45.77.88.79/zehir/z3hir.spc
301 Moved Permanently 162 B URL HTTP/1.1 45.77.88.79/zehir/z3hir.spc
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 4f8e702cc244ec5d4de32740c0ecbd97
3adb1f02d5b6054de0046e367c1d687b6cdf7aff
9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
NIDS Severity Alert suricata medium ET HUNTING Suspicious GET Request for .spc File
GET /zehir/z3hir.spc HTTP/1.1
Host: 45.77.88.79
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: nginx
Content-Length: 162
Location: https://tinypng.com
Strict-Transport-Security: max-age=31536000
X-Frame-Options: SAMEORIGIN
Via: 1.1 google
Date: Fri, 31 Mar 2023 09:27:35 GMT
Cache-Control: public
Content-Type: text/html
Age: 13
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 7af19a5145a4ee99bdf18831bad04bfd
7bdd2a4785b999ef54a2644211d2b2b7190fb8e1
3237bf0111ecdec3615c4d2d49a602f48f800335d0194f52b600bdaefbd63ed0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3237BF0111ECDEC3615C4D2D49A602F48F800335D0194F52B600BDAEFBD63ED0"
Last-Modified: Thu, 30 Mar 2023 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3391
Expires: Fri, 31 Mar 2023 10:24:19 GMT
Date: Fri, 31 Mar 2023 09:27:48 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash cca063332ba9a89eadd62a8dd7f81a9b
d473b2a7a32c964599ff3bac8f98fa578f03d1d1
02fb74c7c695ad99f7f2fd7c02ae2b88e2da1c5db339f883333d9090291931dc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "02FB74C7C695AD99F7F2FD7C02AE2B88E2DA1C5DB339F883333D9090291931DC"
Last-Modified: Wed, 29 Mar 2023 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5450
Expires: Fri, 31 Mar 2023 10:58:38 GMT
Date: Fri, 31 Mar 2023 09:27:48 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 4ad6984a756720fbfff47b37a75513a2
355e35258114452af8b9638985ed9d8ef3bf0aca
43181fccb10652c68cae86e5e32b4e8f426fb5ad49d8125cb99e072cff573cf5
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Backoff, Content-Type, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 31 Mar 2023 08:28:22 GMT
content-type: application/json
age: 3566
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 76218c893040d958ae1c4231cdd2133c
6a7b336dee91d4aec26ace0a5883ecdfac52e68f
d35492b04d16ed00e9e195e7c84c99aa6a2b8a93abeb656baae0918986f0a7e4
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D35492B04D16ED00E9E195E7C84C99AA6A2B8A93ABEB656BAAE0918986F0A7E4"
Last-Modified: Wed, 29 Mar 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3799
Expires: Fri, 31 Mar 2023 10:31:07 GMT
Date: Fri, 31 Mar 2023 09:27:48 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain
IP
File type PEM certificate\012- , ASCII text
Hash e7bace7c1e04d44012e37ddffe36e5d5
3ac8d7c0a9d3e3f0b28b2530c7b8d8407b4042c2
6b4f80f2e95b26f6122ea8dcd0ef8d762299be822c69e839fc37581ca2bcb5f2
GET /chains/remote-settings.content-signature.mozilla.org-2023-04-30-16-53-14.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: wj1UVVJkDYjSzxYMPfUXMfLtqO4gl2L/eLV0nZax6h0WB8+u36GXu782LcPQ/0WtD0XgoDf3sCZCaXw+rq8iJA==
x-amz-request-id: F081M8EMMTVXPEV8
x-amz-server-side-encryption: AES256
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 31 Mar 2023 09:12:07 GMT
last-modified: Sat, 11 Mar 2023 16:53:15 GMT
etag: "e7bace7c1e04d44012e37ddffe36e5d5"
content-type: binary/octet-stream
age: 941
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb250ecd9c9814e9256dcdc64a1335ad
a7ad13212c747dce296836acac5e6c65ef0be094
449b77284ad81f9aa8f1fe54acebf203a9cd3dc570ea9e8ab18cabec448c9af7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "449B77284AD81F9AA8F1FE54ACEBF203A9CD3DC570EA9E8AB18CABEC448C9AF7"
Last-Modified: Wed, 29 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2871
Expires: Fri, 31 Mar 2023 10:15:39 GMT
Date: Fri, 31 Mar 2023 09:27:48 GMT
Connection: keep-alive
tinypng.com/
200 OK 5.9 kB IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (15667), with no line terminators
Hash 2b8b527a3201bb15a586743018509fbb
5ebfb50a0ca2907ed9f6adb664e9a8931fc01205
e9a0e1955423c314e55d9c89a777facd5b6074765bb90fce39840dca3677cbed
GET / HTTP/1.1
Host: tinypng.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
content-encoding: gzip
via: 1.1 google
content-length: 5915
date: Fri, 31 Mar 2023 09:21:56 GMT
age: 352
last-modified: Wed, 01 Mar 2023 19:44:03 GMT
etag: W/"63ffab03-3d41"
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
cache-control: max-age=600,public
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash fb250ecd9c9814e9256dcdc64a1335ad
a7ad13212c747dce296836acac5e6c65ef0be094
449b77284ad81f9aa8f1fe54acebf203a9cd3dc570ea9e8ab18cabec448c9af7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "449B77284AD81F9AA8F1FE54ACEBF203A9CD3DC570EA9E8AB18CABEC448C9AF7"
Last-Modified: Wed, 29 Mar 2023 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2871
Expires: Fri, 31 Mar 2023 10:15:39 GMT
Date: Fri, 31 Mar 2023 09:27:48 GMT
Connection: keep-alive
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 09:27:48 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 934435daf7494aa2525d0556a06916f8
cf46914dedf6c86f7f3cd60acd61e775795c5586
76bab0b78c5a798682460a1cb164c48d67154ed99bb6cee630dd793b31c0501e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5603
Cache-Control: max-age=145504
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:27:48 GMT
Etag: "64262711-1d7"
Expires: Sun, 02 Apr 2023 01:52:52 GMT
Last-Modified: Fri, 31 Mar 2023 00:19:29 GMT
Server: ECAcc (ska/F6AF)
X-Cache: HIT
Content-Length: 471
js.stripe.com/v3/
200 OK 125 kB IP
File type ASCII text, with very long lines (65536), with no line terminators
Size 125 kB (124550 bytes)
Hash 66af412a7c93a4cce24bbebda1a429ad
a8ede66aaf0d0870d97cadca8ac914af487ba590
d26ab71b8fccb252203e804c62142f04e93e7b387c36eefd72499a15005e2b3e
GET /v3/ HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 30 Mar 2023 20:35:18 GMT
etag: "ed997a2348184ecc5728d9c5d352fa30"
cache-control: max-age=60
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 09:27:48 GMT
via: 1.1 varnish
age: 54
x-request-id: 4f4e0bdd-02e5-4c5f-b3d0-64d4203c2032
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 14
vary: Accept-Encoding
timing-allow-origin: *
content-length: 124550
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash ab61862f016dea85f8aa55e59369d905
a5e81f13052b9e9184caf05a9740c345a40d1f22
e0d580c313088d524a5338e63e4acf9f3f3cb45a54f2528c5d1c4915d71b255b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E0D580C313088D524A5338E63E4ACF9F3F3CB45A54F2528C5D1C4915D71B255B"
Last-Modified: Thu, 30 Mar 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8737
Expires: Fri, 31 Mar 2023 11:53:25 GMT
Date: Fri, 31 Mar 2023 09:27:48 GMT
Connection: keep-alive
cdn.carbonads.com/carbon.js?serve=CK7DTKJW&placement=tinypngcom
200 OK 5.2 kB URL HTTP/2 cdn.carbonads.com/carbon.js?serve=CK7DTKJW&placement=tinypngcom
IP
File type ASCII text, with very long lines (14418), with no line terminators
Hash 3f4d2734914326c537c400e28b9a67ba
f890903af3fcc68be3800fb7e7f537f9c38b4169
ee4df237680523f0cbb44b1a4bbbc20eab6e0fe3282d66f529c580904a013245
GET /carbon.js?serve=CK7DTKJW&placement=tinypngcom HTTP/1.1
Host: cdn.carbonads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Fri, 31 Mar 2023 09:27:49 GMT
cache-control: max-age=3600
content-encoding: gzip
content-length: 5158
content-type: application/javascript
last-modified: Tue, 28 Mar 2023 15:07:01 GMT
accept-ranges: bytes
x-amz-id-2: uTwkbWPX0uk9EbewjB6Kvo8PlJ+7Pb1drCnyP4xTtXo8QqCHbLcZYJMPVTrUbC6I8RhQNIIg5ueVX4nxRfCgZw==
x-amz-request-id: R6GERA43YYVPNSR6
etag: "6032ecb6b9e2a9cd8340d0dd535b400d"
x-amz-server-side-encryption: AES256
server: AmazonS3
x-hw: 1680254869.cds026.sk1.hn,1680254869.cds014.sk1.c
access-control-allow-origin: *
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash 0ce5d7a98e8f70385fab78894d990a25
5c70835fc3250cdc7ba6e0a13018496c662b0ad7
16814cd084803a9b244fb1fe8a604eab6c47cf7e0d1089f7d25231e45652adec
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 351
Cache-Control: max-age=168329
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:27:49 GMT
Etag: "642694bf-1d7"
Expires: Sun, 02 Apr 2023 08:13:18 GMT
Last-Modified: Fri, 31 Mar 2023 08:07:27 GMT
Server: ECAcc (ska/F7A5)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Last-Modified, Alert, Backoff, Content-Type, ETag, Cache-Control, Retry-After, Expires, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 31 Mar 2023 09:17:26 GMT
age: 623
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Fri, 31 Mar 2023 08:05:11 GMT
expires: Fri, 31 Mar 2023 10:05:11 GMT
cache-control: public, max-age=7200
age: 4958
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6s11jXevdxrYj020kyXTXg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: XWgS5rg5w0pc2drxatuzYhRXnpA=
Date: Fri, 31 Mar 2023 09:27:49 GMT
Via: 1.1 google
Alt-Svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 66d3c8a2dc7656b819dfe99dd74ef41b
9ac102973657c13264a7a17ad2e3ffc6f4d1f570
23346d5aae2c9440f6a6d9c1d366003dfaefd1cc83212ce033bfdc30e5054cc6
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 7ea999a491ab4009f8658e78af2bfb94
f0cbd3d48c9081acfdeb53adf55135dba5bbe08b
d159c0baaa0869f3e69e16ea482178e6184d68cb6f5ae8a6156955488fd415fe
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:27:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.sectigo.com/
200 OK 471 B IP
Hash 170927b059d00036e47007a075d11723
5e2eec1e9ab600950977ddafa1eb7277fcb4b080
bf72a8afb573a5b964e0bc7ac8ae4c9962feb2b249d2206843c229195e300fae
POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Fri, 31 Mar 2023 09:27:49 GMT
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Last-Modified: Tue, 28 Mar 2023 16:48:27 GMT
Expires: Tue, 04 Apr 2023 16:48:26 GMT
Etag: "5e2eec1e9ab600950977ddafa1eb7277fcb4b080"
Cache-Control: max-age=371436,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb2
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 7b078f064ec6b4ee-OSL
stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-32370906-1&cid=1498982018.1680254869&jid=152714825&gjid=838637816&_gid=3524550.1680254869&_u=YEBAAAAAAAAAAC~&z=229832313
200 OK 1 B URL HTTP/2 stats.g.doubleclick.net/j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-32370906-1&cid=1498982018.1680254869&jid=152714825&gjid=838637816&_gid=3524550.1680254869&_u=YEBAAAAAAAAAAC~&z=229832313
IP
File type very short file (no magic)
Hash c4ca4238a0b923820dcc509a6f75849b
356a192b7913b04c54574d18c28d46e6395428ab
6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b
POST /j/collect?t=dc&aip=1&_r=3&v=1&_v=j99&tid=UA-32370906-1&cid=1498982018.1680254869&jid=152714825&gjid=838637816&_gid=3524550.1680254869&_u=YEBAAAAAAAAAAC~&z=229832313 HTTP/1.1
Host: stats.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 0
Origin: https://tinypng.com
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: https://tinypng.com
strict-transport-security: max-age=10886400; includeSubDomains; preload
date: Fri, 31 Mar 2023 09:27:49 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
access-control-allow-credentials: true
x-content-type-options: nosniff
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 1
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/shim/27299f7da6676b065f217a683a418325
200 OK 48 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/shim/27299f7da6676b065f217a683a418325
IP
Hash cfd28c3d784136b28c3b8022c37ae6f4
6c1b9c5c2f0413436e50b8813521afa0e802db0f
b07a4f98efc220df592c988949880b5905da50448e370e26205d8a428c279b99
GET /api/shim/27299f7da6676b065f217a683a418325 HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 31 Mar 2023 09:27:49 GMT
cache-control: public, max-age=31557600
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: srKPhsPCvesgEM04838bmyBFRnAvB2FrqHgEEqi9MVfwOoXJNLu3Xw==
X-Firefox-Spdy: h2
srv.carbonads.net/ads/CK7DTKJW.json?segment=placement:tinypngcom&callback=_carbonads_go
200 OK 1.2 kB URL HTTP/2 srv.carbonads.net/ads/CK7DTKJW.json?segment=placement:tinypngcom&callback=_carbonads_go
IP
ASN #14061 DIGITALOCEAN-ASN
File type ASCII text, with very long lines (2309), with no line terminators
Hash 9b33d7652d3fa6454299be8aa951478a
793a33297b7e2d7a88bbd18f77c6934b9ee1d184
894888e2674a84bb10a8527d9d1ac695a67f1d1ec12bf46acba02772c7cab83e
GET /ads/CK7DTKJW.json?segment=placement:tinypngcom&callback=_carbonads_go HTTP/1.1
Host: srv.carbonads.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
content-encoding: gzip
content-type: application/javascript; charset=utf-8
server: //srv.buysellads.com
vary: Accept-Encoding
content-length: 1237
date: Fri, 31 Mar 2023 09:27:49 GMT
X-Firefox-Spdy: h2
www.dropbox.com/static/api/2/dropins.js
200 OK 47 kB URL HTTP/2 www.dropbox.com/static/api/2/dropins.js
IP
File type ASCII text, with very long lines (39246)
Hash f1edf20a3b51baaf0f095c24049511bf
ad21bbff1729e61c2ba00742e629b929458a90b3
c94c63070014d1419f02ad5b1f16dd759dcb1a34b444bdcde13d3c031fc7e839
GET /static/api/2/dropins.js HTTP/1.1
Host: www.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: envoy
date: Fri, 31 Mar 2023 09:27:49 GMT
content-type: text/javascript; charset=utf-8
vary: Accept-Encoding
last-modified: Fri, 31 Mar 2023 05:55:38 GMT
x-content-type-options: nosniff
x-cached: HIT
expires: Fri, 31 Mar 2023 10:27:49 GMT
access-control-allow-origin: *
timing-allow-origin: https://www.dropbox.com
content-encoding: br
cache-control: no-cache, no-store
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-dropbox-response-origin: remote
x-dropbox-request-id: a3b676ab5cf04e1e94e048c08b32fcf2
X-Firefox-Spdy: h2
js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
200 OK 122 B URL HTTP/2 js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with no line terminators
Hash 0fb49bf445ceac1dcb1b6c5d284a57a1
8988f3ceef20a494a419e595e8d802a0dc663c7a
5e0d98b9fefc9f5ccf02b5ac4f4e4de3fe727a1ac97a4cd778efd58062afd5e8
GET /v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "93afeeb17bc37e711759584dbfc50d47"
cache-control: max-age=31536000
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
content-security-policy-report-only: base-uri 'none'; connect-src 'self' https://r.stripe.com; default-src 'self'; font-src 'none'; form-action 'none'; frame-src https://m.stripe.network; img-src https://q.stripe.com; media-src 'none'; object-src 'none'; script-src 'self'; style-src 'self'; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 09:27:49 GMT
via: 1.1 varnish
age: 11884944
x-request-id: 0f101695-3c4d-4f5a-b081-392a100bd70a
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 462919
vary: Accept-Encoding
timing-allow-origin: *
content-length: 122
X-Firefox-Spdy: h2
js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
200 OK 332 B URL HTTP/2 js.stripe.com/v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js
IP
File type ASCII text, with very long lines (526)
Hash ada7d17b721f065b91d249c998f2967e
1c686ed2c2218a3889b7d9a9b1acdf851b0bf563
12125f2ad96bb800b475309dcc276eeddffd6db095e29fe1f8514b3f8c7e544a
GET /v3/fingerprinted/js/m-outer-8cb24ab2d649fd36a488d04d8c457933.js HTTP/1.1
Host: js.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/v3/m-outer-93afeeb17bc37e711759584dbfc50d47.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2022 20:03:40 GMT
etag: "f8f6a4584135f737b26927596ce6e0a7"
cache-control: max-age=31536000
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: Fastly
content-encoding: br
accept-ranges: bytes
date: Fri, 31 Mar 2023 09:27:49 GMT
via: 1.1 varnish
age: 11884945
x-request-id: 64ac23d7-437a-4fcc-a87e-c9b42eca0d78
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 375833
vary: Accept-Encoding
timing-allow-origin: *
content-length: 332
X-Firefox-Spdy: h2
m.stripe.network/inner.html
200 OK 527 B URL HTTP/2 m.stripe.network/inner.html
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (930), with no line terminators
Hash e02352ef72e8a9563463c07174b0e50f
7a41613f7eae0819d1a4785eae3617fdbb33b9b3
2275fff71f8cbf1f25a1af7f7bbe5ecbc868ed0b16d345a8ce31770f66fc8ea5
GET /inner.html HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://js.stripe.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/html; charset=utf-8
content-security-policy: base-uri 'none'; connect-src https://m.stripe.network https://m.stripe.com; default-src 'none'; font-src https://m.stripe.network https://fonts.gstatic.com; form-action 'none'; frame-src https://m.stripe.network https://js.stripe.com; img-src https://m.stripe.network https://m.stripe.com https://b.stripecdn.com; script-src https://m.stripe.network 'sha256-e/Jqu4k9Gk1ZCWO6StAsfhF3i7qgIwfuitaD1g9DyvE='; style-src https://m.stripe.network; report-uri https://q.stripe.com/csp-report
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Fri, 31 Mar 2023 09:27:49 GMT
via: 1.1 varnish
age: 33
x-request-id: 769bcdac-6802-48c7-8809-49a1f83ee5a2
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 41
x-timer: S1680254870.930883,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 527
X-Firefox-Spdy: h2
m.stripe.network/out-4.5.42.js
200 OK 16 kB URL HTTP/2 m.stripe.network/out-4.5.42.js
IP
File type Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Hash 0b880c6e7a381ef1f81263cf34c54e79
af46e0111cb22576b07084f4b49be7b41b5fc3ca
115ea79f002c0c2e3405178f66ce92ecb5173e7678f692ab65d6bbf526880b7b
GET /out-4.5.42.js HTTP/1.1
Host: m.stripe.network
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://m.stripe.network/inner.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
cache-control: max-age=300, public
content-type: text/javascript; charset=utf-8
strict-transport-security: max-age=31556926; includeSubDomains; preload
x-content-type-options: nosniff
server: Fastly
content-encoding: gzip
accept-ranges: bytes
date: Fri, 31 Mar 2023 09:27:49 GMT
via: 1.1 varnish
age: 196
x-request-id: 8a7c3e3f-eda5-4993-8861-52c40d9e4194
x-served-by: cache-bma1660-BMA
x-cache: HIT
x-cache-hits: 129
x-timer: S1680254870.966756,VS0,VE0
vary: Accept-Encoding, Origin
content-length: 16031
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/styles.fb3b47b3e9d047987de6.js
200 OK 113 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/styles.fb3b47b3e9d047987de6.js
IP
File type ASCII text, with no line terminators
Hash c4cd0ec66d58e5b1d8600a8535dea587
718a3fc762c0e6d18913ab48573be80ae1982b00
e10f2eaa1030a33de83af183d66b205537c02c311ea9150bf66b43d29b0caf1b
GET /_next/static/chunks/styles.fb3b47b3e9d047987de6.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 113
date: Mon, 04 Jul 2022 21:53:46 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 11 May 2022 18:49:15 GMT
etag: W/"71-180b4742ff8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K4B-U6yDZhhFOVBXuuQ31X1OiAYVRlV8ibApTlzHgx_eizEqtyL3bA==
age: 23283244
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/YdqhoZziZq4JNHSH5PX6i/_ssgManifest.js
200 OK 76 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/YdqhoZziZq4JNHSH5PX6i/_ssgManifest.js
IP
File type ASCII text, with no line terminators
Hash abee47769bf307639ace4945f9cfd4ff
c0a0dc51ee8a2852baf5ff30c33b1478ff302585
653f3e53e89b4f8548ff86c19e92bb3c6b84b6be7485a320b1e00893ed877479
GET /_next/static/YdqhoZziZq4JNHSH5PX6i/_ssgManifest.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 76
date: Mon, 06 Mar 2023 21:59:38 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"4c-186b8d5d190"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: VnZfpUK7nO3l_1kPWQl261F6VO94SwcpH5FLDz86j94NDRnrharLNA==
age: 2114892
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/webpack-7409908a8e7c184fa236.js
200 OK 9.0 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/webpack-7409908a8e7c184fa236.js
IP
Hash ec755a0aaa03a500cde4ab9e37d51ee3
9d35ebdd09e7c0925588c5102babcb7c0e5c01e4
92aaf9f5286f50ff8d4d52f35630e7712c5a1445fe324eb4bd360f4f6dc4cc7d
GET /_next/static/chunks/webpack-7409908a8e7c184fa236.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:51 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"11b5-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: cQvE3YDVNY7e2UJdzT4MuTwBaTgILONTKILkd_MtLYvbvpWO7hsbqw==
age: 3184679
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/kb-1688adce3ff8411c8fa7.js
200 OK 526 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/kb-1688adce3ff8411c8fa7.js
IP
File type ASCII text, with very long lines (526), with no line terminators
Hash 3e68005aadff2182917dcdd2044c80ce
8e50d4d011c46a11c31955afe5d22826a647d0a5
d9ab10d0907b1f7ad65a3ca6d879c7293ec88bb8a76a25c3bdc2d84efa9d5e40
GET /_next/static/chunks/pages/kb-1688adce3ff8411c8fa7.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
content-length: 526
date: Wed, 22 Feb 2023 12:51:10 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"20e-186792377c8"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: xcWGo9tgO08dzL_q3uAUxbX7VZbxsttLkHf6fyJSkDogCd6gP6wBYA==
age: 3184600
X-Firefox-Spdy: h2
ocsp.digicert.com/
200 OK 471 B IP
Hash ad93f53b827b63d2eef1eac9c33d72b0
a83ec004249bda2766a6e3d353084cb531150721
5f19f1e75ee4cbe65fe401344e79d388b03d708b65f65f84f8d9136db61f76dd
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4712
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 31 Mar 2023 09:27:50 GMT
Etag: "64259093-1d7"
Last-Modified: Fri, 31 Mar 2023 08:09:19 GMT
Server: ECAcc (ska/F7A3)
X-Cache: HIT
Content-Length: 471
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash b46c4b207e1889d698720f490efeb062
e8ce8936c9fc6ffdf5791bc675fc0b6b1b23dbe1
428e5c5ddffa73399288e314cd744f1c8abf1cc48d39ad053f2d6d6bd7823035
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135714
Date: Fri, 31 Mar 2023 09:27:50 GMT
Etag: "642603d3-1d7"
Expires: Sat, 01 Apr 2023 23:09:44 GMT
Last-Modified: Thu, 30 Mar 2023 21:49:07 GMT
Server: ECAcc (nya/79EB)
X-Cache: Miss from cloudfront
Via: 1.1 5916f6b8d469d1bee1e905ff13761ebc.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: H62-HdFAVXv-2Uy713n_N00tLLl1uAPrm8rvj93XwpurM8prGnldbg==
Age: 4837
ocsp.r2m01.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.r2m01.amazontrust.com/
IP
Hash b46c4b207e1889d698720f490efeb062
e8ce8936c9fc6ffdf5791bc675fc0b6b1b23dbe1
428e5c5ddffa73399288e314cd744f1c8abf1cc48d39ad053f2d6d6bd7823035
POST / HTTP/1.1
Host: ocsp.r2m01.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135341
Date: Fri, 31 Mar 2023 09:27:50 GMT
Etag: "642603d3-1d7"
Expires: Sat, 01 Apr 2023 23:03:31 GMT
Last-Modified: Thu, 30 Mar 2023 21:49:07 GMT
Server: ECAcc (bsa/EAE4)
X-Cache: Miss from cloudfront
Via: 1.1 c2b101e67ac25a2f0013450d56ecac38.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: iwbDEkj7tqkOX5z8tyHuVwjd36ZIllWdN15X-UCBeyO6d_ZjlIoaoA==
Age: 4464
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11597
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 09:27:50 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 195589ff3c6c50463257f10da16de114
7119aeba010d5c5c224fa544feff6f1761739929
dbb5774621e0eee6f9641f6078a650a78d281019726ade7a52c150f0988cd12b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DBB5774621E0EEE6F9641F6078A650A78D281019726ADE7A52C150F0988CD12B"
Last-Modified: Wed, 29 Mar 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11597
Expires: Fri, 31 Mar 2023 12:41:07 GMT
Date: Fri, 31 Mar 2023 09:27:50 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da174e6ccc9451c5071ba10eeb97f6f6
c38827a9ac1218768839877263e1f2984fbdc454
76da406c8ae8cd6ca8471928f3aec3876aed2c21bc10edc0fbdaef5c100c1030
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff94a70cc-7556-4fae-8603-14d3b253f74c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9859
x-amzn-requestid: c00efe5b-7fdb-445a-a924-75ddd461b72b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: COQPtHizoAMF7-Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-641bfa64-3eb90ae703b78e8a06130540;Sampled=0
x-amzn-remapped-date: Thu, 23 Mar 2023 07:06:12 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: nZfXy-IsoHliuLodEocEZlH-IvmIV9G-noSmSEU1wmuMPfBx3rLJ9w==
via: 1.1 02f1a759e4ec9fab6fc17c080dd851dc.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 00:11:32 GMT
age: 33378
etag: "c38827a9ac1218768839877263e1f2984fbdc454"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ef54a1ed997cc09495edb102ccdf6803
f5637efb37b5eecff77e60e6bcf5f599991f334f
fa76d7a82dc15baf02b207cea874d1332c20a0ebe1eea99929a6f2746608412c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0794d5a0-7014-425b-9ea0-5dca44ddb4dd.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8745
x-amzn-requestid: e1d8dab6-4c15-4752-b528-21854c93a11c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CguJ5Hy5oAMFyAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64235d72-4bd62c8472f7257a155b2a80;Sampled=0
x-amzn-remapped-date: Tue, 28 Mar 2023 21:34:42 GMT
x-amz-cf-pop: SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: YJQbVC3HpHtLrNiTzsUmCOMIWgRik2lIhvpAz0DfmUNSznCXw6ipYw==
via: 1.1 8f251d23da31b683c3c9d6fad6ca944c.cloudfront.net (CloudFront), 1.1 60b744e5b364d04abea9fa6686121242.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 06:47:32 GMT
age: 9618
etag: "f5637efb37b5eecff77e60e6bcf5f599991f334f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg
200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 211d737362f7cbcd8c77cee7d29fa2f5
668d1d80c88082928c6ca01fbf1ccbfcd079f64f
05672d4ab964a706c41d73b51592ca2425983e77544f08198dd2d3a7dcc5b3a1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F29b45e61-5c2e-4b1b-929e-70c72bde0787.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11114
x-amzn-requestid: e9e6a6b5-e6e8-4ca4-9302-a1fc023a38af
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CkypoH5goAMF6Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6424fe3d-63c6c8465407f5dc26e9aced;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 03:13:01 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: HsI--rdD7nPKwY0W7f_eIm1y-oz6BbWkLea2jX-JmxY6_I8ncpD-cg==
via: 1.1 8ead054384c1626556ee4410cad35692.cloudfront.net (CloudFront), 1.1 4c48e9fb20d53d40e9fe273dbdae1098.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 08:59:56 GMT
age: 18596
etag: "668d1d80c88082928c6ca01fbf1ccbfcd079f64f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
200 OK 6.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8a2b8f737604b7983cf686c82599dc73
aa63be93c4cd641f09ce0d5144ef60aab21caed1
78835586bfd170fee7e6f70b2b426ed186f5aeae969459c6dcbf527ba9c0deec
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fccede828-1c24-4287-bb00-f793263370cf.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6380
x-amzn-requestid: 0a129a69-0720-47a0-8b0e-b3200de24204
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUn6E19IAMF9SQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260165-564474a42e79d1dc4eb9558f;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:45 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: 3paQf8BhyRcZoZNox8660Zyzz0WaiQxJuHmDbj4wpo-rgbDdkxrYgQ==
via: 1.1 b5695e36d7fbc522ece27885d73757ae.cloudfront.net (CloudFront), 1.1 b48dedcc55e63f14261aa92cf2d61522.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:47:23 GMT
age: 42027
etag: "aa63be93c4cd641f09ce0d5144ef60aab21caed1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
200 OK 14 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 876e5464aba1639f3b07b07d1d694514
93885a6205be71d16187782b1803f53d5c8538cb
6e2b6b15f462922a9e8260f55cfcd94d488d1a48435458db43270ea3b825d8c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F067b6c49-6e52-4dcc-af72-f7292299f912.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13775
x-amzn-requestid: 43d1a1f3-b189-4fcd-a298-429123d1921b
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnUloF9woAMFU4w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260156-13778451622503253ea252eb;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:38:30 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Hit from cloudfront
x-amz-cf-id: bXA995GxGti4_AzSi9F19ZNvUwm5_ZSBw0BB0lRIfNHcmX7Ajt6bSg==
via: 1.1 8731d2a1a7d15f67b588bf58f652f9f0.cloudfront.net (CloudFront), 1.1 331202b5b8aab67acbf389883133f256.cloudfront.net (CloudFront), 1.1 google
date: Thu, 30 Mar 2023 21:46:36 GMT
age: 42074
etag: "93885a6205be71d16187782b1803f53d5c8538cb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg
200 OK 9.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1688ae550e5e9181de2448a9cade8a26
a46eb0cd75f46778dc802b648f7c391ce801c700
e717e6e64c928571506bc6d19e3d9ce19bea3292f01618a6d9ddbbaffe65ffd1
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d531a5-067e-452b-8349-d9f2a461ba4a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9055
x-amzn-requestid: aad4ce89-7ff3-484a-b644-ecda89a2ff16
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: CnVW5EPJoAMFfFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-64260292-41fb44737ee678bc7c93b7ff;Sampled=0;lineage=69363f46:0
x-amzn-remapped-date: Thu, 30 Mar 2023 21:43:46 GMT
x-amz-cf-pop: HIO52-P1, SEA19-C1
x-cache: Miss from cloudfront
x-amz-cf-id: aCuRurszjWr-BePwsnPfCqMpfO2GaREtRvvFGiiywmfsuAGFRRK9sQ==
via: 1.1 99db15345b0e5e7ad9c267ae999b8cf4.cloudfront.net (CloudFront), 1.1 ef6538ee7be7b17c84d06edb0f4c0a1a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 31 Mar 2023 08:20:16 GMT
age: 4054
etag: "a46eb0cd75f46778dc802b648f7c391ce801c700"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
m.stripe.com/6
200 OK 156 B IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 6c4b3b9d240955894cb09f2fc292642b
2c46ef20ce7d795d4e36a503085605b6b9ac206b
d2734fbde07bab9fabd7c279c234e46519b26fca318d243877423bd0d6f22b8d
POST /6 HTTP/1.1
Host: m.stripe.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 2240
Origin: https://m.stripe.network
Connection: keep-alive
Referer: https://m.stripe.network/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 31 Mar 2023 09:27:50 GMT
content-length: 156
set-cookie: m=1afa3b1f-b33b-4686-b46e-0fa54338746ea6880f;Expires=Sun, 30-Mar-2025 09:27:50 GMT;Secure;HttpOnly; SameSite=None
x-content-type-options: nosniff
x-stripe-server-envoy-start-time-us: 1680254870722913
x-stripe-server-envoy-upstream-service-time-ms: 2
x-stripe-bg-intended-route-color: blue
x-stripe-client-envoy-start-time-us: 1680254870722647
access-control-allow-origin: https://m.stripe.network
access-control-allow-credentials: true
access-control-allow-headers: Content-Type
strict-transport-security: max-age=31556926; includeSubDomains; preload
content-type: application/json;charset=utf-8
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
200 OK 2.4 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (5449)
Hash 00d0350be7f060b664ff8998231d489f
d643c7cbf63514f9a92362b2e2cebdd77abdba78
6f24a8d737dd2b621dfebe49c5499efa88f68a2186ef0fe770cb84c6d98cba59
GET /landing?preferLocal=true HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Fri, 31 Mar 2023 09:27:49 GMT
x-powered-by: Next.js
etag: "168a-M5+xtPHcNnqeQI6vuY7LNFuF9Sg"
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: -p5QeC832FEWxs62CYDyx5sssV48hC11-N2jo5ayChIH9PpVYgquOg==
X-Firefox-Spdy: h2
graphql.production.groovehq.com/graphql
200 OK 14 kB URL HTTP/2 graphql.production.groovehq.com/graphql
IP
File type JSON data\012- , Unicode text, UTF-8 text, with very long lines (13945), with no line terminators
Hash be82e124d99ccdbea8e7869909014e96
77aa742314d72502fda2cc7b9201e3e7bc7ac9d5
71ac06b2da8039f72c41e0e3a091c91db57be565bc4473d20b9b11249c7fed01
POST /graphql HTTP/1.1
Host: graphql.production.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/
content-type: application/json
x-groove-graphql: widget
x-request-id: 93a12941-15a9-4f12-b23c-ba188f6e7b8c
Origin: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
Content-Length: 305
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Fri, 31 Mar 2023 09:27:51 GMT
content-type: application/json; charset=utf-8
content-length: 13998
x-powered-by: Express
x-request-id: 93a12941-15a9-4f12-b23c-ba188f6e7b8c
access-control-allow-origin: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
vary: Origin
access-control-allow-credentials: true
access-control-expose-headers: x-runtime
x-runtime: 137
etag: W/"36ae-d6p0IxTXJQL9osx7kgHj57x6ydU"
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/500-latin.woff2
200 OK 14 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/500-latin.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13868, version 1.0\012- data
Hash eaad6ed2140476b792c9bc7d6ff87792
63bba8639684a1e578d244464a26055a8ef7465e
ccf52de0e6857554412f6b158f03c2d735c3a5a9958f56340942e20bcf5c0952
GET /fonts/ibmplexsans/modern/500-latin.woff2 HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/fonts
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 13868
date: Fri, 31 Mar 2023 09:27:51 GMT
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 06 Mar 2023 21:28:34 GMT
etag: W/"362c-186b8d37fd0"
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: WMfkpeTAmH6ZGPcPQvlNSpHqeVfiCS3Ik1eUlud3U33Gtz8XQYB0Vw==
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/400-latin.woff2
200 OK 13 kB URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/fonts/ibmplexsans/modern/400-latin.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 13044, version 1.0\012- data
Hash c3a65ab369c0fce2b38f5ae05566203b
a60838a2e0c6c942b678169211f9223720997540
d40ffbc9035e897e3e4848f7e74cacb481ac28bb136b3538849dc16166aeeab4
GET /fonts/ibmplexsans/modern/400-latin.woff2 HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/fonts
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: font/woff2
content-length: 13044
date: Fri, 31 Mar 2023 09:27:51 GMT
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Mon, 06 Mar 2023 21:28:34 GMT
etag: W/"32f4-186b8d37fd0"
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: ZJCwjF6jKVWcQ3qC_Kd2Ev5TK2XwOTfxoakf_02uQfv9YlwHq3RcUA==
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/c8b05f54.4177b0364110102e1d80.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/c8b05f54.4177b0364110102e1d80.js
IP
GET /_next/static/chunks/c8b05f54.4177b0364110102e1d80.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:28 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"13e29-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8mQlV4YH1r7IFgjHLRzj7incJW_YL1gmsYAjeRnmKTCt6eiWA55Q9A==
age: 3184702
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/8f6c8215.67d1cbbeb63ad4fd2cc6.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/8f6c8215.67d1cbbeb63ad4fd2cc6.js
IP
GET /_next/static/chunks/8f6c8215.67d1cbbeb63ad4fd2cc6.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:28 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"1a38-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: dicg-iIBRtc8nt54h7KKxWjMFKuME95rDMVB9QQ50WFtuuPWZ77A8A==
age: 3184702
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/e1660153ed51b257617d8ab98ec31fe1c43a2bbb.f868ab1f416017603e40.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/e1660153ed51b257617d8ab98ec31fe1c43a2bbb.f868ab1f416017603e40.js
IP
GET /_next/static/chunks/e1660153ed51b257617d8ab98ec31fe1c43a2bbb.f868ab1f416017603e40.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"338c1-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: qt4Pn9typQ_V65pLBYYEDq2rqEcpZmUOgIntJCR6SNLHoXKWqIKanA==
age: 3184678
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/_app-fb120dae492e1286aa14.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/_app-fb120dae492e1286aa14.js
IP
GET /_next/static/chunks/pages/_app-fb120dae492e1286aa14.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:41 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"5a70-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: za5WOQsQP3kis4DrgFleyF8i8a8F7WKK00NR5S17FRxMd-6UsrAm5Q==
age: 3184689
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/commons.97128cde355ecc75f767.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/commons.97128cde355ecc75f767.js
IP
GET /_next/static/chunks/commons.97128cde355ecc75f767.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 23 May 2022 03:44:18 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 11 May 2022 18:49:15 GMT
etag: W/"b6fc-180b4742ff8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 6__JseZ_JRdw0iJGMM4-xMCvAwxnsxdDwt3TpYR1x6850eF0USkD3w==
age: 26977412
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/main-2c4b1d1bd29c81b531d6.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/main-2c4b1d1bd29c81b531d6.js
IP
GET /_next/static/chunks/main-2c4b1d1bd29c81b531d6.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Thu, 10 Nov 2022 00:42:31 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Thu, 27 Oct 2022 20:56:20 GMT
etag: W/"4d5e-1841b3b4520"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 63UcE_Xtk8P9qjKNezLY-8vy4xkOD12B8BftvXezeeC0Ch6pclNKDg==
age: 12213919
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/landing-02155a0345a57bba1ae8.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/pages/landing-02155a0345a57bba1ae8.js
IP
GET /_next/static/chunks/pages/landing-02155a0345a57bba1ae8.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:52 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"d93-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: R5u1pU1LBAT8yEpkSyiAiNUxDoyCzj9dXR5qOMA9Xuakdzzix77l-Q==
age: 3184678
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/YdqhoZziZq4JNHSH5PX6i/_buildManifest.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/YdqhoZziZq4JNHSH5PX6i/_buildManifest.js
IP
GET /_next/static/YdqhoZziZq4JNHSH5PX6i/_buildManifest.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:42:59 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"d68-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 7asJFv8pOkKMfK3eK1nJodd37Rs0ShLKjcl771x3M-y5biNgW4MgLw==
age: 2115891
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9fd8c5e27f99fce506e2e5d3b010ddba7982b0f2.7fb5a86b2706698b7a7e.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9fd8c5e27f99fce506e2e5d3b010ddba7982b0f2.7fb5a86b2706698b7a7e.js
IP
GET /_next/static/chunks/9fd8c5e27f99fce506e2e5d3b010ddba7982b0f2.7fb5a86b2706698b7a7e.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:51 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"1b629-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: UCJVeeID7Si35n3aYiM4y_2u-GrdkAtYgGCgGFks8DxseA6ys78wHQ==
age: 3184678
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9f53a5e1838f3d4edd0881ed4356c1a4045f0c7f.175278f709b52ba552af.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/9f53a5e1838f3d4edd0881ed4356c1a4045f0c7f.175278f709b52ba552af.js
IP
GET /_next/static/chunks/9f53a5e1838f3d4edd0881ed4356c1a4045f0c7f.175278f709b52ba552af.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:28 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"34095-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: jTZD-J_aLkS44pnDOP6pedKGL8FnUnixPwC1eCQ2LJu9icWKkyE0Ig==
age: 3184702
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/framework.34bf141b0d86c4565ece.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/framework.34bf141b0d86c4565ece.js
IP
GET /_next/static/chunks/framework.34bf141b0d86c4565ece.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Sun, 03 Jul 2022 00:28:42 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 11 May 2022 18:49:15 GMT
etag: W/"1fc95-180b4742ff8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X-kYK2Qfus34D6l0TzFfqMZptfXjrHTo1lITEYt1moAjI7q3-hzRjA==
age: 23446748
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/6b859938.1ce9891448442a263ac4.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/6b859938.1ce9891448442a263ac4.js
IP
GET /_next/static/chunks/6b859938.1ce9891448442a263ac4.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Tue, 03 Jan 2023 07:34:49 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Thu, 27 Oct 2022 20:56:20 GMT
etag: W/"112c4-1841b3b4520"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: X1NcGZhx6O1KQewrJIASBrjQh8BlEOZPud4O5B3Nz_K-dedkbLW9mA==
age: 7523580
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/51b1440a0a665627a6ad39500567b3ecdc733cf3.ab0be441c438669d1771.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/51b1440a0a665627a6ad39500567b3ecdc733cf3.ab0be441c438669d1771.js
IP
GET /_next/static/chunks/51b1440a0a665627a6ad39500567b3ecdc733cf3.ab0be441c438669d1771.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:42:59 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"e240-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kyCF-UC5bjNqScx_E1qzEvwumYpS5Bd9b8YpX6Bk9NKuSxIT2PE-Ow==
age: 2115891
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/ecdc3a18010e3f0f77a82f9f4c597ff1caa989ad.0069769f0aea34bacf33.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/ecdc3a18010e3f0f77a82f9f4c597ff1caa989ad.0069769f0aea34bacf33.js
IP
GET /_next/static/chunks/ecdc3a18010e3f0f77a82f9f4c597ff1caa989ad.0069769f0aea34bacf33.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:51 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"27b4-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hQeevf5I0_uyyZkwm0fqIod8Qs-p381VWA4VnAquMgZtVLUrN2g3CA==
age: 3184678
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/8aa1b6689c9902f4ace2ba2b4a90b3959c03588e.3e0361c5c0ad732d228a.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/8aa1b6689c9902f4ace2ba2b4a90b3959c03588e.3e0361c5c0ad732d228a.js
IP
GET /_next/static/chunks/8aa1b6689c9902f4ace2ba2b4a90b3959c03588e.3e0361c5c0ad732d228a.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Mon, 06 Mar 2023 21:43:00 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Mon, 06 Mar 2023 21:31:06 GMT
etag: W/"421b-186b8d5d190"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: H14fiwaAxuGDJmMjKXPh8kZDWhhnrw3BFToc6jxzXmcQrH3UweCqRg==
age: 2115890
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/loader
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/api/loader
IP
GET /api/loader HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://tinypng.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Fri, 31 Mar 2023 09:27:49 GMT
cache-control: no-store, must-revalidate
vary: Accept-Encoding
content-encoding: gzip
x-cache: Miss from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: egcv88vmpbg-BRJGGdtnCc1AVj0XW8BiXoF_VvBKloMnt3NLUK82Pg==
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/css/styles.a6068002.chunk.css
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/css/styles.a6068002.chunk.css
IP
GET /_next/static/css/styles.a6068002.chunk.css HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: text/css; charset=UTF-8
date: Mon, 28 Nov 2022 22:15:17 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Thu, 27 Oct 2022 20:56:20 GMT
etag: W/"2b30-1841b3b4520"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: hgc-Leto-Zj2uiZLZztZ5e5DqY_YA6vwYZicmqQeP3xCV9pdrf5u3w==
age: 10581153
X-Firefox-Spdy: h2
11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/f0212d6ee1b3c9ea0d1377f576927b73d63306d0.b0ea5ba55910f1de9291.js
200 OK 0 B URL HTTP/2 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/_next/static/chunks/f0212d6ee1b3c9ea0d1377f576927b73d63306d0.b0ea5ba55910f1de9291.js
IP
GET /_next/static/chunks/f0212d6ee1b3c9ea0d1377f576927b73d63306d0.b0ea5ba55910f1de9291.js HTTP/1.1
Host: 11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://11447344-c647-4855-9011-1d04bc920c8d.widget.cluster.groovehq.com/landing?preferLocal=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
date: Wed, 22 Feb 2023 12:49:28 GMT
cache-control: public, max-age=31536000, immutable
accept-ranges: bytes
last-modified: Wed, 22 Feb 2023 12:40:13 GMT
etag: W/"62e7-186792377c8"
content-encoding: gzip
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 aac54e3fe9825ce24d51e0204433c2c0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 8FI-KGNXOGfu5JphBuSIm-pfActZn5p5FMLOqTzWtnHlf8L0hFEN1A==
age: 3184702
X-Firefox-Spdy: h2
45.77.88.79
192.229.221.95
23.36.76.226
0.0.0.0