onlineservices-mygov-refund.com/
45.81.232.16200 OK 297 B URL HTTP/1.1 onlineservices-mygov-refund.com/
IP 45.81.232.16:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 56ddf5db06e34b734bc6447ffa4d27fe
a5fd1d7279e1bd77bca88745632a49332198e1df
5c5cd2b6ba2762cb5ee34f8c844a201cf5fd0561adc3b705e2a01492cf50fa15
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: onlineservices-mygov-refund.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Server: nginx
Date: Sun, 23 Oct 2022 22:26:51 GMT
Content-Type: text/html
Content-Length: 297
Connection: keep-alive
Last-Modified: Mon, 03 Feb 2020 10:13:51 GMT
ETag: "1b0-59da92e0a15c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73c4166ca864f777db2cc1cd8658a7c2
c56b66b0b7c8516d4d5bfafe0c166711c78f3d25
310c633350812c064e159275b6dbbdba6d6a5991a54ccfcc23459320c6513572
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "310C633350812C064E159275B6DBBDBA6D6A5991A54CCFCC23459320C6513572"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4521
Expires: Sun, 23 Oct 2022 23:42:12 GMT
Date: Sun, 23 Oct 2022 22:26:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Length, Content-Type, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 23 Oct 2022 21:52:52 GMT
Expires: Sun, 23 Oct 2022 22:33:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 8ddb6d7670d8c5a85c04a10525a71b90.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: U5AjExIlb8AfIkSDEATNfjGEAWZec7o0ezCeGuveos4yJb6wpqkNiA==
Age: 2039
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ae56efd62a0d9249d98573172eb8b28b
5ff4e9959be677ad76c26ca73f9ef4feb9fa2f28
82d9ee4948fce839f7edb1f8490c4213cded3912464a4169b0bf6a61278694bd
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "82D9EE4948FCE839F7EDB1F8490C4213CDED3912464A4169B0BF6A61278694BD"
Last-Modified: Sat, 22 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11901
Expires: Mon, 24 Oct 2022 01:45:12 GMT
Date: Sun, 23 Oct 2022 22:26:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: MhhrrZhdhfoUPFwsRzjHNHOeuq7cIpJOJE+53Qf/nUh/8Y8+m1QZjDk+aJGQLMjgu6AjRvYYsdk=
x-amz-request-id: P4JXN7XCPMXM45X3
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sun, 23 Oct 2022 21:38:08 GMT
age: 2923
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 7981228dbc824baa1a24db31158fd80d
e4c47792cc2ef27a6b4eb4e971c50aa360a28e94
73e1d958f88336ec2a9b1483a98526a348f95679c1cfac891082ae2137a9248f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73E1D958F88336EC2A9B1483A98526A348F95679C1CFAC891082AE2137A9248F"
Last-Modified: Sun, 23 Oct 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15077
Expires: Mon, 24 Oct 2022 02:38:09 GMT
Date: Sun, 23 Oct 2022 22:26:52 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/default-server-index.js
185.76.9.24200 OK 30 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/default-server-index.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
File type ASCII text, with very long lines (19962)
Hash 763df4917a1e5956d5c10d5858ab35b9
4a4717acb390b2edbbaec1e621a1e4e81c64e19c
daea475b6d7151f0a87796cb13bf4cefe4e7d4bb3e06c285a3c9d16388dd529b
GET /static/default-website-content/public/default-server-index.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-5433"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 0EB8:8A57:FDB88A:10748A4:628B6A51
via: 1.1 varnish
age: 125
x-served-by: cache-bma1657-BMA
x-cache-hits: 3
x-timer: S1653304014.017776,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: 4985daa8a090b4c2cb4641c5951b92d15b245fb7
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRRO3gTehQIAAA
x-77-nzt-ray: +SJbShR2Ys8
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-1efbd3.woff2
185.76.9.24200 OK 23 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/fonts/lato-v16-latin-700-1efbd3.woff2
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
File type Web Open Font Format (Version 2), TrueType, length 22992, version 1.0\012- data
Hash 1efbd38aa76ddae2580fedf378276333
8a49976f2470ba2a1db6144245355d3b889312e4
8d3ca80fa271e94b0c36cf3053b0f806b7a42bb3395b424c99dc0bd218f0ac20
GET /static/default-website-content/public/fonts/lato-v16-latin-700-1efbd3.woff2 HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://onlineservices-mygov-refund.com
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: font/woff2
content-length: 22992
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-59d0"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 1FFE:A2DF:72F904:79FDB7:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1670-BMA
x-cache-hits: 1
x-timer: S1653304043.055162,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 77597007a4434ed5f30a6a0efb9caf1c4ebcaeb0
x-accel-expires: @1666564422
server: CDN77-Turbo
x-77-nzt: AblMCRSdjbD/vgAAAA
x-77-nzt-ray: sGrSUAcbCTU
x-cache: HIT
x-age: 190
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/guy-508c30.png
185.76.9.24200 OK 10 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/guy-508c30.png
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
File type PNG image data, 144 x 286, 8-bit/color RGBA, non-interlaced\012- data
Hash 508c30a08de6e9a033e045a6979f76d7
8bbde0114d14ef4e0687fab5cc70e3bd4d96c233
40d72d259fff82a177cd2c2f2a1bd0024ec04a2cd5a19d5596187755cc2ae5f2
GET /static/default-website-content/public/img/guy-508c30.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/png
content-length: 9999
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-270f"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3F90:7313:155B620:162533E:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.201352,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 05a247c73331f2c9b8c20f277bb01530b73ebd69
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRT2K27ehQIAAA
x-77-nzt-ray: CXdipAprWrA
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-domain-page-15b75d.png
185.76.9.24200 OK 192 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-domain-page-15b75d.png
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
File type PNG image data, 998 x 840, 8-bit/color RGBA, non-interlaced\012- data
Size 192 kB (191877 bytes)
Hash 15b75d100a555e3f0d84c59d81dd46e8
435e0f337cf2fb81d65fa4aa1c14caaa109f5bc6
f2fd07b6c6a69ba71eb8513377f052f5b692d610a2e890151084e7fcfb09799d
GET /static/default-website-content/public/img/header-domain-page-15b75d.png HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/png
content-length: 191877
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: "6142ddf2-2ed85"
expires: Mon, 23 May 2022 11:15:35 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: B038:8A57:FDC5B0:1075642:628B6A7F
via: 1.1 varnish
age: 108
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.201739,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: aabbe9bc697ada4e73c5910722c114837a19bc75
x-accel-expires: @1666564476
server: CDN77-Turbo
x-77-nzt: AblMCRTHtS3/iAAAAA
x-77-nzt-ray: 6AheOaSdYSo
x-cache: HIT
x-age: 136
x-77-pop: stockholmSE
x-77-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/developers-blog-22dfe6.svg
185.76.9.24200 OK 114 kB URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/developers-blog-22dfe6.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
File type SVG Scalable Vector Graphics image\012- , ASCII text
Size 114 kB (113934 bytes)
Hash b55add15aceb2acc10343beb1751f79d
58fbcecb14baf84650d8fde24105230d3f893241
4c83a951809922c66cacca41d6af36b5b967a6803c53bbd306db1041718f9ea7
GET /static/default-website-content/public/img/developers-blog-22dfe6.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-51f"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3B1E:4F43:F84E7D:105C350:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.177940,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 6cdf74fa20bb4bdc0f7e1114e3eb68368c7e6018
x-accel-expires: @1666564422
server: CDN77-Turbo
x-77-nzt: AblMCRS7yrH/vgAAAA
x-77-nzt-ray: HDiNnfmAH8Y
x-cache: HIT
x-age: 190
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Sun, 23 Oct 2022 21:43:40 GMT
Cache-Control: max-age=3600
Expires: Sun, 23 Oct 2022 21:46:36 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: qNkoNkxbRB8vVFiUoWbpKYzu7T-Aq5qxnz6ZhDGTBGiCFpqgWHm_vg==
Age: 2592
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 60d5d7cce6c32a6bdaf0d4c92ec93a1a
cd29edee660366b41749cfd206bdc08fb421449c
fb90c4cc44b32e4ca4a7d1533bbf4a2fd5c482dda5d232f1be2334f3cefbbb0e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5654
Cache-Control: max-age=126845
Content-Type: application/ocsp-response
Date: Sun, 23 Oct 2022 22:26:52 GMT
Etag: "6354f613-1d7"
Expires: Tue, 25 Oct 2022 09:40:57 GMT
Last-Modified: Sun, 23 Oct 2022 08:06:43 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 83c13b4de15717e456055bc62373eb8c
8c9fe7c1f9c9a3eaff5f805c1e52d0713238f2e0
7c8594bf7aec0c7ff7d47ae4ca2da8bdcfbff097fa5c801a1920ad1b2c195f70
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=112264
Date: Sun, 23 Oct 2022 22:26:52 GMT
Etag: "6354c395-1d7"
Expires: Tue, 25 Oct 2022 05:37:56 GMT
Last-Modified: Sun, 23 Oct 2022 04:31:17 GMT
Server: ECS (nyb/1D24)
X-Cache: Miss from cloudfront
Via: 1.1 a9120cc3ff449047c990e82a4d5566ba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: o02AZ7qcXQbZbwjVnmCTHSozj7QN1BENUVMQZF0dpIRWMYOL8v-aXw==
Age: 3999
ocsp.sca1b.amazontrust.com/
143.204.42.156200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.156:0
Hash 83c13b4de15717e456055bc62373eb8c
8c9fe7c1f9c9a3eaff5f805c1e52d0713238f2e0
7c8594bf7aec0c7ff7d47ae4ca2da8bdcfbff097fa5c801a1920ad1b2c195f70
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=113658
Date: Sun, 23 Oct 2022 22:26:52 GMT
Etag: "6354c395-1d7"
Expires: Tue, 25 Oct 2022 06:01:10 GMT
Last-Modified: Sun, 23 Oct 2022 04:31:17 GMT
Server: ECS (nyb/1D28)
X-Cache: Miss from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 5vkoRCJbyV79SXuduq7TBSfcJArSqhJijyIKHb22eGAeBc-86bxPuQ==
Age: 5393
push.services.mozilla.com/
44.237.51.86101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 44.237.51.86:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: MhG+gE9RaJlkRsxnQ35aNA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: UTlPM9QIY4BIYjSVnTzWPOwfiCM=
firehose.us-west-2.amazonaws.com/
35.89.72.103200 OK 20 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP 35.89.72.103:0
Hash 3970e82605c7d109bb348fc94e9eecc0
e03849ea786b9f7b28a35c17949e85a93eb1cff1
f5d031af01f137ae07fa71720fab94d16cc8a2a59868766002918b7c240f3967
OPTIONS / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Referer: http://onlineservices-mygov-refund.com/
Origin: http://onlineservices-mygov-refund.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: e3ce1e8f-d9b9-696f-b801-df627ddfdcd6
Access-Control-Allow-Origin: *
Content-Encoding: gzip
Access-Control-Allow-Headers: authorization,content-type,x-amz-content-sha256,x-amz-date,x-amz-target,x-amz-user-agent
Access-Control-Allow-Methods: POST
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Access-Control-Max-Age: 172800
Content-Length: 20
Date: Sun, 23 Oct 2022 22:26:52 GMT
firehose.us-west-2.amazonaws.com/
35.89.72.103200 OK 246 B URL HTTP/1.1 firehose.us-west-2.amazonaws.com/
IP 35.89.72.103:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 1e319c8a4fe956453f7090465d2bf6d8
7c7b01c57777e8a0aa57c419cb16dd9d13d4a286
64a02428573fa73ffb379406f3248c4b6cf8e0a3d16642075ed1b03c1d961d94
POST / HTTP/1.1
Host: firehose.us-west-2.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Amz-User-Agent: aws-sdk-js/2.693.0 callback
Content-Type: application/x-amz-json-1.1
X-Amz-Target: Firehose_20150804.PutRecord
X-Amz-Content-Sha256: 28f2961cf53ef41a75579b533a52b10f7742bda5b0749e1176a23adcdac14cd2
X-Amz-Date: 20221023T222652Z
Authorization: AWS4-HMAC-SHA256 Credential=AKIAR4YEYRJL6JKBNRGP/20221023/us-west-2/firehose/aws4_request, SignedHeaders=host;x-amz-content-sha256;x-amz-date;x-amz-target;x-amz-user-agent, Signature=4a2d39a21fbf34f63a4e77a306e9b5bd100bbb412c0e5c0a7c1a05316a7b12d4
Content-Length: 108
Origin: http://onlineservices-mygov-refund.com
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
x-amzn-RequestId: feac12b7-7466-2b38-a563-d35ad0009e81
Access-Control-Allow-Origin: *
Content-Encoding: gzip
x-amz-id-2: 2Pj4j5w12tqqNM84vDH8Q+Vb2h6TYJu9RSBcp+M/0iRUeQ6n5bpogG/oC3Twr1cZKliyCdGWnuhoEbjeX1n8JZ8XMGRv5ga8
Access-Control-Expose-Headers: x-amzn-RequestId,x-amzn-ErrorType,x-amz-request-id,x-amz-id-2,x-amzn-ErrorMessage,Date
Content-Type: application/x-amz-json-1.1
Content-Length: 246
Date: Sun, 23 Oct 2022 22:26:52 GMT
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bed68ee568e74be152402c71cbf26510
38092ae53739e8ee13362c84df108bad734c4b64
26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10949
Expires: Mon, 24 Oct 2022 01:29:23 GMT
Date: Sun, 23 Oct 2022 22:26:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bed68ee568e74be152402c71cbf26510
38092ae53739e8ee13362c84df108bad734c4b64
26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10949
Expires: Mon, 24 Oct 2022 01:29:23 GMT
Date: Sun, 23 Oct 2022 22:26:54 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bed68ee568e74be152402c71cbf26510
38092ae53739e8ee13362c84df108bad734c4b64
26cd9ff2fb48cc7fb7c83cc325f4cb4713fc442cc4842baa728c570081be0445
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "26CD9FF2FB48CC7FB7C83CC325F4CB4713FC442CC4842BAA728C570081BE0445"
Last-Modified: Sat, 22 Oct 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10949
Expires: Mon, 24 Oct 2022 01:29:23 GMT
Date: Sun, 23 Oct 2022 22:26:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
34.120.237.76200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 772-513, spot sensor temperature 0.000000, unit celsius, color scheme 1, calibration: offset 0.000000, slope 241254190455726276608.000000\012- data
Hash 88436497b6fe5e22155afc45e9e8fe3e
5004575548d76d878a7f27bb3fc4a9a10e8f6909
304c2388dd96c82582d490cd473174b11eac53bf408a29ed78e23d77139ef243
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc3257320-582a-498d-9e0c-531ea65fbbe0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13962
x-amzn-requestid: 84f8b505-da9d-421c-b00a-3d6407aac332
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDQETqoAMFwxw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b547-566c7abb12b09a565be85833;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: N-R8_VOQSIhikiT-qqPi0ABMoZnr234hdcdinyzBath9A8M6aUZ37A==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:54:05 GMT
age: 1969
etag: "5004575548d76d878a7f27bb3fc4a9a10e8f6909"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg
34.120.237.76200 OK 9.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b24b0e9eeeecd44eafc5957dc5450db
e071eb9837a242f41035da077dc6c9b0178d8f9f
33e9c9c03180d2855606be0605c894180d81e151e2f4b4b2bacf5325c11152d4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b4612fa-9557-465f-8ec2-dc7a447daaac.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 9495
x-amzn-requestid: f9246128-d6a3-49e0-982d-9f75d110aa2d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelztGlqoAMFs8g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b67d-7f04a07955c3c9a8644475a0;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:47:41 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: FDwmWmTCnCZt2aCUx9Tb3r4RJ4co-0A1dAbABurYrJNcyGa6ZMmONw==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:56:13 GMT
age: 1841
etag: "e071eb9837a242f41035da077dc6c9b0178d8f9f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash a2e664fa8596d38b4f74c45198a1d034
71daf3c8a99c89c8437645e97c7f14dd10d02d30
8f2cba60d7770cdfb781bfb95c33d9da1b03cab9ed5354b8a79d86e22b489663
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9782993-f413-4e6d-95c2-333fbe657f63.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-length: 10565
x-amzn-requestid: 77d1f33a-cf70-44b9-a589-0cdadbea8d82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelB0FDBoAMFvFQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b53e-2a30ebbb731766f675647a98;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MAguR4SfghsNzQUE6EIpLZ2bnc8yu8-YToIKS9mUCW6NhLLXtBjNew==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:56:14 GMT
age: 1840
etag: "71daf3c8a99c89c8437645e97c7f14dd10d02d30"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F337e2b0e-2813-4291-b863-bbc99409db00.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F337e2b0e-2813-4291-b863-bbc99409db00.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6cd3b0c2f628a973659cdb368dfc64cf
c5097681a4dcff980dc788191356e7e7c21ef3b1
03374811ad045fafd0d6898ef3b1beea094b785e8144f570e2d7e9912773c2a9
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F337e2b0e-2813-4291-b863-bbc99409db00.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10380
x-amzn-requestid: 9027dbc2-08da-449f-9a40-59c58169fa28
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDlG5XIAMFTTw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b549-4dd10f5c123194ff6ce4070f;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:33 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 8wGo-DXHbBkHTL0pga_Er5trO69wmUsUc7oOSz4zJ8yskzOVjF98Zg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 61bc723adb3b1884ed759711e84e13a8.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:59:31 GMT
age: 1643
etag: "c5097681a4dcff980dc788191356e7e7c21ef3b1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1974529bf378941c1b76662e2b283988
cdde9ea46af873e3f838bdb35d69cc0844016311
7c39112dbb1088fe09e010fcd5d85b63a34ac40c7b93e0e9873715ccdf0ac579
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb7f5d706-03b5-40c4-9fef-abddcb255f99.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10420
x-amzn-requestid: 9fbc5930-f615-4548-a683-061be9a67bb6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelDFGPhoAMFVzw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b546-0563eb5f6ba62af65182fc3c;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:30 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: DQSSMaj6KDZSErVdSgL7O7J_LUeBmrsI5lZ3xrI_RcyGH3OYApJVmw==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:59:37 GMT
age: 1637
etag: "cdde9ea46af873e3f838bdb35d69cc0844016311"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7361cd7-8ea8-4a4b-8e5a-6e3ef375eb7e.webp
34.120.237.76200 OK 7.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7361cd7-8ea8-4a4b-8e5a-6e3ef375eb7e.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash c16ee3c480c8ee5b51b7dd88375649ae
885e2070d3ea7973fd978e1e9c247ce248afdbbb
4086d5476b9f3b6c06535fc588784c19a52008178cbdeccbff4c98497bd8e428
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff7361cd7-8ea8-4a4b-8e5a-6e3ef375eb7e.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7185
x-amzn-requestid: 5bbcd9f1-fa0a-4591-a38c-b472e2ef148f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: aelC7EZ4oAMFmvA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6355b545-754aa64e1249811f2c019641;Sampled=0
x-amzn-remapped-date: Sun, 23 Oct 2022 21:42:29 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: qkk3lDqVtpedvxCxGrNyJVjGIW6-VJqpMgBxHjaRatILglKJ96Tfvg==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Sun, 23 Oct 2022 21:46:36 GMT
age: 2418
etag: "885e2070d3ea7973fd978e1e9c247ce248afdbbb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/facebook-c06b9c.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/facebook-c06b9c.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/facebook-c06b9c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-318"
expires: Mon, 23 May 2022 11:13:52 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: 82E6:7313:155B653:162536E:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1670-BMA
x-cache-hits: 1
x-timer: S1653304043.184529,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4ba97906a2b8683fd69f75deb796e85128592f86
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRRp8ZbehQIAAA
x-77-nzt-ray: oIIn1elz9x4
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/logo-775316.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/logo-775316.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/logo-775316.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-86f"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3DEE:E362:22D13D5:2406A2C:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.040784,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 044fad660626a22ff001a772b55a5d5779e70b56
x-accel-expires: @1666564572
server: CDN77-Turbo
x-77-nzt: AblMCRRRMHb/KAAAAA
x-77-nzt-ray: Bcr/H14QNcw
x-cache: HIT
x-age: 40
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/question-mark-circle-7c07a2.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/question-mark-circle-7c07a2.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/question-mark-circle-7c07a2.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-1ce"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 922E:E362:22D13D5:2406A29:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.085082,VS0,VE0
vary: Accept-Encoding
x-fastly-request-id: b5e850c6a78bce872c716edbca3a57ca6ea061dd
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRSAfP3ehQIAAA
x-77-nzt-ray: tNk8mopl1o4
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/video-guides-b94afc.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/video-guides-b94afc.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/video-guides-b94afc.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-509"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3F68:05BB:75D62A:7CC3ED:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.173700,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 98674b35271b98d3e0f4091a7403205d54ee3b7c
x-accel-expires: @1666564365
server: CDN77-Turbo
x-77-nzt: AblMCRQd7bb/9wAAAA
x-77-nzt-ray: yiuWRiNcUs8
x-cache: HIT
x-age: 247
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/header-bg-1d0da8.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/header-bg-1d0da8.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/header-bg-1d0da8.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-132"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 4DD6:1627:11BB8F7:125EEDE:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.188651,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 88fa691dfc1a20096a665a3e4a05734ea2624fd8
x-accel-expires: @1666564422
server: CDN77-Turbo
x-77-nzt: AblMCRQzCX3/vgAAAA
x-77-nzt-ray: 50iLDskbZr4
x-cache: HIT
x-age: 190
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/bundle.js
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/bundle.js
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/bundle.js HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: application/javascript; charset=utf-8
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-3e76c"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 4D6E:4F44:2015229:21361F3:628B6A51
via: 1.1 varnish
age: 125
x-served-by: cache-bma1623-BMA
x-cache-hits: 1
x-timer: S1653304014.044026,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: cedc1134cf950adca3bf6f6fe4272d6944c37a5f
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRRylcfehQIAAA
x-77-nzt-ray: wVfjSEtJUvY
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/knowlede-base-d84150.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/knowlede-base-d84150.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/knowlede-base-d84150.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-332"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 3E14:7313:155B641:162535F:628B6A51
via: 1.1 varnish
age: 162
x-served-by: cache-bma1674-BMA
x-cache-hits: 1
x-timer: S1653304052.518505,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 1bcca9524d519e25e102063b5a92e6850ca36da6
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRSim23ehQIAAA
x-77-nzt-ray: winrwbpfGys
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/plesk-guides-3aaef8.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/plesk-guides-3aaef8.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/plesk-guides-3aaef8.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-8e6"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: 61F4:6C9D:9EF117:A82CAD:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1670-BMA
x-cache-hits: 1
x-timer: S1653304043.120483,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 5e0d2d55a022d8f81888a9eba4d0d4f0e0112b56
x-accel-expires: @1666564422
server: CDN77-Turbo
x-77-nzt: AblMCRT+2iv/vgAAAA
x-77-nzt-ray: +6n9HWFu/bI
x-cache: HIT
x-age: 190
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/forum-4b225c.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/forum-4b225c.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/forum-4b225c.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-1569"
expires: Mon, 23 May 2022 11:14:21 GMT
cache-control: max-age=600
x-proxy-cache: HIT
x-github-request-id: A4E6:8A57:FDB8BC:10748D6:628B6A51
via: 1.1 varnish
age: 153
x-served-by: cache-bma1681-BMA
x-cache-hits: 1
x-timer: S1653304043.121875,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: 4a9e830e6ba39cce9b3f23d4d8dfb0e6c9cc2965
x-accel-expires: @1666564572
server: CDN77-Turbo
x-77-nzt: AblMCRT6/AP/KAAAAA
x-77-nzt-ray: VhvKcoAvGOk
x-cache: HIT
x-age: 40
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2
assets.plesk.com/static/default-website-content/public/img/try-online-demo-6e5f27.svg
185.76.9.24200 OK 0 B URL HTTP/2 assets.plesk.com/static/default-website-content/public/img/try-online-demo-6e5f27.svg
IP 185.76.9.24:0
ASN #60068 Datacamp Limited
GET /static/default-website-content/public/img/try-online-demo-6e5f27.svg HTTP/1.1
Host: assets.plesk.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://onlineservices-mygov-refund.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 23 Oct 2022 22:26:52 GMT
content-type: image/svg+xml
permissions-policy: interest-cohort=()
x-origin-cache: HIT
last-modified: Thu, 16 Sep 2021 06:02:26 GMT
access-control-allow-origin: *
etag: W/"6142ddf2-6e9"
expires: Mon, 23 May 2022 11:14:49 GMT
cache-control: max-age=600
x-proxy-cache: MISS
x-github-request-id: EDB4:4F43:F84E6D:105C344:628B6A51
via: 1.1 varnish
age: 154
x-served-by: cache-bma1632-BMA
x-cache-hits: 1
x-timer: S1653304043.084546,VS0,VE1
vary: Accept-Encoding
x-fastly-request-id: c53de62db144032279389d6fe2f8e663a661c45c
x-accel-expires: @1666564612
server: CDN77-Turbo
x-77-nzt: AblMCRRXLw7ehQIAAA
x-77-nzt-ray: Bz/76W9pkGY
x-cache: REVALIDATED
x-age: 645
x-77-pop: stockholmSE
x-77-cache: HIT
content-encoding: br
X-Firefox-Spdy: h2