netcetera.cloud/
146.247.49.96301 Moved Permanently 234 B IP 146.247.49.96:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 3bf17851dde8ea7dd523cbc7b6b000ae
c2f21951fc8f8593e9c9ba3ef74f3a185db8176a
02c724bc534e7f8631c445be5846f6f2ce3f7a0952e474d97d7f380a63546757
NIDS Severity Alert suricata medium ET INFO HTTP Request to Suspicious *.cloud Domain
GET / HTTP/1.1
Host: netcetera.cloud
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Date: Sun, 05 Feb 2023 23:06:28 GMT
Content-Type: text/html; charset=iso-8859-1
Content-Length: 234
Connection: keep-alive
Location: https://netcetera.uk/cloud
X-Powered-By: PleskLin
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 507011ccb9124dcd57e84a90a0965cc4
1a6575d0ac979c7184490cc9836ac4812ad2afd1
01626c18e1e68507aa33ef7448dbc3311901ab6f29adc2f51d449409b0680dce
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "01626C18E1E68507AA33EF7448DBC3311901AB6F29ADC2F51D449409B0680DCE"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9218
Expires: Mon, 06 Feb 2023 01:40:02 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash c21ba65e44ac95470c314e068e49a9eb
17a13b13738993d889d4afa3d848dc63bf6eba64
9bd0795b30e84ce63b6e2a365ca91bbffc395dd955e112152066c31e63a4ab66
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "9BD0795B30E84CE63B6E2A365CA91BBFFC395DD955E112152066C31E63A4AB66"
Last-Modified: Sat, 04 Feb 2023 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9653
Expires: Mon, 06 Feb 2023 01:47:17 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash ff250d3ef3fa45322bf05039a0122a9f
b3e7a2c383bce1bab807dbe1a03c375258b51f1d
d07f109a96e0ae6ec7b1d46ce8761b3f06fe845769ce65d69e053dd40aa561ba
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Retry-After, Backoff, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sun, 05 Feb 2023 22:33:59 GMT
content-type: application/json
age: 1945
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash fb7b6b46e708ad73eaaa3c21e74569ae
950663c025acad81556af5aa3022ecc9d55097fe
763f58b9fb838378c92033b59907b036f4c33081f5103d9bcc2ca2a8de500d64
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "763F58B9FB838378C92033B59907B036F4C33081F5103D9BCC2CA2A8DE500D64"
Last-Modified: Sat, 04 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17334
Expires: Mon, 06 Feb 2023 03:55:18 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: n27ls8orfvbNJBoXfeGfbe88siAf9rWVJ16ziWWeEcYwHAjuKrN+eozDGsTSplXvdkVmccuDhvg=
x-amz-request-id: KE21NVPW90QZ9CEE
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 05 Feb 2023 22:24:40 GMT
age: 2504
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9057169425ae6d1c96774f30ba3d22bd
176fc338b35f0227e1f5e3f2dc74318058dbf6a4
0d239e2525d8d2f1528d1954804c7924afdf3b7b3117b5ac6e03379b31079572
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:24 GMT
Etag: "63dd89b3-118"
Server: ECS (amb/6BBA)
Content-Length: 279
netcetera.uk/cloud/
104.21.89.219301 Moved Permanently 0 B IP 104.21.89.219:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cloud/ HTTP/1.1
Host: netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sun, 05 Feb 2023 23:06:24 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Mon, 06 Feb 2023 00:06:24 GMT
Location: https://netcetera.uk/cloud/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EgjaEqG7xCQ5MC2tL2vjgF2sz6Afn2qo%2BTDrCxgF4XU7CMKpoadumSfWWwphfDFu40zr%2FDC0g2ZHmhM9gtMyKSLOOGudNOI2tDDOuEQzAsV6BYkTCT%2BFscfR3xGQv5g%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 794f4bde8a56b511-OSL
alt-svc: h2=":443"; ma=60
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 9057169425ae6d1c96774f30ba3d22bd
176fc338b35f0227e1f5e3f2dc74318058dbf6a4
0d239e2525d8d2f1528d1954804c7924afdf3b7b3117b5ac6e03379b31079572
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 0
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:24 GMT
Etag: "63dd89b3-118"
Last-Modified: Sun, 05 Feb 2023 23:06:24 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sun, 05 Feb 2023 22:07:20 GMT
age: 3544
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dedf9c519ac38c4bece9c5bc895787d7
4911175c3f8a435978c5301c33c7a99a5e00a1d5
bddd7e3a4939f863642a7c5348c1c8b9bc569b35c10a27f4cf5ec71f7e6b9698
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BDDD7E3A4939F863642A7C5348C1C8B9BC569B35C10A27F4CF5EC71F7E6B9698"
Last-Modified: Fri, 03 Feb 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7138
Expires: Mon, 06 Feb 2023 01:05:22 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash dee44caab7b2026875f1f908fe883d7a
6ab232b54d5abe20f3292d3c069decc8478dc601
113ac1d2dcf9d73e944b08f38aec66b8ee4ba73a46747ead14ea1cfe97b5b27c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "113AC1D2DCF9D73E944B08F38AEC66B8EE4BA73A46747EAD14EA1CFE97B5B27C"
Last-Modified: Sat, 04 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=412
Expires: Sun, 05 Feb 2023 23:13:16 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8302aad8ade395e043c6a9772102a0ab
ad0fb49cc32027ec8827f389b9cb5fb8c89541ff
5afdb5fecea47b5f22be200e85fcf7a30273eae059fce043cd62ba1c2ff0584e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5AFDB5FECEA47B5F22BE200E85FCF7A30273EAE059FCE043CD62BA1C2FF0584E"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 05:06:24 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
c.netcetera.uk/assets-new/img/logo-color.png
194.242.11.186200 OK 13 kB URL HTTP/2 c.netcetera.uk/assets-new/img/logo-color.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 180 x 50, 8-bit/color RGBA, non-interlaced\012- data
Hash 12c63860d1c37c8c6fcd48f0ab3b1241
f2f173941209b0707b9d5171fac926efbd86cb63
461062f42d96f27a311c14a5b130b3f47b63dddf858c8f5dd226b64ba3bcefe6
GET /assets-new/img/logo-color.png HTTP/1.1
Host: c.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: image/png
content-length: 12923
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: "327b-5dc6a2cb11480"
last-modified: Tue, 12 Apr 2022 00:30:58 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=G9eBHqt2RGDmgdu%2FlGghm4I1f43NuoyfQf4acqlx2xWvDLwsS14ApwFT6%2B8FSZTMCxcF5bM6BvOd%2Bfah4WLNMkTdq00aSLpR55Tw9Ec4ZnIrT2fvAxXcHF8w3wyefmQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b886aadb4fd-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:34
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 6e0a9ff71096a340591454cda3198824
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 8302aad8ade395e043c6a9772102a0ab
ad0fb49cc32027ec8827f389b9cb5fb8c89541ff
5afdb5fecea47b5f22be200e85fcf7a30273eae059fce043cd62ba1c2ff0584e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5AFDB5FECEA47B5F22BE200E85FCF7A30273EAE059FCE043CD62BA1C2FF0584E"
Last-Modified: Sun, 05 Feb 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 05:06:24 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash d9d127f224dd677b45ab42c3da21ab92
20fcd6a9317f534f1b52e18ac1ff11c357d28d03
32785c171c78d2046a14da147a94cb185ecdb218ec4567b895f5e97fb672654b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "32785C171C78D2046A14DA147A94CB185ECDB218EC4567B895F5E97FB672654B"
Last-Modified: Sun, 05 Feb 2023 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 05:06:24 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 7089429ecbaa0da97e6fa4821207b691
d655ead913ae10eb5a33c0a4dbe0cbb3444102f9
597f996f1a65bfcbbced3efd815dc5b15b8112782064186820bd32733abc3fb9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "597F996F1A65BFCBBCED3EFD815DC5B15B8112782064186820BD32733ABC3FB9"
Last-Modified: Sun, 05 Feb 2023 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21545
Expires: Mon, 06 Feb 2023 05:05:29 GMT
Date: Sun, 05 Feb 2023 23:06:24 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
52.41.91.37101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.91.37:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: eWt9XqojsgnblnkKf8ce7g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BDiT7NFqsvkB9Nk/reuQw3cRqDQ=
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 26a15a1b880ec1026360b696b1c27074
fd35f80a1cf599da2a8e68a44477465a580440a5
a6d5caec988319523c120bc435a4ff0200b7ead114db10db19a09caeace978f7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.netcetera.uk/assets/webfonts/fa-solid-900.woff2
194.242.11.186200 OK 79 kB URL HTTP/2 cdn.netcetera.uk/assets/webfonts/fa-solid-900.woff2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Web Open Font Format (Version 2), TrueType, length 79444, version 331.524\012- data
Hash b15db15f746f29ffa02638cb455b8ec0
75a88815c47a249eadb5f0edc1675957f860cca7
7f4d3fd0a705dbf8403298aad91d5de6972e6b5d536068eba8b24954a5a0a8c7
GET /assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://cdn.netcetera.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: font/woff2
content-length: 79444
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: "13654-5baefbf5c4a80"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZUl%2FV2RyuEwkOfx8DgeXj%2Fo6%2BWNDIMkT%2BV6mJUic80KkZz0Ydh1afixBdpNYXkd0ZgTL76HjoGNpnM%2BsnDKyDFueEp%2F6ngSp6s6GTkyoOgDOOmvCmlQrWFvXnkmnpL8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b8e59bcb4f9-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:35
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b36ad622f76b236f8049c085e346a220
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/fonts/themify.woff
194.242.11.186200 OK 56 kB URL HTTP/2 cdn.netcetera.uk/assets/fonts/themify.woff
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Web Open Font Format, CFF, length 56108, version 1.0\012- data
Hash a1ecc3b826d01251edddf29c3e4e1e97
9394f35bd2addd24666b79bfc36d4f9d247cb01d
0db5c5a1475eb7a3e5028983ea1e642d1b2c00faff6a250a37502b0f3832a4a7
GET /assets/fonts/themify.woff HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://cdn.netcetera.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: font/woff
content-length: 56108
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: "db2c-5baefbf5c4a80"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RFAMDO6ZFP4JJBjgcp0pKS3vwX%2BZgncXuH4zrJ2O5ANFo3wVLT6UsJCYvQuWoxfER4rJY23mHQ3FDszMOAEYDxLGPzpiUwCzXgMye5lzMer1SvylYNelLZeT2tnjWbc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b8e5a7a0b49-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:35
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 1b119fb9458f114533a01d0e87a60ab2
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/webfonts/fa-brands-400.woff2
194.242.11.186200 OK 77 kB URL HTTP/2 cdn.netcetera.uk/assets/webfonts/fa-brands-400.woff2
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type Web Open Font Format (Version 2), TrueType, length 76612, version 331.524\012- data
Hash a06da7f0950f9dd366fc9db9d56d618a
509988477da79c146cb93fb728405f18e923c2de
5d9190292acdd48ba0fc35080f7e7448f3cdf0d79199a4d23f0f49b5341fdf29
GET /assets/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://cdn.netcetera.uk/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: font/woff2
content-length: 76612
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: "12b44-5baefbf5c4a80"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jq9AFdCWo2PxargSf3fptiES%2BpxBswIxQMGur4fUTfuNA%2FgpUMV83miOwrGYgp2Jralolw6WWRGb9%2BKLQ5XZo5q5D4XT6YJ3sxyyyAUx8rn23su%2FyO%2BQs9UwANOtlCI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b8e6892b503-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:35
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 9d11a9da4edb5f0d71e7c34b3a9ec166
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
cdn.netcetera.uk/assets/js/vendors/validator.min.js
194.242.11.186200 OK 62 kB URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/validator.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type ASCII text, with very long lines (5862)
Hash a5d938d467b574e3bed369f508352001
fcc398b41cce7f1d3d3e055eddc7450d85e02b8b
4ac27e3461ad0fb39200ffa215044912b830fa63d6c646961e4718bb9097d2b5
GET /assets/js/vendors/validator.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"17a7-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pHiK%2BTTaFtG0DgOoC6h0TB8jRp8rdSvxptioAPgYYQhv%2BewXh0loAYXBh2G80qPYbpQOb5VB25jpCyQEpOF6wJBQv%2FMcPnrjg%2BvnQlZ2vfoZ%2FYtsVcdBSk7AkmLROPw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b853ab8b4fa-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4dda7b7273ced7ecdb6285d3510619bc
cdn-cache: HIT
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
216.58.207.227200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 05 Feb 2023 22:02:00 GMT
expires: Mon, 05 Feb 2024 22:02:00 GMT
cache-control: public, max-age=31536000
age: 3865
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Montserrat:400,500,600,700
142.250.74.74200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Montserrat:400,500,600,700
IP 142.250.74.74:0
Hash db3b02da49ef63c0a4b54d68e9c2a23a
c2751770f24526a83e8a1cfb29fb907e45892f4f
e523c738eea207efa6b32f526661fcc0d2874b02077876d6b981cdae86726b0a
GET /css?family=Montserrat:400,500,600,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://cdn.netcetera.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 05 Feb 2023 23:06:25 GMT
date: Sun, 05 Feb 2023 23:06:25 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 9206c3ba6d5a17d62244c438fd03496e
069e8257aebe618953434b1299d065540125a512
937d395fed398e9410f75945e80f607f3146458b48cd47ba7249536ca2195817
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 836bc62dbb011b6180fc7209d0061736
74e6f18561a7006a3afb6ab03559eec239ce4b36
90b197384670fdb210d364f91b423fd383d25838e38a494158a8185bef0061f0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
c.netcetera.uk/assets/img/logo-color.png
194.242.11.186200 OK 3.8 kB URL HTTP/2 c.netcetera.uk/assets/img/logo-color.png
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
File type PNG image data, 180 x 50, 8-bit colormap, non-interlaced\012- data
Hash 4b1f1ec7fa64e9e76fc693d02ab61b07
c59f59cdec9ea58f754e7b3e9989ea4fc4811715
438c50a7dd9176f1c0cf3cfdac84579f9d6e01321139c40c82d4668f816555fd
GET /assets/img/logo-color.png HTTP/1.1
Host: c.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Cookie: _ga=9fc22c41-a359-49eb-9539-09f67cdc7d75
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: image/png
content-length: 3776
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
age: 907
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: "ec0-5cdb727ccdd80"
last-modified: Wed, 06 Oct 2021 23:03:34 GMT
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Fg1xEPWUD0tt78ZhxNkhwgHvHPe96t%2BlVZhruotkwDtwfTn2sne%2Fg%2B%2BneIw3Vdqi3RrT4izvcLH1igESpeGMzfBhy2%2BU8hEQbwdVtLNW%2FwRrMR6aZhp6vs5lxwpQ2CE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794eb1fdf911b529-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 21:21:21
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fabd670bf7659163643bf9931a1ffa9a
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2de5a0b263a66bf9b755c348efa002b0
0432065e09026339ecbfafc5bdf1e812d36d3af3
f9219dfee4933739cdfd904c5ea66a2fee620eed52bbc13c2afc29465c8018ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3996
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Last-Modified: Sun, 05 Feb 2023 21:59:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ac276a4c55245956eed071d1221631d6
63606859d9a7b0b63bd1322e559279df547fef9c
0374e0492b760277dcdd45393f226bb400fcb0ab4b847c3c37cff9b8ad9b1720
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5866
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Last-Modified: Sun, 05 Feb 2023 21:28:40 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-US&v=1.1&a=2006294&pu=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&t=UK+Cloud+Server+Hosting+With+24%2F7+Support+-+Netcetera.uk&cts=1675638385231&accountId=2006294&vi=9f0b57917efa4feaa60f04c8ba5e4fe8&nc=true&u=254129303.9f0b57917efa4feaa60f04c8ba5e4fe8.1675638385231.1675638385231.1675638385231.1&b=254129303.1.1675638385231
104.19.154.83200 OK 45 B URL HTTP/2 track.hubspot.com/__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-US&v=1.1&a=2006294&pu=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&t=UK+Cloud+Server+Hosting+With+24%2F7+Support+-+Netcetera.uk&cts=1675638385231&accountId=2006294&vi=9f0b57917efa4feaa60f04c8ba5e4fe8&nc=true&u=254129303.9f0b57917efa4feaa60f04c8ba5e4fe8.1675638385231.1675638385231.1675638385231.1&b=254129303.1.1675638385231
IP 104.19.154.83:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash c8817d472077ebfc04593c1fa019d32d
e1e86f41c86c7b9cd2e8b76c6a925a1a3e7e3247
dc111a70984a9eda00752b06277113029ef288f1125c31eff2477413e15e8aa4
GET /__ptq.gif?k=1&sd=1280x1024&cd=24-bit&cs=UTF-8&ln=en-US&v=1.1&a=2006294&pu=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&t=UK+Cloud+Server+Hosting+With+24%2F7+Support+-+Netcetera.uk&cts=1675638385231&accountId=2006294&vi=9f0b57917efa4feaa60f04c8ba5e4fe8&nc=true&u=254129303.9f0b57917efa4feaa60f04c8ba5e4fe8.1675638385231.1675638385231.1675638385231.1&b=254129303.1.1675638385231 HTTP/1.1
Host: track.hubspot.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcetera.uk/
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: image/gif
content-length: 45
cf-ray: 794f4be4eb2a0b65-OSL
cache-control: no-cache, no-store, no-transform
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: origin, Accept-Encoding
cf-cache-status: DYNAMIC
access-control-allow-credentials: false
p3p: CP="NOI CUR ADM OUR NOR STA NID"
x-hubspot-correlation-id: 19edaaa4-647f-4558-bbaf-a034db339ed9
x-robots-tag: none
set-cookie: __cf_bm=lz7CGl76oYck5brx671EY5INOeVXxKu1WCth34FbEfc-1675638385-0-ASw36gTEM/IXDiX4xi+QfmQYrtoNc1639XNBhd36c/q2zCEj6IrEhJNI4VFGbvGh7RPhgjKzBHtl0cigkl87caw=; path=/; expires=Sun, 05-Feb-23 23:36:25 GMT; domain=.hubspot.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KI1vZ6nvk99gp4f5a%2BtQUoahyTa4F3zWe9IWNviU6%2BLQU0lWjELY0EhxA2gPYvQvNfWb12QpfMxzHP3S1qVuknbdZgazn2UDRo%2FQ68ccB7B4iUVzS6fz9La9gkgou5kdM%2F%2Fk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 279 B IP 93.184.220.29:0
Hash 2de5a0b263a66bf9b755c348efa002b0
0432065e09026339ecbfafc5bdf1e812d36d3af3
f9219dfee4933739cdfd904c5ea66a2fee620eed52bbc13c2afc29465c8018ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3996
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Last-Modified: Sun, 05 Feb 2023 21:59:49 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 279
googleads.g.doubleclick.net/pagead/viewthroughconversion/983625391/?random=1675638427807&cv=11&fst=1675638427807&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&auid=1386942904.1675638428&rfmt=3&fmt=4
216.58.207.226200 OK 896 B URL HTTP/2 googleads.g.doubleclick.net/pagead/viewthroughconversion/983625391/?random=1675638427807&cv=11&fst=1675638427807&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&auid=1386942904.1675638428&rfmt=3&fmt=4
IP 216.58.207.226:0
File type ASCII text, with very long lines (1899), with no line terminators
Hash b0d5e5768465203b4ac7decc400ab3ed
167874f41fb81873d2ff4dd82dfbabae2ceadd6a
0f1314ae9385341ce85caa6d0b8f51c7438ee345e2f34b9e9294f676ea8ecf8b
GET /pagead/viewthroughconversion/983625391/?random=1675638427807&cv=11&fst=1675638427807&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&hn=www.googleadservices.com&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&auid=1386942904.1675638428&rfmt=3&fmt=4 HTTP/1.1
Host: googleads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 23:06:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, must-revalidate
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 896
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Sun, 05-Feb-2023 23:21:25 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 7afb8eb5dcbd727fb69c14bfabe20e72
d4b1cc1973e4200a371f0aa8c5ec8232d780a77b
ca0a46edfe267973b60ff163d696fe7c0e862e56ee3f90f098bf309f276c987f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 23ccac55ee4dcd7dd829cf07b5e08131
178e90c9ae72ad9d2c3cec3646f1463928db989c
e65d48e4b8883c954dab20eb7a10e12b1ee34f8d48381297ff13323a3c937d96
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E65D48E4B8883C954DAB20EB7A10E12B1EE34F8D48381297FF13323A3C937D96"
Last-Modified: Sat, 04 Feb 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 06 Feb 2023 05:06:25 GMT
Date: Sun, 05 Feb 2023 23:06:25 GMT
Connection: keep-alive
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 040d512b73ad828b2dd7409c0c9dab49
a7b7256940377241abd22db537a864ec6348bf90
6e7f979d255eba736072b159be75a5865fd307781806c412ea66bb0f80e38aa6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/pagead/1p-user-list/983625391/?random=1675638427807&cv=11&fst=1675638000000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&fmt=3&is_vtc=1&random=1305560699&rmt_tld=0&ipr=y
142.250.74.164200 OK 42 B URL HTTP/2 www.google.com/pagead/1p-user-list/983625391/?random=1675638427807&cv=11&fst=1675638000000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&fmt=3&is_vtc=1&random=1305560699&rmt_tld=0&ipr=y
IP 142.250.74.164:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/983625391/?random=1675638427807&cv=11&fst=1675638000000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&fmt=3&is_vtc=1&random=1305560699&rmt_tld=0&ipr=y HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 23:06:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
chat.herenow.im/packs/js/sdk.js
81.27.98.45200 OK 29 kB URL HTTP/2 chat.herenow.im/packs/js/sdk.js
IP 81.27.98.45:0
File type HTML document, ASCII text, with very long lines (65475)
Hash de9f7fe6a61500d2a62deb91ded4ad98
930669ca2d3d92f552d036635f64ea4d404f1711
6cbe3b275e2d5a7d27dacd9a8a7fbeb198b6a9b4df6f700af5192b27c8ed64dd
GET /packs/js/sdk.js HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: application/javascript
content-length: 29303
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Accept-Encoding, Origin
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
www.google.no/pagead/1p-user-list/983625391/?random=1675638427807&cv=11&fst=1675638000000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&fmt=3&is_vtc=1&random=1305560699&rmt_tld=1&ipr=y
142.250.74.67200 OK 42 B URL HTTP/2 www.google.no/pagead/1p-user-list/983625391/?random=1675638427807&cv=11&fst=1675638000000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&fmt=3&is_vtc=1&random=1305560699&rmt_tld=1&ipr=y
IP 142.250.74.67:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash d89746888da2d9510b64a9f031eaecd5
d5fceb6532643d0d84ffe09c40c481ecdf59e15a
ef1955ae757c8b966c83248350331bd3a30f658ced11f387f8ebf05ab3368629
GET /pagead/1p-user-list/983625391/?random=1675638427807&cv=11&fst=1675638000000&bg=ffffff&guid=ON&async=1>m=45He3210&u_w=1280&u_h=1024&frm=0&url=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&tiba=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&fmt=3&is_vtc=1&random=1305560699&rmt_tld=1&ipr=y HTTP/1.1
Host: www.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
date: Sun, 05 Feb 2023 23:06:25 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
content-type: image/gif
content-security-policy: script-src 'none'; object-src 'none'
x-content-type-options: nosniff
server: cafe
content-length: 42
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 9d7d54937b70d60ca299d07980bc1e1e
42ee245e31b6c480419253d420a75159e107cc65
fd8c0e9b7ce1332347da031c471053f5acaab963f5aafd0e29bb94b90bcf9293
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2183fdf183ed33f2cd4342abd7bcadbe
007fe0bb01b7d77fbaaff5346fd7582041c978c8
8f0381d12ab5a76be5137b365e811e75db681eb0f6ad04d7ce28ad73101c33d5
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:25 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 280 B IP 93.184.220.29:0
Hash ac276a4c55245956eed071d1221631d6
63606859d9a7b0b63bd1322e559279df547fef9c
0374e0492b760277dcdd45393f226bb400fcb0ab4b847c3c37cff9b8ad9b1720
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5867
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 05 Feb 2023 23:06:26 GMT
Last-Modified: Sun, 05 Feb 2023 21:28:40 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280
chat.herenow.im/packs/css/widget-ec13f468.css
81.27.98.45200 OK 11 kB URL HTTP/2 chat.herenow.im/packs/css/widget-ec13f468.css
IP 81.27.98.45:0
File type ASCII text, with very long lines (61831)
Hash 9c4af6fb7e9bdc08c1edca68b258038c
2094d177a0a5eb1f779a8f4de8e6de8a2f060486
7ed99479b2499822e9d2c02204f53627e8d746abf28a3e30a54dc536fab437f0
GET /packs/css/widget-ec13f468.css HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: text/css
content-length: 11155
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Accept-Encoding, Origin
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/packs/js/widget-64ff289f3eb1bc84533a.js
81.27.98.45200 OK 159 kB URL HTTP/2 chat.herenow.im/packs/js/widget-64ff289f3eb1bc84533a.js
IP 81.27.98.45:0
File type ASCII text, with very long lines (65451)
Size 159 kB (158665 bytes)
Hash c7c22ce3222c5d8629a0b86a4c4f5d93
fba19df896c97ce6354af84b2d401e8a2e055167
9946a35fabf819f9337199e14cee4850d96d554a48739c224cbfa6ddad567494
GET /packs/js/widget-64ff289f3eb1bc84533a.js HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
content-length: 158665
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Accept-Encoding, Origin
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/jquery.rcounterup.js
194.242.11.186200 OK 1.7 kB URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/jquery.rcounterup.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
Hash c205d897c8057d120730163eca2e2f76
ef73fee6689b23ed757003b37f6fbe6607fdaefc
a72fabb39f6f49ba1db0ed7c9e11043d66631b66fe4e4582b50bf4bd79d23671
GET /assets/js/vendors/jquery.rcounterup.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"7de-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H8oedcFPOM%2BtIKfNdjuGNbRtummedU42NXZHGSskahX%2FwJRmna%2FpEotSrACL9ZJx0TeHj5AxIYxkFhODL4xYDMKjzYOy66nuABpBQXYDFFq7Bf0lo6A7PvcA753%2FaVM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b850ab8b4f7-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 0578499b5fe6ba3280165d8c340fed95
cdn-cache: HIT
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
34.120.237.76200 OK 3.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d6107217bc206ebf204dfcf832cffc04
4f370e81106ef09ce9294eaa074ff6922197ded0
2cc25b8ddf56ceb274bd147d4e54f3fc386a97f984aa3a7bcc19f083fe68b94f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5aedadb2-31f3-4d54-b851-5dd3a166179d.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 3943
x-amzn-requestid: 918fd8d6-0118-4548-9380-e3078577a876
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fzWBtEdKoAMFwnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63de03a4-6d8ffde860d89fbc513a20f9;Sampled=0
x-amzn-remapped-date: Sat, 04 Feb 2023 07:05:08 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ZRVPNp0hKlSBXYjgbVfF8MGqNMHCKF2T4fAqflvZz8z-Uy9bKR9HhA==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 07:17:18 GMT
age: 56948
etag: "4f370e81106ef09ce9294eaa074ff6922197ded0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67ec8ef-bdc5-4f9b-a7be-c0d8b932923a.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67ec8ef-bdc5-4f9b-a7be-c0d8b932923a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f267c5cee67458c0f6ef42c4feb5217e
f5092ce77834e8f1f245b987204ff6a194c38ef6
84c5cde3d7e06e6dd32d1c98172606c8d912c7032a4677f8851e42e4b195e420
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd67ec8ef-bdc5-4f9b-a7be-c0d8b932923a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9451
x-amzn-requestid: 3f95347b-f0bf-43dd-90fc-5087bf0de607
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4okJGUCoAMF0sA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0214d-53d6a2de41af72770b086196;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:13 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: H_s21wzDvh5_yMsyrtmGLDQ6DI3TgkQ1tGP-OWQlygLQzziVMORH4g==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d8792dbd3191bbe722eba5b536b979c8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:54:04 GMT
age: 4342
etag: "f5092ce77834e8f1f245b987204ff6a194c38ef6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg
34.120.237.76200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 27b516a4bb5fa5512a31aa8de5f9706e
03aeba4fafc64130967d3645081426f81b5f7dd1
7e5d809bf4e1b6f7f25bf604c1e5efcaf2a442ebfb53397d65820ebb1eaf754a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d63833d-c4af-4746-a163-2d9da6b2bf67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8845
x-amzn-requestid: 4cae7b8e-f650-4d61-9f3d-8cce7410ba1d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4pOKFamIAMF4gQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0225a-51cd8f5b2d810ad94f52a5e3;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:40:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: WhhBAtYjlLj3PcIM5a-OwGIDFLeHYNF5Tg99rpTFMa326gTFJ56zBA==
via: 1.1 23206a1c229d8877bdd053c4b05f9d12.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:51:21 GMT
age: 4505
etag: "03aeba4fafc64130967d3645081426f81b5f7dd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
104.22.24.131200 OK 13 kB URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-app.js
IP 104.22.24.131:0
File type ASCII text, with no line terminators
Hash 5b46b4ff1b9050612e179f9d68a70401
a79987a242cffe017040017457577e589a09be23
c21aeb23c6422bc4bd5f4797b09a18a1249612b1a943c6b0f6a11df074e4d8b1
GET /_s/v4/app/63b77dcd282/js/twk-app.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
age: 7211
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"e736e189edb5d0d9d5b8e7f23dd9114a"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4be97a840b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d0c62c5956f36c9f1c5d2f17bc372d98
fca4d7140e4c391b02d734425ccc92acec568a70
eb1b743ede5ed223536358bd92a322ca5231267f4434be1eced98a0fe93b790d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fda427d37-8d0b-44cf-ae98-f96ceaf21b52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: ea29dd36-d05b-4824-ba18-78f868259f76
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4oiQEeTIAMFqGA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e02141-7a6ade1c4501a81c0823ce10;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: O-QHP886Cczm6dsVDQVMR7SMSxgIhUSuEPAKJvzQTQtkj59Pg-z9QA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 325ed3ba58a560748d886354beef39c0.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 21:50:03 GMT
age: 4583
etag: "fca4d7140e4c391b02d734425ccc92acec568a70"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-FELPKPN33E>m=45je3210&_p=681172528&cid=428473714.1675638428&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675638427&sct=1&seg=0&dl=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&dt=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&en=page_view&_fv=1&_nsi=1&_ss=1
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-FELPKPN33E>m=45je3210&_p=681172528&cid=428473714.1675638428&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675638427&sct=1&seg=0&dl=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&dt=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&en=page_view&_fv=1&_nsi=1&_ss=1
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-FELPKPN33E>m=45je3210&_p=681172528&cid=428473714.1675638428&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675638427&sct=1&seg=0&dl=https%3A%2F%2Fnetcetera.uk%2Fcloud%2F&dt=UK%20Cloud%20Server%20Hosting%20With%2024%2F7%20Support%20-%20Netcetera.uk&en=page_view&_fv=1&_nsi=1&_ss=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://netcetera.uk
date: Sun, 05 Feb 2023 23:06:26 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b68c1a-7013-4183-b5b4-d006c6f9e7a7.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b68c1a-7013-4183-b5b4-d006c6f9e7a7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 000cb25b2cb4fa30ce745582dafbab99
a5227f79e64bcab8d8f03822e6d408400a03a23e
7f6a2a99bff95672d34b41489d0dd1132ab8654b745e728e15ed95e987b7ed62
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe0b68c1a-7013-4183-b5b4-d006c6f9e7a7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10582
x-amzn-requestid: e18bacd8-6d0e-4957-93ab-97def7442f8c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: f4okSFKKIAMFlUA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63e0214e-05486d9b283cedc008cba781;Sampled=0
x-amzn-remapped-date: Sun, 05 Feb 2023 21:36:14 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: p1ToWLG__PFWEMRxlPZcouvOTijPoUcMr7ubDCNcy2wMwgusbBjGPA==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Sun, 05 Feb 2023 22:04:24 GMT
age: 3722
etag: "a5227f79e64bcab8d8f03822e6d408400a03a23e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
chat.herenow.im/packs/css/24-a7da8bab.chunk.css
81.27.98.45200 OK 394 B URL HTTP/2 chat.herenow.im/packs/css/24-a7da8bab.chunk.css
IP 81.27.98.45:0
File type ASCII text, with very long lines (1499), with no line terminators
Hash ca306310e9727b287c640bac3a53db6a
98fc5f2d375c6a18f7a638b0b6c690af975d2172
66574cb8450b956d6b7b69c6829f465bac4577c9f6687ceab990b63fcc04c04e
GET /packs/css/24-a7da8bab.chunk.css HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: text/css
content-length: 394
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Accept-Encoding, Origin
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/packs/js/24-7f97d6ef2f027cec8419.chunk.js
81.27.98.45200 OK 3.5 kB URL HTTP/2 chat.herenow.im/packs/js/24-7f97d6ef2f027cec8419.chunk.js
IP 81.27.98.45:0
File type ASCII text, with very long lines (11566)
Hash b616e4a05ee88504792c4625e24415f6
717b2185b340ffbccad78a066740ede51fc8d967
082596bac0ec8afd5074b56e7607bb9297a8f6480c85eec13dcca430e1956f56
GET /packs/js/24-7f97d6ef2f027cec8419.chunk.js HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
content-length: 3504
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Accept-Encoding, Origin
content-encoding: br
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/cable
81.27.98.45101 Switching Protocols 0 B IP 81.27.98.45:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cable HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://chat.herenow.im
Sec-WebSocket-Protocol: actioncable-v1-json, actioncable-unsupported
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 3nzKE6S7TBkQ8ij5/EZe4g==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Server: nginx/1.18.0 (Ubuntu)
Date: Sun, 05 Feb 2023 23:06:26 GMT
Connection: upgrade
Upgrade: websocket
Sec-WebSocket-Accept: qEWdBedOVh3SuqbAhU0iiAmSNjo=
Sec-WebSocket-Protocol: actioncable-v1-json
Strict-Transport-Security: max-age=31536000; includeSubDomains
chat.herenow.im/brand-assets/logo_thumbnail.svg
81.27.98.45200 OK 916 B URL HTTP/2 chat.herenow.im/brand-assets/logo_thumbnail.svg
IP 81.27.98.45:0
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (360)
Hash a1bb9ce7a33ef8e3b17f28d79a48cb28
87e57858bb528185419fdf2f793c55c7f095a662
9c1bb7bba73eaf75e949795556bc7e66ce7ff3fec6f65797271c7cfe1a305f6f
GET /brand-assets/logo_thumbnail.svg HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: image/svg+xml
content-length: 916
last-modified: Wed, 15 Jun 2022 09:08:58 GMT
cache-control: public, max-age=31556952
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/packs/media/shared/assets/fonts/Inter-Regular-b35f79d43d03b9a20047efe416c35d08.woff2
81.27.98.45200 OK 35 kB URL HTTP/2 chat.herenow.im/packs/media/shared/assets/fonts/Inter-Regular-b35f79d43d03b9a20047efe416c35d08.woff2
IP 81.27.98.45:0
File type Web Open Font Format (Version 2), TrueType, length 34832, version 1.0\012- data
Hash 218a027a7d4d1fe4ae1c9d3415111ed2
1e095a23cb7076efc31dfefd400088696fc44b74
9ff1509605edb93b5b09373cc654addcf9afe913bc0ca69082e5683348e2ba75
GET /packs/media/shared/assets/fonts/Inter-Regular-b35f79d43d03b9a20047efe416c35d08.woff2 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://chat.herenow.im/packs/css/widget-ec13f468.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/font-woff2
content-length: 34832
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/packs/media/shared/assets/fonts/Inter-Medium-aec38a6b266a908bc320e30f261771d1.woff2
81.27.98.45200 OK 35 kB URL HTTP/2 chat.herenow.im/packs/media/shared/assets/fonts/Inter-Medium-aec38a6b266a908bc320e30f261771d1.woff2
IP 81.27.98.45:0
File type Web Open Font Format (Version 2), TrueType, length 35264, version 1.0\012- data
Hash 30434fc36126a3b5f64db621a685a014
a6af0b4c89d3725db9fc6d86ca0dc28118f9daa9
9177550934c7d4516a148a4d0bc2cd709da01789a4d6d2862c6d17b083a7d8cb
GET /packs/media/shared/assets/fonts/Inter-Medium-aec38a6b266a908bc320e30f261771d1.woff2 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://chat.herenow.im/packs/css/widget-ec13f468.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/font-woff2
content-length: 35264
last-modified: Thu, 19 Jan 2023 09:51:10 GMT
cache-control: public, max-age=31556952
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/api/v1/widget/messages?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
81.27.98.45200 OK 54 kB URL HTTP/2 chat.herenow.im/api/v1/widget/messages?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
IP 81.27.98.45:0
Hash e168254a597f2e591b37c6592c88d495
b9ace33f2ed3fa8e141d2c9801507599cc118d62
278f56eae2dad788664a407798ebe26fd4bc4ce652fecb1e9521abbca601f406
GET /api/v1/widget/messages?website_token=ecWuyoRmio1ueq2xgt6r8DQ2 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
X-Auth-Token: eyJhbGciOiJIUzI1NiJ9.eyJzb3VyY2VfaWQiOiJiMGI4NTE2NS0yNzg0LTQ3NTMtODY0ZC1lZGUxYTVhYmEwNjciLCJpbmJveF9pZCI6MTB9.ljmG5s4tQyk6Tw598IpmHXFDiLEhK8NfsqB1vghJOho
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"258153158e38e3291e3d48162225fcdb"
cache-control: max-age=0, private, must-revalidate
x-request-id: 009fe114-41e0-4817-8a2b-6b35a1bcd6d0
x-runtime: 0.186037
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
151.101.65.229200 OK 56 kB URL HTTP/2 cdn.jsdelivr.net/emojione/2.2.7/lib/js/emojione.min.js
IP 151.101.65.229:0
Hash 43b2c7abca934489209ab2af0a4c6146
a5dc86413e453685facb74a05972b1e212ff6fef
4151a2722dcc6d438901cc79fa31426223624366f8484f23a7d00246adf3549d
GET /emojione/2.2.7/lib/js/emojione.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
etag: W/"49dda-cp9vjKV4fYl0Ow7X6yf9dkBr+YU"
content-encoding: gzip
accept-ranges: bytes
date: Sun, 05 Feb 2023 23:06:27 GMT
age: 27784743
x-served-by: cache-fra19156-FRA, cache-bma1652-BMA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 53889
X-Firefox-Spdy: h2
vsb84.tawk.to/s/?k=63e03672bfcd9379978df723&cver=0&pop=false&asver=50337&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1OWUwZjMwZGMyOGVjYTc1ZTQ2MjVlOTciLCJ2aWQiOiI1OWUwZjMwZGMyOGVjYTc1ZTQ2MjVlOTctanF0aXdVYnFPNWpkT1pWMTR6TlFfIiwic2lkIjoiNjNlMDM2NzJiZmNkOTM3OTk3OGRmNzIzIiwiaWF0IjoxNjc1NjM4Mzg2LCJleHAiOjE2NzU2NDAxODYsImp0aSI6ImlST29VS3Y2dmJEUnRRN2tTcTdWWCJ9.EvGQxFgjBY7hHDKXujrDLGNC3kjsU-tdOfrAcllYM6I0c5pp9QdPoKUDx9dig6Vp1szI-cXe5gnlkmeFkjIyBg&EIO=3&transport=websocket&__t=OOZrLPG
104.22.25.131101 Switching Protocols 0 B URL HTTP/1.1 vsb84.tawk.to/s/?k=63e03672bfcd9379978df723&cver=0&pop=false&asver=50337&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1OWUwZjMwZGMyOGVjYTc1ZTQ2MjVlOTciLCJ2aWQiOiI1OWUwZjMwZGMyOGVjYTc1ZTQ2MjVlOTctanF0aXdVYnFPNWpkT1pWMTR6TlFfIiwic2lkIjoiNjNlMDM2NzJiZmNkOTM3OTk3OGRmNzIzIiwiaWF0IjoxNjc1NjM4Mzg2LCJleHAiOjE2NzU2NDAxODYsImp0aSI6ImlST29VS3Y2dmJEUnRRN2tTcTdWWCJ9.EvGQxFgjBY7hHDKXujrDLGNC3kjsU-tdOfrAcllYM6I0c5pp9QdPoKUDx9dig6Vp1szI-cXe5gnlkmeFkjIyBg&EIO=3&transport=websocket&__t=OOZrLPG
IP 104.22.25.131:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/?k=63e03672bfcd9379978df723&cver=0&pop=false&asver=50337&tkn=eyJhbGciOiJFUzI1NiIsInR5cCI6IkpXVCIsImtpZCI6InZpc2l0b3ItYXBwbGljYXRpb24tc2VydmVyLTIwMjEwMjIifQ.eyJwaWQiOiI1OWUwZjMwZGMyOGVjYTc1ZTQ2MjVlOTciLCJ2aWQiOiI1OWUwZjMwZGMyOGVjYTc1ZTQ2MjVlOTctanF0aXdVYnFPNWpkT1pWMTR6TlFfIiwic2lkIjoiNjNlMDM2NzJiZmNkOTM3OTk3OGRmNzIzIiwiaWF0IjoxNjc1NjM4Mzg2LCJleHAiOjE2NzU2NDAxODYsImp0aSI6ImlST29VS3Y2dmJEUnRRN2tTcTdWWCJ9.EvGQxFgjBY7hHDKXujrDLGNC3kjsU-tdOfrAcllYM6I0c5pp9QdPoKUDx9dig6Vp1szI-cXe5gnlkmeFkjIyBg&EIO=3&transport=websocket&__t=OOZrLPG HTTP/1.1
Host: vsb84.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://netcetera.uk
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Cd8+hUrG7oHLsP4h2CBbIg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Sun, 05 Feb 2023 23:06:27 GMT
Connection: upgrade
upgrade: websocket
sec-websocket-accept: 3yx4bmyx4goWJouxJcc6teIDGG4=
sec-websocket-extensions: permessage-deflate
strict-transport-security: max-age=0; includeSubDomains; preload
CF-Cache-Status: DYNAMIC
X-Content-Type-Options: nosniff
Server: cloudflare
CF-RAY: 794f4beedadab4fa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
chat.herenow.im/audio/widget/ding.mp3
81.27.98.45200 OK 2.7 kB URL HTTP/2 chat.herenow.im/audio/widget/ding.mp3
IP 81.27.98.45:0
File type Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, JntStereo\012- data
Hash bcd687e9c2469aa3cd8b882f373964c3
df5d08e7bb31b2ad2e0a5ca3ca56e42661f9d554
42b9d70c9c51cfdff6ed60e874771049df657c93a0361220174582f07dceba53
GET /audio/widget/ding.mp3 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcetera.uk/
Origin: https://netcetera.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:33 GMT
content-type: audio/mpeg
content-length: 2667
access-control-allow-origin: *
access-control-allow-methods: GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 7200
last-modified: Wed, 15 Jun 2022 09:08:58 GMT
cache-control: public, max-age=31556952
vary: Origin
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/owl.carousel.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/owl.carousel.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/owl.carousel.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"ad36-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0v6bXL5Rs%2BGbEvYKJGXU35VR28P7yErOdIWuX8YbVBwyBfHUEe9TT4yNdVk%2FMG2IELsX211TbPcF8w3EgR9GXeSKzng71XaziH4pJnJcS%2FVkxelZBpBUIYPV0hAioyY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b8519deb505-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c9585bec82cb89f532a078cb1cbbd40f
cdn-cache: HIT
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-chunk-common.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-chunk-common.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
age: 7211
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"385105148a50079bafff97e9c9476109"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4be97a7d0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/jquery.waypoints.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/jquery.waypoints.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/jquery.waypoints.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"2344-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IWzCeCfKdbq%2Fvy1cCsfV7fv1loWV1bNnTtMVoP0sPutqWI9yV8e%2BEzWPPpb8ml%2Bm%2BsDUnLfEkyk35pfaL3GS6C1OF1iDdX%2Bk2Q%2FjsAMBAqCcuFuqSwS0JdkEfS1YCeI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b851b55b515-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2c844a08143f8273de761b01ab1685a8
cdn-cache: HIT
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
104.22.24.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 104.22.24.131:0
OPTIONS /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://netcetera.uk/
Origin: https://netcetera.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
x-served-by: visitor-application-preemptive-0vg7
access-control-allow-origin: https://netcetera.uk
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4bea8bdc0b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-runtime.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-runtime.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
age: 7211
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"de21d01e9f8b6cc35ea67267d0ba80ec"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4be97a7f0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/magnific-popup.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/magnific-popup.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/magnific-popup.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"4efa-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=2YNc61%2Bw3IpUIeBZClZG2GdA3RdU4WxEU5Sg1Rtj0Qk5t2PypCwKOVFp2T0%2FTpxEPdQ9uMWr5EC4mR2iTbJFHz2LTdN2xkfweD2SW%2FszDlYnDumXdQ6nFJifiDhrpoM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b850ba00b69-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 84ffc8b7c2f93b92aa24f8bb71e3fd0f
cdn-cache: HIT
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/hs.megamenu.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/hs.megamenu.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/hs.megamenu.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"5816-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x3aagzOvikisshr982FaZUXmkA%2B1zkggLW5rrxBHcTwzNX2JMbkf3anT%2BZ8QhgVTvKBBp0%2F3iv%2FMMicHkTVeTXWU0VcTIbajHI00dUXAfQJSuUre%2BbdeDHox7%2BJ%2B1nM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b850b6bb4eb-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: b35d16a48f8a71f9ab7e0ee95368b128
cdn-cache: HIT
X-Firefox-Spdy: h2
embed.tawk.to/59e0f30dc28eca75e4625e97/1fvkj48ld
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/59e0f30dc28eca75e4625e97/1fvkj48ld
IP 104.22.24.131:0
GET /59e0f30dc28eca75e4625e97/1fvkj48ld HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/x-javascript
access-control-allow-origin: *
cache-control: public, max-age=7200, s-maxage=3600
etag: W/"stable-v4-63b77dcd282"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4be5ce7e0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
chat.herenow.im/api/v1/widget/inbox_members?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
81.27.98.45200 OK 0 B URL HTTP/2 chat.herenow.im/api/v1/widget/inbox_members?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
IP 81.27.98.45:0
GET /api/v1/widget/inbox_members?website_token=ecWuyoRmio1ueq2xgt6r8DQ2 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
X-Auth-Token: eyJhbGciOiJIUzI1NiJ9.eyJzb3VyY2VfaWQiOiJiMGI4NTE2NS0yNzg0LTQ3NTMtODY0ZC1lZGUxYTVhYmEwNjciLCJpbmJveF9pZCI6MTB9.ljmG5s4tQyk6Tw598IpmHXFDiLEhK8NfsqB1vghJOho
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"a6c2e751b6dbd06348c8efceca4cb14b"
cache-control: max-age=0, private, must-revalidate
x-request-id: afb5c6d5-ab5b-4360-a045-0d3db8f35955
x-runtime: 0.217244
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/jquery-3.5.1.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/jquery-3.5.1.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/jquery-3.5.1.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"15d83-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bEgKvt6MhEhi4pn0sPVPBnuH6dA6O8HUNKstsS%2F4cpAIV2KlCLFlZVCKkAfYHVOyMSVYXhmjUTb2KuK20t0Dd7GelkQ4i17Risr78r5t3qIDcyrKcDsZGssFsZvGWDg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b853f740b49-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 42b53f9fe9a83939cea48d3ebd2e5411
cdn-cache: HIT
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/app.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/app.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/app.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"26be-5baefbf3dc600-gzip"
last-modified: Tue, 09 Feb 2021 23:35:52 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NvXFAj5LAlqypfLJhDPSL2nxvxO1j1ZAWuFZW46%2BJsJTg%2B5Cs0me7NT1IzI%2Bcpgu5%2Fh9uFme5CGMpLj9uOeKqrKW1rrJBGbA3vg2muU6T4gjo0eGmwx4RVjtp1YChxE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b850ae10b02-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 974888f5bc096abdf10f09a25c20022e
cdn-cache: HIT
X-Firefox-Spdy: h2
c.netcetera.uk/assets/img/private-cloud-server.svg
194.242.11.186200 OK 0 B URL HTTP/2 c.netcetera.uk/assets/img/private-cloud-server.svg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/img/private-cloud-server.svg HTTP/1.1
Host: c.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: W/"db6a-5baefbf7acf00-gzip"
last-modified: Tue, 09 Feb 2021 23:35:56 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=wa%2B8XpWIXdJsrgMQVKfFnTItJ3E84vMQUAVhEacTOIwOwELffhAqdPu2cnpMGaSkowJyQULPHMQUSFxR3sAdMy1XKRHJ7Uik8bvjNvk6V%2BQHOf3or1WNx%2BCCZ77mwsU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794f4be22a1fb52d-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 23:06:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: fee0beaad6d75c360f98e027a9d14a65
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
c.netcetera.uk/assets/img/hero-cloud-hosting.svg
194.242.11.186200 OK 0 B URL HTTP/2 c.netcetera.uk/assets/img/hero-cloud-hosting.svg
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/img/hero-cloud-hosting.svg HTTP/1.1
Host: c.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:25 GMT
content-type: image/svg+xml
vary: Accept-Encoding
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
etag: W/"10a41-5baefbf7acf00-gzip"
last-modified: Tue, 09 Feb 2021 23:35:56 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=olTIJ%2BzrcqUfigxpUMZSk%2FGuRkVlQUDNuntVmDVtKyzFtDi33z4If8Ayfg9z1damZxSEkwxi0mifsQRNqkvllK1P3%2Fq784c1vMbKacgLSlO3YpibBxFU06jHJ2naAcA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794f4be22cdcb517-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 23:06:25
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4a1d419631b891aec81a80ce55d1dd05
cdn-cache: MISS
content-encoding: br
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-main.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-main.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
age: 7211
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"da5bb1dc647470204df0e49f5afac2de"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4be97a760b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
va.tawk.to/v1/session/start
104.22.24.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/session/start
IP 104.22.24.131:0
POST /v1/session/start HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcetera.uk/
Content-Type: application/json; charset=utf-8
Origin: https://netcetera.uk
Content-Length: 180
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-gsbz
access-control-allow-origin: https://netcetera.uk
access-control-allow-credentials: true
access-control-allow-methods: POST,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: DYNAMIC
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4beb8d6e0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/bootstrap.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/bootstrap.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/bootstrap.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"eae4-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9Ompgi1WJXC5cu%2B88RDThZ5idEjHs4p4aiRTCfCws6SjZM8uh1Lx1CyTVI6nzocIJh%2FLvu3NCRI8JcbxVKuY5fURs4SN6EsYSS0hSuoLzLRWy2WVwcr1v%2FWrE9YxVvg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b852ddbb4fd-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 50b9011a16f108073a9300c836c44ebd
cdn-cache: HIT
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/css/main.css
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/css/main.css
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/css/main.css HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"e3e68-5de616eb36d80-gzip"
last-modified: Sat, 07 May 2022 00:55:34 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2B%2F1bIZx7q8m0pJCmbLQeGd7Ys4y6oEUWOQIGy%2Fe1PpmcxEDwzg5uv8Jf63%2BFf3WPufN0vKQYaAWo4xoQyMtuG5DEvcjIe5I%2BOvecONM1Xvn3xxFW3N789pPki5zV2R0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b852970b4f9-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: dcffdcb5403f4bac958e097b9814d711
cdn-cache: HIT
X-Firefox-Spdy: h2
va.tawk.to/v1/widget-settings?propertyId=59e0f30dc28eca75e4625e97&widgetId=1fvkj48ld&sv=undefined
104.22.24.131200 OK 0 B URL HTTP/2 va.tawk.to/v1/widget-settings?propertyId=59e0f30dc28eca75e4625e97&widgetId=1fvkj48ld&sv=undefined
IP 104.22.24.131:0
GET /v1/widget-settings?propertyId=59e0f30dc28eca75e4625e97&widgetId=1fvkj48ld&sv=undefined HTTP/1.1
Host: va.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://netcetera.uk/
Origin: https://netcetera.uk
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/json
x-served-by: visitor-application-preemptive-6md1
access-control-allow-origin: *
access-control-allow-methods: GET,OPTIONS
access-control-allow-headers: content-type,x-tawk-token
cache-control: public, max-age=7200, s-maxage=1800
etag: W/"2-20-0"
vary: Accept-Encoding
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: REVALIDATED
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4bea8bf40b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
netcetera.uk/cloud
172.67.165.53301 Moved Permanently 0 B IP 172.67.165.53:0
GET /cloud HTTP/1.1
Host: netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: text/html; charset=iso-8859-1
location: http://netcetera.uk/cloud/
cf-ray: 794f4bddddc9b523-OSL
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IQ7nnbBP%2FcPyt5qlWu7JGLFvI8D%2F8ItnIKDUkEP5omrhz2sCJjstcNS%2BxgiOEVyX6vFj81evslKjdOdJE0P%2BouYTnNM0IQ%2BWbga7wsxEhXY1%2FWfQGJqNqdH%2BBQQlXQM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
netcetera.uk/cloud/
172.67.165.53200 OK 0 B IP 172.67.165.53:0
GET /cloud/ HTTP/1.1
Host: netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: text/html; charset=UTF-8
cf-ray: 794f4bdebee4b523-OSL
vary: Accept-Encoding,User-Agent
cf-cache-status: DYNAMIC
x-powered-by: PHP/7.4.32
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=EsImt%2Bfoy%2FhFpIGKtr6368N5rYNNST490EXfDJRaZbv15BxtoqzXBwjLN85Im%2ByUsi4faQCL8UD%2FQ4o3NOqH6SH6tLLv4f53xD1AIx6OqCPzHuvoEc9QssULCcOgb1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/countdown.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/countdown.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/countdown.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"14f6-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kKyvRZ0%2FlKpSOm%2F8PBLQriMZa406UeuT4laVSrEWxBFQqWfWCBHOKIcsDJz6iZynCe%2F0IdPg8UtXeqZc3kKa6te3w5l1sJh1mIsQdJwyxTLT3cbmB%2FL65gBs7BTqkfQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b851884fac0-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 40302e6b42cf556f1147525b0169a22b
cdn-cache: HIT
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/bootstrap-slider.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/bootstrap-slider.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/bootstrap-slider.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"96e5-5baefbf3dc600-gzip"
last-modified: Tue, 09 Feb 2021 23:35:52 GMT
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4V%2FFXg5lrAaHWay4iJ5HhXBNitDbMjM2qfuC1%2BBKPYSsLyq8MmQWfJM%2BvQLsf2kbn2mY7E3O3wv1GAvsCYNwbU6sDKl6O9Lre1vqeIzbj0sGqLTnG5SiYrwXKLQrNl8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b852bc80b69-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 4cfa5e2af0e61c7d152e7d6af0bb7870
cdn-cache: HIT
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/jquery.easing.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/jquery.easing.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/jquery.easing.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"15ab-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=shKT9PAFdjc%2B5hoqEf9MQhQz%2F%2BWjdXQR5m3GbWcmP1MVta4y85Qi97FTnXUQzIXsPUcU%2BRXR7oSWl5ru%2Fcu0U2FZKgIfzpIu6GE6EEPfwBl0LCiupjp2PTTBs3qYyGk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b853a4ab511-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: d15fe8aa6a644a2468ae657a118c4a27
cdn-cache: HIT
X-Firefox-Spdy: h2
chat.herenow.im/api/v1/widget/campaigns?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
81.27.98.45200 OK 0 B URL HTTP/2 chat.herenow.im/api/v1/widget/campaigns?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
IP 81.27.98.45:0
GET /api/v1/widget/campaigns?website_token=ecWuyoRmio1ueq2xgt6r8DQ2 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
X-Auth-Token: eyJhbGciOiJIUzI1NiJ9.eyJzb3VyY2VfaWQiOiJiMGI4NTE2NS0yNzg0LTQ3NTMtODY0ZC1lZGUxYTVhYmEwNjciLCJpbmJveF9pZCI6MTB9.ljmG5s4tQyk6Tw598IpmHXFDiLEhK8NfsqB1vghJOho
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/json; charset=utf-8
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"4f53cda18c2baa0c0354bb5f9a3ecbe5"
cache-control: max-age=0, private, must-revalidate
x-request-id: 0449f022-a213-4ce7-8f42-9bf2aad9bd72
x-runtime: 0.193394
strict-transport-security: max-age=31536000; includeSubDomains
X-Firefox-Spdy: h2
chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
81.27.98.45200 OK 0 B URL HTTP/2 chat.herenow.im/widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2
IP 81.27.98.45:0
GET /widget?website_token=ecWuyoRmio1ueq2xgt6r8DQ2 HTTP/1.1
Host: chat.herenow.im
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: text/html; charset=utf-8
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
etag: W/"0a8d49fc32b5de5e78a54d5824e6c175"
cache-control: max-age=0, private, must-revalidate
set-cookie: _chatwoot_session=wz%2BX2hgDYsvhKo7%2BJUr9Wa39cXbC6YfHkQ0VEzax6cl3r1X4BcSw7qLzSEzoevQ0W2cs9BPMpphyrJZbWv2phQzJsqJylRbSRXdfJho34f2jgUmzIEXu00vjWNkFTm%2B97KXqa7Cy%2BBeqgVhawLOipKVLzO%2FRr6F8G4wVXSpZoSQqQBay0ZO4aZutubW8Meu6vbOv57IXroXHuK1emUxyeUiQh%2Bo1uVN2dwHTcyXNQgw4DfbC%2BVpT4LbmRa76z1zopsq5GBom1rji58Z2WBRZjGdrJR14EKjqPg%3D%3D--uIZ7avK542R5dMvw--IjHs%2FCEOyJ3HrH0axmkpCw%3D%3D; path=/; HttpOnly; SameSite=Lax
x-request-id: 7fe3dcb5-b647-4122-9883-c63aa5221aca
x-runtime: 0.142439
strict-transport-security: max-age=31536000; includeSubDomains
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.netcetera.uk/assets/js/vendors/popper.min.js
194.242.11.186200 OK 0 B URL HTTP/2 cdn.netcetera.uk/assets/js/vendors/popper.min.js
IP 194.242.11.186:0
ASN #34989 ServeTheWorld AS
GET /assets/js/vendors/popper.min.js HTTP/1.1
Host: cdn.netcetera.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:24 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 871970
cdn-uid: 553897a7-a258-48ff-9acf-1e9c145055ec
cdn-requestcountrycode: NO
vary: Accept-Encoding
alt-svc: h3=":443", h3-29=":443"
cache-control: max-age=14400
content-encoding: br
etag: W/"52e1-5baefbf5c4a80-gzip"
last-modified: Tue, 09 Feb 2021 23:35:54 GMT
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Y7EUoHOXt%2BrKM8z93bb06Nu646pfggq83Vea9hE4iK7oK5dgVsGaTvjWA2Cpd34T%2FxTuxFz%2FtOf8utvRRhAHtbVIJzuLIFQLB5BUgzTibkeTCVfYww865Ds%2BZSLgQeI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
cf-ray: 794e2b8539b9b503-OSL
cdn-proxyver: 1.03
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cdn-cachedat: 02/05/2023 19:49:33
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 3e6f635b1d29ce8bd4fb4c2e35984bf0
cdn-cache: HIT
X-Firefox-Spdy: h2
embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
104.22.24.131200 OK 0 B URL HTTP/2 embed.tawk.to/_s/v4/app/63b77dcd282/js/twk-vendor.js
IP 104.22.24.131:0
GET /_s/v4/app/63b77dcd282/js/twk-vendor.js HTTP/1.1
Host: embed.tawk.to
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://netcetera.uk
Connection: keep-alive
Referer: https://netcetera.uk/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 05 Feb 2023 23:06:26 GMT
content-type: application/javascript
vary: X-Goog-Allowed-Resources, Accept-Encoding
age: 7211
last-modified: Fri, 06 Jan 2023 01:49:34 GMT
etag: W/"7dcb496e4882926f93f2e73fa87062c0"
access-control-allow-origin: *
cache-control: public, max-age=2592000, immutable
x-cache-status: HIT
strict-transport-security: max-age=0; includeSubDomains; preload
cf-cache-status: HIT
x-content-type-options: nosniff
server: cloudflare
cf-ray: 794f4be97a780b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2