattrocento&family=Quattrocento+Sans&family=Questrial&family=Quicksand&family=Rajdhani&family=Raleway&family=Righteous&family=Roboto&family=Roboto+Condensed&family=Roboto+Mono&family=Roboto+Slab&family=Rubik&family=Shadows+Into+Light&family=Slabo+13px&family=Source+Code+Pro&family=Source+Sans+Pro&family=Tenor+Sans&family=Tinos&family=Titillium+Web&family=Ubuntu&family=Unica+One&family=Unna&family=Varela&family=Varela+Round&family=Vidaloka&family=Volkhov&family=Vollkorn&family=Work+Sans&display=swap HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Tue, 07 Feb 2023 07:24:21 GMT date: Tue, 07 Feb 2023 07:24:21 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000 X-Firefox-Spdy: h2

	use.fontawesome.com/a70183fe6e.css	172.64.132.15	200 OK	0 B
URL HTTP/2 use.fontawesome.com/a70183fe6e.css IP 172.64.132.15:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /a70183fe6e.css HTTP/1.1 Host: use.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://nuphy.referralcandy.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: text/css x-amz-id-2: +iI/7feqwltahRiGJ5vOpl4HkTRAU0zifhYLJORBRkVeZxy7rfMDIFPf0QH1BRYKnPkG6qmuiH4= x-amz-request-id: 8SSTJCZTRKV7860H last-modified: Thu, 01 Jul 2021 13:38:54 GMT etag: W/"4d700056a61fbefb92707febe3bb2cd8" cache-control: max-age=1800 cf-cache-status: HIT age: 2112 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qcpma6QmR4cH%2BB7xRukJ6VEfgW9VLu59AU0raXQXuSPLQMQoP%2FVAwxDjjoHUisB63hMjUmBfv9HWwJ8Vvs089C8vBhRzsJkJ6SPaVEK4YdSh%2FxN7G7k%2BWr2syr8uUQhzGwJypuLy"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 795a62ab3b1823cb-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css	172.64.132.15	200 OK	0 B
URL HTTP/2 use.fontawesome.com/releases/v4.7.0/css/font-awesome-css.min.css IP 172.64.132.15:0 ASN #13335 CLOUDFLARENET File type Size 0 B (0 bytes) Hash HTTP Headers `GET /releases/v4.7.0/css/font-awesome-css.min.css HTTP/1.1 Host: use.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://use.fontawesome.com/a70183fe6e.css Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers` HTTP/2 200 OK date: Tue, 07 Feb 2023 07:24:21 GMT content-type: text/css x-amz-id-2: iLfn6py1sapOYJTloW7WMkHq/cpv0wfBkWTNW1CPr7n603Niq5Xh6//CjlYwtxJmRm+6THf/tX4= x-amz-request-id: 3WSZZYQBPVWVNV8G last-modified: Wed, 30 Jun 2021 15:26:48 GMT etag: W/"36082410df2ef7f83932219089dc1443" cache-control: max-age=31556926 cf-cache-status: HIT age: 2208261 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=nVQ5z1D8kKdKG9qfSujeTTlQv775EFd6Ve86anihsFZsZmFsCPasI97N1MaE1LkAAm8QKhkVpvNM%2BuxnvwHc1rK7pFj8Iz9vodw9qbNZ6L1fb6%2FsTZxWXooDQq4iZb1%2FpoAxLQNJ"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 795a62ab7b7123cb-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML