r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6070
Expires: Sat, 03 Dec 2022 21:57:14 GMT
Date: Sat, 03 Dec 2022 20:16:04 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 67e9370f1bf3e4946a01f346eeae8966
aaab391d1134302d718de7a0d5edbedf884633e6
27a8654fb14db88d4b2bb3b45c1b197fc498cd94143d4a68687742fa48a41358
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6244
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Last-Modified: Sat, 03 Dec 2022 18:32:00 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2741
Expires: Sat, 03 Dec 2022 21:01:45 GMT
Date: Sat, 03 Dec 2022 20:16:04 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 03 Dec 2022 19:18:16 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3468
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: RjgGDzoJGG0LO9auIApN2J9ONyOQvXXcAXE1wj0jHBBABBk97SMLNW03IKgDjknmGUH9CpW5DQM=
x-amz-request-id: QNRVM8C6B9GA8R57
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 03 Dec 2022 19:47:15 GMT
age: 1729
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 03 Dec 2022 20:16:04 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
mindsetthinking.com/MIND_Donations1.html
166.62.28.82200 OK 5.8 kB URL HTTP/1.1 mindsetthinking.com/MIND_Donations1.html
IP 166.62.28.82:0
ASN #26496 AS-26496-GO-DADDY-COM-LLC
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (5633)
Hash 09f727ed2d1cf06babbbf901030019ad
ea08f8f4d04493ea3172cb974e474611a732a632
d901a9c80ae24722ba4e0b6383f5a12bbc74a699a537c01cae06e922ac6150e7
Analyzer Verdict Alert openphish PayPal Inc.
fortinet Phishing
GET /MIND_Donations1.html HTTP/1.1
Host: mindsetthinking.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 03 Dec 2022 20:16:04 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Mon, 26 Apr 2021 00:18:52 GMT
ETag: "6d40068-4c3e-5c0d5171e9300-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5833
Keep-Alive: timeout=5
Content-Type: text/html
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5504
Cache-Control: max-age=110109
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:51:13 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5504
Cache-Control: max-age=110109
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:51:13 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5504
Cache-Control: max-age=110109
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:51:13 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5264
Cache-Control: max-age=109869
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:47:13 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 98c7cbe55ef2c03504de9a1c11c48448
5490eee01dd5cd3cdb1605e6fcf58bdb811a6197
dd553c506497567a0992dac8bd754285147008a0db2fae3a0fd94c3718ca06f1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5545
Cache-Control: max-age=110150
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Etag: "638aa421-1d7"
Expires: Mon, 05 Dec 2022 02:51:54 GMT
Last-Modified: Sat, 03 Dec 2022 01:19:29 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
www.paypalobjects.com/WEBSCR-640-20121028-1/js/iconix.js
192.229.221.25200 OK 1.2 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/iconix.js
IP 192.229.221.25:0
Hash c78a37fff779edcd87b0e8e74bd4a772
b1d9c5d0a86fcf07d416e20154c93206fe79a0e4
d28afd7c82d216546788b369834a414318b517fd583e197ba9284b0292158a09
GET /WEBSCR-640-20121028-1/js/iconix.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeaba-c2d"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:18 GMT
paypal-debug-id: cef923fd6fac9
server: ECAcc (ska/F734)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1164
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/css/core/paypal.css
192.229.221.25200 OK 13 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/css/core/paypal.css
IP 192.229.221.25:0
File type ASCII text, with very long lines (346)
Hash c0342841b3af3f42cf90f4874cdd38c1
8b539b9640f424270998fe65a050a8124a68f3e7
a2174fe1f57ca2b3e44054bbeb960c8a292af254904f660aa113deb7c9bc52b3
GET /WEBSCR-640-20121028-1/css/core/paypal.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: text/css
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5f235217-10472"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Thu, 30 Jul 2020 23:04:55 GMT
paypal-debug-id: 36b4a176de448
server: ECAcc (ska/F750)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 12715
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/logo/pp_secure_213wx37h.gif
192.229.221.25200 OK 2.3 kB URL HTTP/2 www.paypalobjects.com/en_US/i/logo/pp_secure_213wx37h.gif
IP 192.229.221.25:0
File type GIF image data, version 87a, 213 x 37\012- data
Hash 768596fc2bb1ee497419b3b18b50b6a8
730daba4104eb75488c50a0d9ba0707402b1520d
9f41c17f5a7b9dd3521cc83ce4faf34ae46d3fd533fd44c6a969de1730828174
GET /en_US/i/logo/pp_secure_213wx37h.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637bd-8df"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 735d15643b9fe
server: ECAcc (ska/F6E2)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 2271
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/disableBackButton.js
192.229.221.25200 OK 536 B URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/disableBackButton.js
IP 192.229.221.25:0
Hash cc2fc15cf228cabe31c6e55a3b38d1f8
8437f762af5272d2644da09f2fa45abc9e5bc4e2
bebf8fd368edd199c6cb96f3790c03a813ed8b9526c0f76fdca988ccac777f92
GET /WEBSCR-640-20121028-1/js/disableBackButton.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeaba-51f"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:18 GMT
paypal-debug-id: 413b76d684a73
server: ECAcc (ska/F7AB)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 536
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/rosettaLang.js
192.229.221.25200 OK 1.6 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/rosettaLang.js
IP 192.229.221.25:0
Hash 598d7bd0dcd97029b657adc2c28da10a
ef74869ed1bf9fd352f13e87c7e046c579357982
613f7e415830e3b66fd4f34b324bd3211f3264095f3a35506d8e990aeced8475
GET /WEBSCR-640-20121028-1/js/rosettaLang.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeaba-122b"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:18 GMT
paypal-debug-id: feaa18b61e627
server: ECAcc (ska/F6EC)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1639
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/Merchant/hostedpayments/orderInfo.js
192.229.221.25200 OK 7.7 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/Merchant/hostedpayments/orderInfo.js
IP 192.229.221.25:0
File type HTML document, ASCII text, with very long lines (1355)
Hash 09d5245470599d7db7b18b4177c1a5d8
4b2c28bda85a146196af63099ee4f29f36b97d3b
b0e1cf21b7769ea190701d538f54751c63e63f09fc03e8ce99de72681677f4a6
GET /WEBSCR-640-20121028-1/js/Merchant/hostedpayments/orderInfo.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeab9-ab4e"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:17 GMT
paypal-debug-id: aa8ce5674bbc3
server: ECAcc (ska/F7B5)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 7721
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/hostedpayments/hostedpayments.js
192.229.221.25200 OK 3.0 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/hostedpayments/hostedpayments.js
IP 192.229.221.25:0
Hash 7d8da5c050ce16ec96a66905c5bd9f7b
0bf5311c8d8a18e21d0af5175ece98166f94b340
bbb48dc87fce934db18774e36aaf1f3387e8d16f24f991468884f43a0ac96a1f
GET /WEBSCR-640-20121028-1/js/hostedpayments/hostedpayments.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeaba-2afe"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:18 GMT
paypal-debug-id: 739ee2f4fc059
server: ECAcc (ska/F6D9)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 3028
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/lib/min/widgets.js
192.229.221.25200 OK 37 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/lib/min/widgets.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (65535)
Hash 07cd699427f9d373711536e8b855de1c
da8d3e638397e7acf6db3c3d1ae4372c98945b70
21876eb23cbca13e075dc2795aacbf37932342a875e516a044d154e2f801d513
GET /WEBSCR-640-20121028-1/js/lib/min/widgets.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5f23525a-22d68"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Thu, 30 Jul 2020 23:06:02 GMT
paypal-debug-id: 10a98ff859b79
server: ECAcc (ska/F6D1)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 37200
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/pp_naturalsearch.js
192.229.221.25200 OK 2.0 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/pp_naturalsearch.js
IP 192.229.221.25:0
File type exported SGML document, ASCII text
Hash a63e8ac291272bcda63b7ce3302fba33
94210dbc090297a387416a9b5e678bd0d142871d
35bebf3ff3c643c17fdb7a5ff7ba7e6a2983a363510ad2aa9b68e5e6b7c74f3f
GET /WEBSCR-640-20121028-1/js/pp_naturalsearch.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeaba-1745"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:18 GMT
paypal-debug-id: b003463b356a4
server: ECAcc (ska/F76B)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
traceparent: 00-0000000000000000000b003463b356a4-60b2993b2b14ca45-01
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1998
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/logo/logo_ccDiscover.gif
192.229.221.25200 OK 540 B URL HTTP/2 www.paypalobjects.com/en_US/i/logo/logo_ccDiscover.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 37 x 23\012- data
Hash c5e0fa443a7a18d58b1ebbe3098338fa
4400c817cc454d5f277f776e7361ae42b3360fd5
497ee45f563bc9b4ecea846c9431ce9b47a156b0dfd3f1dfee47883e50d77671
GET /en_US/i/logo/logo_ccDiscover.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637bd-21c"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 1e69b4406112
server: ECAcc (ska/F79C)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 540
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/scr/pixel.gif
192.229.221.25200 OK 43 B URL HTTP/2 www.paypalobjects.com/en_US/i/scr/pixel.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash fc94fb0c3ed8a8f909dbc7630a0987ff
56d45f8a17f5078a20af9962c992ca4678450765
2dfe28cbdb83f01c940de6a88ab86200154fd772d568035ac568664e52068363
GET /en_US/i/scr/pixel.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637be-2b"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:34 GMT
paypal-debug-id: 81b5359302d60
server: ECAcc (ska/F6E2)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 43
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/logo/logo_ccVisa.gif
192.229.221.25200 OK 526 B URL HTTP/2 www.paypalobjects.com/en_US/i/logo/logo_ccVisa.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 37 x 23\012- data
Hash 30ca66951e4bd544a00853752bd35f83
e786bf2022af58892890a7046843f23aa44fb5b6
1b9af3baa5c1b8f5d810de288a85111537966fd261b42b1d872b1a3583ad12b6
GET /en_US/i/logo/logo_ccVisa.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637bd-20e"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: f0fe46cdce2e
server: ECAcc (ska/F6D9)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 526
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/css/flows/hostedpayments/donations.css
192.229.221.25200 OK 3.6 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/css/flows/hostedpayments/donations.css
IP 192.229.221.25:0
Hash 26f3aaea65b798233b319ef1b585e398
f0f24ace0ec9a6d557834078fe8ccae85d624171
5308271c9917774a56b72b52957949045a58c670e7aa5044b473d4dc69587556
GET /WEBSCR-640-20121028-1/css/flows/hostedpayments/donations.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: text/css
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5f235217-37a9"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Thu, 30 Jul 2020 23:04:55 GMT
paypal-debug-id: c39c2187983d1
server: ECAcc (ska/F766)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 3605
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/site_catalyst/pp_jscode_080706.js
192.229.221.25200 OK 23 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/site_catalyst/pp_jscode_080706.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (403)
Hash fc684f728710b876841629345a3dbd64
21898f942d02334d5eafcd80d92af82b4c9dfd62
2c8411ffa108a775eb5caee6e56c379fc30a77eb5eda299cb736e41ce3116ea9
GET /WEBSCR-640-20121028-1/js/site_catalyst/pp_jscode_080706.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"60271b51-ef25"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Sat, 13 Feb 2021 00:20:33 GMT
paypal-debug-id: 3d22343875a5a
server: ECAcc (ska/F762)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 22997
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/logo/logo_ccAmex.gif
618 B URL www.paypalobjects.com/en_US/i/logo/logo_ccAmex.gif
IP :0
File type GIF image data, version 89a, 37 x 23\012- data
Hash 005a1efb8424f23c4832107e62a75c3f
1cd7602e675c866883a69a03ad7a803e843929a0
1ad6ab95c06f211f8d14c39889a956a2a477b8748030a83b7366a201b4d4a128
GET /en_US/i/logo/logo_ccAmex.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
www.paypalobjects.com/en_US/i/logo/logo_ccMC.gif
192.229.221.25200 OK 477 B URL HTTP/2 www.paypalobjects.com/en_US/i/logo/logo_ccMC.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 37 x 23\012- data
Hash 4373159b6ec7679385691f7d20d94f0f
dd3020a48e66b54f7d2b5e0c8b39e884f3e82767
327768d3555272953e00bba3ad13c3d2a7cd7ad666e8b0b7e5de815a7dbcac5d
GET /en_US/i/logo/logo_ccMC.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637bd-1dd"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 81383d54bafd1
server: ECAcc (ska/F774)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 477
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/logo/PayPal_mark_37x23.gif
192.229.221.25200 OK 389 B URL HTTP/2 www.paypalobjects.com/en_US/i/logo/PayPal_mark_37x23.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 37 x 23\012- data
Hash e2d78013cbc581be68eddb14959bf494
115ed0d894954edb5ffffbed8a8a6bb6aee3a654
f11b3c2fe17680fcf9397049946161e113f34e4565d3b5d620d014cf8e44beeb
GET /en_US/i/logo/PayPal_mark_37x23.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637bd-185"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 4d468e21b5edc
server: ECAcc (ska/F75B)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 389
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/lib/yui/animation.js
192.229.221.25200 OK 4.7 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/lib/yui/animation.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (6037)
Hash 46fce7beef19d5b1f4cddce8d0b4f743
dd780b1bbcc4c74326ba744714687ba1eb629c55
d01c517ecfe48c982d6441067f3895eebf1aa5369b35136da1cf3134008e0bf2
GET /WEBSCR-640-20121028-1/js/lib/yui/animation.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"620aeaba-35d1"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Mon, 14 Feb 2022 23:50:18 GMT
paypal-debug-id: 2b21ecea14ab2
server: ECAcc (ska/F76A)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 4738
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/pp_main.js
192.229.221.25200 OK 9.5 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/pp_main.js
IP 192.229.221.25:0
Hash a854218d26152c5c9e66477600047215
79500b10ebc0373802cf36e98f6646c03b18d779
d2c5d4c534b95cb695c20bfe70d220a33be8da156e5a2a77edb598f9b72541bc
GET /WEBSCR-640-20121028-1/js/pp_main.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5f235226-8c8a"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Thu, 30 Jul 2020 23:05:10 GMT
paypal-debug-id: 93d3fbc5e697d
server: ECAcc (ska/F74E)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 9530
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/css/flows/hostedpayments/default.css
192.229.221.25200 OK 9.3 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/css/flows/hostedpayments/default.css
IP 192.229.221.25:0
File type ASCII text, with very long lines (423)
Hash eb99efd172f6f40a18985cbb8789d5fd
73d4a3a2af7beb7623e0cc9912cfd81df6423d53
cf2f1a98f51c2305ae1a5b3561da98bd0a224894bcad049753d2afcdca65367a
GET /WEBSCR-640-20121028-1/css/flows/hostedpayments/default.css HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: text/css
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5f235217-977b"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Thu, 30 Jul 2020 23:04:55 GMT
paypal-debug-id: e646f613aa29a
server: ECAcc (ska/F739)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 9251
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/lib/min/global.js
192.229.221.25200 OK 20 kB URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/lib/min/global.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (36429)
Hash ba01209344a9da12ab68f5a53740846b
619d3855bb11e4ccb11e0c807c9cd993295870e2
f09f846d3a16b8ef355b13c70222a460d1ae73b96408d6464398b43036202f93
GET /WEBSCR-640-20121028-1/js/lib/min/global.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5f235259-f071"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Thu, 30 Jul 2020 23:06:01 GMT
paypal-debug-id: 2748832eaf5e0
server: ECAcc (ska/F6A0)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 20092
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 03 Dec 2022 20:08:58 GMT
cache-control: public,max-age=3600
age: 426
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/header/header_bg.gif
192.229.221.25200 OK 270 B URL HTTP/2 www.paypalobjects.com/en_US/i/header/header_bg.gif
IP 192.229.221.25:0
File type GIF image data, version 89a, 4 x 66\012- data
Hash 58e9ebcca33d2eff463831d37aca81c4
14673e4afcf8fde7be0586f2bd919ad0f6678328
9b636b3686850a9a69477ab86d75865d2937b1fab8be31969def3ad2aea120fa
GET /en_US/i/header/header_bg.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypalobjects.com/WEBSCR-640-20121028-1/css/flows/hostedpayments/default.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637bd-10e"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: f938ef9683b96
server: ECAcc (ska/F6B4)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 270
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/pui/core/btn_bg_sprite.gif
192.229.221.25200 OK 86 B URL HTTP/2 www.paypalobjects.com/en_US/i/pui/core/btn_bg_sprite.gif
IP 192.229.221.25:0
File type GIF image data, version 87a, 1 x 250\012- data
Hash 8471c8c847ec08575180ee9e11ab61ae
6118fcbb94f86a6d937d622ac0a0e8ad0d3b1337
4e4f3dbe5aa70917ed704bea8d74894be604c44070dad66746f44b5eed93a1b9
GET /en_US/i/pui/core/btn_bg_sprite.gif HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.paypalobjects.com/WEBSCR-640-20121028-1/css/flows/hostedpayments/default.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/gif
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637be-56"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:34 GMT
paypal-debug-id: a3c2b49eff0ef
server: ECAcc (ska/F78D)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 86
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico
192.229.221.25200 OK 1.4 kB URL HTTP/2 www.paypalobjects.com/en_US/i/icon/pp_favicon_x.ico
IP 192.229.221.25:0
File type MS Windows icon resource - 2 icons, 32x32, 32 bits/pixel, 16x16, 32 bits/pixel\012- data
Hash 455deaddcb9436734b2144429ae53ff7
e173c07062d5ea7d98da48a8973d7dd24969fe61
5c958cea39018dd9f80738db7d3a8c2f28a0d539e5d481b296daafea829897f2
GET /en_US/i/icon/pp_favicon_x.ico HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/x-icon
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: W/"5d5637bd-1536"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:33 GMT
paypal-debug-id: 317622c9654cb
server: ECAcc (ska/F6D8)
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 1431
X-Firefox-Spdy: h2
www.paypalobjects.com/en_US/i/pui/apple-touch-icon.png
192.229.221.25200 OK 2.6 kB URL HTTP/2 www.paypalobjects.com/en_US/i/pui/apple-touch-icon.png
IP 192.229.221.25:0
File type PNG image data, 60 x 60, 8-bit/color RGB, non-interlaced\012- data
Hash b904e8b4f75ccacfb0f284fc037153d0
17f05507fd0f09507a0799308add4a9001595676
ca2e528103f638ee17f52a6278eb3dbf7cac76a53f0600828255c9845d195df9
GET /en_US/i/pui/apple-touch-icon.png HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ch: DPR, Viewport-Width, Width, ECT, Downlink
accept-ranges: bytes
cache-control: s-maxage=31536000, public,max-age=3600
content-type: image/png
date: Sat, 03 Dec 2022 20:16:04 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "5d5637be-a05"
expires: Sat, 03 Dec 2022 21:16:04 GMT
last-modified: Fri, 16 Aug 2019 04:57:34 GMT
paypal-debug-id: 74503e60d37d4
server: ECAcc (ska/F745)
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-cache: HIT
x-content-type-options: nosniff
content-length: 2565
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash a151c326c67e1abb747847c1427db76f
80885d30ef8ba867bf33c40b861976958a27493a
de2b573ee1c8af980e593352e0c331b2595f62bd4499300ace30821d20814760
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6239
Cache-Control: max-age=138885
Content-Type: application/ocsp-response
Date: Sat, 03 Dec 2022 20:16:04 GMT
Etag: "638b11ab-1d7"
Expires: Mon, 05 Dec 2022 10:50:49 GMT
Last-Modified: Sat, 03 Dec 2022 09:06:51 GMT
Server: ECS (ska/F718)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.213.121.129101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.213.121.129:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: G3BDkks2gToQY1BFKD1eUA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: yso2RwYbFDtJRQL66NV3mKrkfX8=
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13517
Expires: Sun, 04 Dec 2022 00:01:23 GMT
Date: Sat, 03 Dec 2022 20:16:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13517
Expires: Sun, 04 Dec 2022 00:01:23 GMT
Date: Sat, 03 Dec 2022 20:16:06 GMT
Connection: keep-alive
r3.o.lencr.org/
23.33.119.27200 OK 503 B IP 23.33.119.27:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13517
Expires: Sun, 04 Dec 2022 00:01:23 GMT
Date: Sat, 03 Dec 2022 20:16:06 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 00:57:24 GMT
age: 69522
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
34.120.237.76200 OK 2.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b47431190f34eccf0a6efb98e2a32b7d
9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704
08d3b6be354cafb70c20e6865788cb375adbf88d47711651fe1a3b855094daf2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6b6b798b-d396-454d-9d5b-17b47827e4ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 2942
x-amzn-requestid: ed26679f-cd56-477f-9914-f9afbcaaeea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoGFYoAMFWgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-4ec6bebe21656d5026456994;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XvG2dAUeB914GQ1qJwQRHovAtra8OSjG-CsXeR8UOBq5r8qVjEbPBQ==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 05:02:08 GMT
age: 54838
etag: "9fc7ab3a4eb2d36fd6df7e0267a26a47627d1704"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
34.120.237.76200 OK 4.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash fcb89ca25035b2bbb71ae5dd175fcd40
544428cdad754b1bb7be3cd46a79bf078fd5b450
36dcbbe6cd2710ee502776b4bcf32053e92b750a55e2bd4cdeadbc694c7c2699
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd7dc00fa-a8d3-44bf-ba84-1998d8dd7c5a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: c824c317-e6e3-4006-9f9d-ea54e8170a4c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cf2_tGErIAMF8_A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63896b97-7fc523296afea4dd4b5d1de8;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 03:05:59 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bd85z5A6C0nxpDjeSEPp1NHJxXFO5sy1OgTLz7KpdWz61TNrfyQ47Q==
via: 1.1 40b967aa4aa18637c4b91214147f3cb4.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 03:53:20 GMT
age: 58966
etag: "544428cdad754b1bb7be3cd46a79bf078fd5b450"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1e74254b3fdce7d6b84a71a7aff43789
65c8b4abf957f9b54d99d0f78559e639adb29efb
f278c3cc6734da7188862a8c651c803e7ac1fda82234e191761453cb1359d3ee
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F627a3f86-b7fa-44c4-a119-2e3d23eb8b6a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5354
x-amzn-requestid: 3d58ffea-3433-4c5c-a60b-17f6de3a33e5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cSsnvG44oAMFfyQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638427ca-63b375f04189b7ce7d84cd5d;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 03:15:22 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -AurmlKwF0QgfsWBsV3ZN9ZyDhw1Zo82zUqrpkBbvbCfh0j7evV2Tg==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google
date: Sat, 03 Dec 2022 11:01:04 GMT
age: 33302
etag: "65c8b4abf957f9b54d99d0f78559e639adb29efb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3abdcce275bb9723b4ac1d0c38cc8891
91f0d888c38db0899f106b652e3dcac062648099
ff411fc0d5abaf519d6600961ec51ad71ad9a02e23cc02ad818e27f0324b3d1e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F528dcb40-0960-4efd-98b7-a07004a61b22.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7657
x-amzn-requestid: c0dbd862-41cf-4fa8-ab6b-256763c63fbf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZN1Fo6IAMF9EQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f25-554ffbc83fd70c557437120f;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:25 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: V_7_ohQr9ENIjOvdvy65ZpJqg2OI9gzRdiuxCTJzl4qwXe2Nmu_tAQ==
via: 1.1 00f0a41f749793b9dd653153037c957e.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:49:27 GMT
etag: "91f0d888c38db0899f106b652e3dcac062648099"
content-type: image/jpeg
age: 80799
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
34.120.237.76200 OK 9.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 45182367fd4f8b6dd234eef1022acdb1
d4b3052021ff3ad1dc4134fa25eb12a98e7c17da
a57fadaf74db2fb457cfe761314d56f021d22146f5bdb6a8bf11b6519e8a558d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F73b53015-e415-4fff-9252-8a16bbe000f5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9715
x-amzn-requestid: c8102cfa-78dc-4d81-ad6a-e16b9132e238
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ciZO2HQKIAMF8IA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638a6f2b-350c586b568e6565763376bd;Sampled=0
x-amzn-remapped-date: Fri, 02 Dec 2022 21:33:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 0QkVKyYm9UwlF5FEeli9UsRAQwEi3-c3bMR-QSJxIKRQe7WWT76dGQ==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 d6b180eb367f7de26d67a9f3901b96a6.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 21:51:06 GMT
age: 80700
etag: "d4b3052021ff3ad1dc4134fa25eb12a98e7c17da"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.paypalobjects.com/WEBSCR-640-20121028-1/js/Customer/min/baynote.js
192.229.221.25404 Not Found 0 B URL HTTP/2 www.paypalobjects.com/WEBSCR-640-20121028-1/js/Customer/min/baynote.js
IP 192.229.221.25:0
GET /WEBSCR-640-20121028-1/js/Customer/min/baynote.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://mindsetthinking.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 404 Not Found
content-encoding: gzip
access-control-allow-origin: *
cache-control: no-store
content-type: text/html
date: Sat, 03 Dec 2022 20:16:05 GMT
dc: ccg11-origin-www-1.paypal.com
expires: Sat, 03 Dec 2022 21:16:05 GMT
paypal-debug-id: 6b30928a76fb7
server: ECAcc (daa/7CD1)
strict-transport-security: max-age=63072000; includeSubDomains; preload
traceparent: 00-00000000000000000006b30928a76fb7-ccd8ad820eeda67d-01
vary: Accept-Encoding
x-content-type-options: nosniff
X-Firefox-Spdy: h2