Report - secure.hearstmagazines.co.uk/solo/account/confirmemail

Report Overview

Submitted URL
secure.hearstmagazines.co.uk/solo/account/confirmemail
IP
80.69.27.143
ASN
#15830 Telecitygroup International Limited
Submitted
2023-01-24 16:48:33
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
0

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	66 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
ocsp.globalsign.com	2075	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	1.9 kB	104.18.20.226
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
secure.hearstmagazines.co.uk	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	8.9 kB	1.9 MB	80.69.27.143
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.9 kB	93.184.220.29
az416426.vo.msecnd.net	1935	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	388 B	23 kB	152.199.19.161
use.fontawesome.com	942	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	4.4 kB	172.64.133.15
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
dc.services.visualstudio.com	894	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.0 kB	13.69.106.217

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (12)

	URL	Size	First Seen	Last Seen
	secure.hearstmagazines.co.uk/Solo/Scripts/js.cookie.js	4.6 kB	2023-03-13	2023-03-13
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/js.cookie.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash b08cf920f099df4e7f9451f88ec30200 1271e1f68e651cb1e21878a5477c0af3479b2878 910a28013caa7b71c3ef79694196b039551fea6735c61019515c3796806845a8 Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap.js	78 kB	2023-03-10	2024-03-12
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 13:10:46 Last Seen2024-03-12 05:21:16 Times Seen53 Hash 342407180c3fd1b27dbd5f0e1c099621 74cecc6c2b438990f7b1d63832526365ffe14227 4f9ef836f25359cf8f6a7f210269d75dcd1e6458aa291a7bc50deccf942214e9 Loading...

	secure.hearstmagazines.co.uk/solo/account/confirmemail	259 B	2023-03-13	2023-03-13
Pretty URL secure.hearstmagazines.co.uk/solo/account/confirmemail IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash 35abe3ef11acc925036c762bb4cc1418 332e5d0740b11c525f224e37785bd14833e59425 d8b346081c2d2ce25b1b46cdef4babba254431866d1f67e0cf85e216c7ed3076 Loading...

	az416426.vo.msecnd.net/scripts/a/ai.0.js	97 kB	2023-03-07	2024-04-19
Pretty URL az416426.vo.msecnd.net/scripts/a/ai.0.js IP 152.199.19.161 ASN #15133 EDGECAST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:49 Last Seen2024-04-19 10:13:27 Times Seen2983 Hash 1dd63de72cf1f702324245441844be13 58a8bdcdcb398af7db424357df70df18e7b30e9d 5201c813c37a4168cc5c20c701d4391fd0a55625f97eb9f263a74fb52b52fd0e Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/modernizr-2.8.3.js	53 kB	2023-03-13	2023-03-13
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/modernizr-2.8.3.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash 3af7152ea688b108b1a247657cf22563 50494da0be38a17cc67231759a433e411c2a9608 cfb5b82719c2f511e4a2e28dcbae339dd4bb5a2fc49aeec68a257b74e6450c25 Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap-select.js	119 kB	2023-03-13	2023-03-13
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap-select.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash fb1b7e1e80451bc3b5db0e5417b94b79 61067d455f999e6b015ea5f46f2956ba9c6ebdef eff8b4a597d625d2daafde7edb521e869817e9e8cf2f2f4697a59526a7dc4027 Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/jquery-2.2.4.js	267 kB	2023-03-13	2023-03-13
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/jquery-2.2.4.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash 460c6eee5dd5acd9f9eb17be6e406fc5 c460d0b5987b78d0c9418c69df28b87e4eb970cb e18468de638f5714e89d86a9951ed8a9cb4ea28032ce140353bb711bb383449d Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/jquery-3.6.0.js	300 kB	2023-03-07	2024-04-07
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/jquery-3.6.0.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:54 Last Seen2024-04-07 02:02:40 Times Seen171 Hash 8a750b5e10f34fe9be3d2b152dd12aa4 4c7631e6cb74b97f42f146067ffc24c47b329763 29223fdf1c42ac27b10aea5dcd02513f507a22a83ed8d03e5f6bb7f1c41daaaf Loading...

	secure.hearstmagazines.co.uk/solo/account/confirmemail	1.9 kB	2023-03-13	2023-03-13
Pretty URL secure.hearstmagazines.co.uk/solo/account/confirmemail IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash 8d1fb23ee049c71900984bfea62cec93 54c6dd4577a2912beaf28333a0bfcb7a1b6b7a87 24ffa2221bd491560512b8cc2c4735515e18b2b649c176174f61ce47bef8bfd1 Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/jquery.matchHeight.js	12 kB	2023-03-07	2024-04-06
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/jquery.matchHeight.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:54:40 Last Seen2024-04-06 18:20:48 Times Seen54 Hash 4470aee60f50b217a9f168b1dcce6b3e f3994c591f1d7d9cf9f38f91510a98b7a274820c d00241f728343565923c10a0db25633adaef16fe24bf722dc0a461b3436a38ad Loading...

	secure.hearstmagazines.co.uk/Solo/Scripts/respond.js	8.8 kB	2023-03-12	2024-04-10
Pretty URL secure.hearstmagazines.co.uk/Solo/Scripts/respond.js IP 80.69.27.143 ASN #15830 Telecitygroup International Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 10:44:23 Last Seen2024-04-10 02:27:56 Times Seen24 Hash 8266ac0c642c08f9c20d60b9ec2e3ee5 7afa6c34611fb10dc55a8c11d9be4132e3078a9e e817975ec8ac62bed97dbd584a9f96fcb87c905e76cf75de4ceb2effc6d47242 Loading...

	use.fontawesome.com/c868c5f381.js	9.5 kB	2023-03-13	2023-03-13
Pretty URL use.fontawesome.com/c868c5f381.js IP 172.64.133.15 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 06:49:35 Last Seen2023-03-13 06:49:48 Times Seen1 Hash 794b0b1f02f769a718aedb38578f8f80 f5a59144252607451dc66bfba7e5e9f39b2124e4 079a5dbbca33ac63136497563f6c670e8a2d77daece67d3b3d49a87c219403fb Loading...

HTTP Transactions (45)

	URL	IP	Response	Size
	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash f5e46725831d8d722872bf68d752f4c5 cf37793a1b73e3f84fe6c37fb27382c83b49dbc0 0582b6180687dd95c7fd728f1b9db4495b807151e309b608ad203d69708f9da6 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "0582B6180687DD95C7FD728F1B9DB4495B807151E309B608AD203D69708F9DA6" Last-Modified: Tue, 24 Jan 2023 00:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=6825 Expires: Tue, 24 Jan 2023 18:42:07 GMT Date: Tue, 24 Jan 2023 16:48:22 GMT Connection: keep-alive`

	ocsp.globalsign.com/gsgccr3dvtlsca2020	104.18.20.226	200 OK	1.4 kB
URL HTTP/1.1 ocsp.globalsign.com/gsgccr3dvtlsca2020 IP 104.18.20.226:0 ASN #13335 CLOUDFLARENET File type data Size 1.4 kB (1414 bytes) Hash 9e8a47cb5193dcc832f73cf828a1a475 8266896328d01b552e978ebdba18e62354d284f6 fea65daf6f8836617ef67f40e77787afb96cf2a5ec9202c3aa834d5e29b3b4d6 HTTP Headers `POST /gsgccr3dvtlsca2020 HTTP/1.1 Host: ocsp.globalsign.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 79 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Type: application/ocsp-response Content-Length: 1414 Connection: keep-alive Expires: Sat, 28 Jan 2023 13:45:52 GMT ETag: "8266896328d01b552e978ebdba18e62354d284f6" Last-Modified: Tue, 24 Jan 2023 13:45:53 GMT Cache-Control: public, no-transform, must-revalidate, s-maxage=3600 CF-Cache-Status: HIT Age: 814 Accept-Ranges: bytes Vary: Accept-Encoding Server: cloudflare CF-RAY: 78ea419bd902b4fd-OSL`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 0be6cec5607bb65c06dbadd33456aec1 9d13129e936eb5fc82e403931884cdc8c6e6ab92 cb028034340b709ece65e45e8fc1a26a64dd85926beaa542f308d3f1d5ee2c84 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "CB028034340B709ECE65E45E8FC1A26A64DD85926BEAA542F308D3F1D5EE2C84" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=2471 Expires: Tue, 24 Jan 2023 17:29:33 GMT Date: Tue, 24 Jan 2023 16:48:22 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash 6cd4f1da1215c7473500807c185f2449 b14db0c67cf1f5faf85648ed8f94baf2dd03808b 9750518efd869da5ff74ba65a196445bd4340c909157cc1a420f62c1d07224a0 HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "9750518EFD869DA5FF74BA65A196445BD4340C909157CC1A420F62C1D07224A0" Last-Modified: Mon, 23 Jan 2023 16:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=10186 Expires: Tue, 24 Jan 2023 19:38:08 GMT Date: Tue, 24 Jan 2023 16:48:22 GMT Connection: keep-alive`

	firefox.settings.services.mozilla.com/v1/	35.241.9.150	200 OK	939 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/ IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size 939 B (939 bytes) Hash dcd75ca6daca51c5e39d431468511793 07f76d3bf23d65c9110d810fa71a994e39e085d3 73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459 HTTP Headers `GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Alert, Retry-After, Content-Type, Content-Length, Backoff content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 939 via: 1.1 google date: Tue, 24 Jan 2023 16:35:07 GMT content-type: application/json age: 795 cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2`

	content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain	34.160.144.191	200 OK	5.3 kB
URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain IP 34.160.144.191:0 ASN #15169 GOOGLE File type PEM certificate\012- , ASCII text Size 5.3 kB (5348 bytes) Hash 7b922915ebf1fa3639b333f994c74f24 144a3f80b98fd0652d4614f24cf6cbbee40f8938 adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c HTTP Headers `GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK x-amz-id-2: M7QE3Fhbvy9TyvNCRIyk38BI7IPL8YivQIJJhtwrhxc4io/SeoX9T2t/IB8Ez+/Lisfseg+H/fA= x-amz-request-id: QQ52439ANQKR594J content-disposition: attachment accept-ranges: bytes server: AmazonS3 content-length: 5348 via: 1.1 google date: Tue, 24 Jan 2023 16:48:14 GMT age: 8 last-modified: Mon, 09 Jan 2023 18:04:21 GMT etag: "7b922915ebf1fa3639b333f994c74f24" content-type: binary/octet-stream cache-control: public,max-age=3600 alt-svc: clear X-Firefox-Spdy: h2`

	contile.services.mozilla.com/v1/tiles	34.117.237.239	200 OK	12 B
URL HTTP/2 contile.services.mozilla.com/v1/tiles IP 34.117.237.239:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with no line terminators Size 12 B (12 bytes) Hash 23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 HTTP Headers `GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` `HTTP/2 200 OK server: nginx date: Tue, 24 Jan 2023 16:48:22 GMT content-type: application/json content-length: 12 access-control-expose-headers: content-type access-control-allow-credentials: true vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2`

	secure.hearstmagazines.co.uk/solo/account/confirmemail	80.69.27.143	200 OK	9.5 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/solo/account/confirmemail IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with CRLF, LF line terminators Size 9.5 kB (9540 bytes) Hash 1f3003df0b8a64bb6ea11ad223ecdc8f 5fb11aa93b67a1b7eeb3fa23bb5a9749c5f10f10 68078a13b6431bb70466a55561d209c295b30c4a1e622f9fb9a46a1a1055662d HTTP Headers `GET /solo/account/confirmemail HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1` `HTTP/1.1 200 OK Cache-Control: private Content-Type: text/html; charset=utf-8 Request-Context: appId=cid-v1:4e721f2c-eb4f-4aeb-95dd-f18505b77521 x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 9540 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Content/bootstrap.css	80.69.27.143	200 OK	21 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Content/bootstrap.css IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with very long lines (386), with CRLF line terminators Size 21 kB (21338 bytes) Hash 45a7c5c37a49ff1aeb33459996195515 2bc5e2a5f18d6dd0b8a8b3bcc19f6d0e0f9e49ec 4e6076bb24a6b8059833c1b4ae0d6aeb670353799cfedaabed570aaeb155c42f HTTP Headers `GET /Solo/Content/bootstrap.css HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: text/css Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:46 GMT Accept-Ranges: bytes ETag: "0fbdd562b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 21338 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Content/bootstrap-select.css	80.69.27.143	200 OK	2.4 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Content/bootstrap-select.css IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with CRLF, LF line terminators Size 2.4 kB (2423 bytes) Hash 27dea22a4c8ad9128f6823be550d6934 8d0842f56593a1fba35062fe4a1c0d480d0ee10d 0f6a82a2571af75f4cf6570b82f3a5206404729d085d21d4ad76230d51cec7e8 HTTP Headers `GET /Solo/Content/bootstrap-select.css HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: text/css Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:46 GMT Accept-Ranges: bytes ETag: "0fbdd562b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 2423 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash d156173b8fee0d5f0d2210ecd01333f4 1626d15ffdbaa61dfff45a47d9784b3af75f89b2 63b3ffd14c84d96a2acd11d241ff97715345e1457a21578d7589095e1ba6ee65 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3542 Cache-Control: max-age=159451 Content-Type: application/ocsp-response Date: Tue, 24 Jan 2023 16:48:22 GMT Etag: "63cfc9db-117" Expires: Thu, 26 Jan 2023 13:05:53 GMT Last-Modified: Tue, 24 Jan 2023 12:06:51 GMT Server: ECS (ska/F714) X-Cache: HIT Content-Length: 279`

	secure.hearstmagazines.co.uk/Solo/Content/bootstrap-year-calendar.css	80.69.27.143	200 OK	1.4 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Content/bootstrap-year-calendar.css IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Size 1.4 kB (1441 bytes) Hash bf21326fcf9782f8e30070f0a8bb0f2b 56e66bcd434598efbe66a5df88e4eebdaa966c89 e44b2f1ce58c733756b3ed1731845d614f64e8e464c89d3aafceb102f5d0e3bf HTTP Headers `GET /Solo/Content/bootstrap-year-calendar.css HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: text/css Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:46 GMT Accept-Ranges: bytes ETag: "0fbdd562b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 1441 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Content/site.css	80.69.27.143	200 OK	6.9 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Content/site.css IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type assembler source, Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Size 6.9 kB (6856 bytes) Hash cbc6a97b54e456df0d1c471878d76926 bc5a4403713eca89684250f297b088177a310438 64b217d0a6a797d874bf53ee29c3f501f4e068a0be1ec4b26e46522451387a55 HTTP Headers `GET /Solo/Content/site.css HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: text/css Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:46 GMT Accept-Ranges: bytes ETag: "0fbdd562b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 6856 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/assets/css/HSTB.css	80.69.27.143	200 OK	3.5 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/assets/css/HSTB.css IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Size 3.5 kB (3495 bytes) Hash ad43790d882d7ce8d30a081bf0170629 720c34c3b0315b0bae975f7ca097cea5a286c15d 65403ea159254d6a6379e274e30ea8117e082c3cf64ade8c4a448a7b681d3a96 HTTP Headers `GET /Solo/assets/css/HSTB.css HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: text/css Last-Modified: Sun, 22 Jan 2023 06:32:46 GMT Accept-Ranges: bytes ETag: "0fbdd562b2ed91:0" x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 3495 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/modernizr-2.8.3.js	80.69.27.143	200 OK	16 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/modernizr-2.8.3.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type HTML document text\012- HTML document, ASCII text, with CRLF line terminators Size 16 kB (15852 bytes) Hash 79c792111d9688377bb2669f0efda40b 365370a924915fde5ceb1733f7402be07ce7cc1b 2ce7d7b8b736aa0c624f3c3f87d3a4b8b71dea6b4b50ab8f6b8c0073c4ca9b23 HTTP Headers `GET /Solo/Scripts/modernizr-2.8.3.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 15852 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/jquery.matchHeight.js	80.69.27.143	200 OK	12 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/jquery.matchHeight.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with CRLF line terminators Size 12 kB (12164 bytes) Hash 4470aee60f50b217a9f168b1dcce6b3e f3994c591f1d7d9cf9f38f91510a98b7a274820c d00241f728343565923c10a0db25633adaef16fe24bf722dc0a461b3436a38ad HTTP Headers `GET /Solo/Scripts/jquery.matchHeight.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 12164 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/js.cookie.js	80.69.27.143	200 OK	4.6 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/js.cookie.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators Size 4.6 kB (4627 bytes) Hash 90a3748205fcb704f19097ca583f739d 93ab0339d9f550381d0ef110a5e916a29f54afd3 453c798263bc2f10bf33d5c489beb51556b9e839f5949c035dd8ed593e55c75f HTTP Headers `GET /Solo/Scripts/js.cookie.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 4627 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap-select.js	80.69.27.143	200 OK	27 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap-select.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with very long lines (315), with CRLF line terminators Size 27 kB (27139 bytes) Hash 7d5f98e2b70a32384daeca36181c934a d181d486fbe8ed5c1dae4fa37f02150337a30e05 c377b01a2ed0682993fceccfe2f374287ed5509c58ff90eb6dd00c4df8c0cc52 HTTP Headers `GET /Solo/Scripts/bootstrap-select.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:21 GMT Content-Length: 27139 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/respond.js	80.69.27.143	200 OK	3.0 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/respond.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type HTML document, ASCII text, with very long lines (341), with CRLF line terminators Size 3.0 kB (2959 bytes) Hash 801f82e1cb5ac40ae142050129fe54fc 6fa339568f6494360cb0064a8d0b186bda5c841f 3106575066b188f4837291d368f587dacd2e73d6dd80a51ff198a32d4f3bcb5f HTTP Headers `GET /Solo/Scripts/respond.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:23 GMT Content-Length: 2959 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/jquery-2.2.4.js	80.69.27.143	200 OK	78 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/jquery-2.2.4.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with CRLF line terminators Size 78 kB (77506 bytes) Hash 22069df49c329254411e96fe5f024618 66ae4bda2eb25d25cb07ad614eee269392cad2bf b376e412346886b8397707a2faa882aeb8a61152e15382f5b02e6c0a3c84d38d HTTP Headers `GET /Solo/Scripts/jquery-2.2.4.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Content-Encoding: gzip Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" Vary: Accept-Encoding x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 77506 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Scripts/jquery-3.6.0.js	80.69.27.143	200 OK	300 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/jquery-3.6.0.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with CRLF line terminators Size 300 kB (299461 bytes) Hash 8a750b5e10f34fe9be3d2b152dd12aa4 4c7631e6cb74b97f42f146067ffc24c47b329763 29223fdf1c42ac27b10aea5dcd02513f507a22a83ed8d03e5f6bb7f1c41daaaf HTTP Headers `GET /Solo/Scripts/jquery-3.6.0.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 299461 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	ocsp.digicert.com/	93.184.220.29	200 OK	279 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 279 B (279 bytes) Hash d156173b8fee0d5f0d2210ecd01333f4 1626d15ffdbaa61dfff45a47d9784b3af75f89b2 63b3ffd14c84d96a2acd11d241ff97715345e1457a21578d7589095e1ba6ee65 HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 3543 Cache-Control: max-age=159451 Content-Type: application/ocsp-response Date: Tue, 24 Jan 2023 16:48:23 GMT Etag: "63cfc9db-117" Expires: Thu, 26 Jan 2023 13:05:54 GMT Last-Modified: Tue, 24 Jan 2023 12:06:51 GMT Server: ECS (ska/F714) X-Cache: HIT Content-Length: 279`

	firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US	35.241.9.150	200 OK	329 B
URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP 35.241.9.150:0 ASN #15169 GOOGLE File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size 329 B (329 bytes) Hash 0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 HTTP Headers `GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK access-control-allow-origin: * access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; strict-transport-security: max-age=31536000 x-content-type-options: nosniff content-length: 329 via: 1.1 google date: Tue, 24 Jan 2023 15:48:59 GMT age: 3564 last-modified: Fri, 25 Mar 2022 17:45:46 GMT etag: "1648230346554" content-type: application/json cache-control: max-age=3600,public alt-svc: clear X-Firefox-Spdy: h2

	secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap.js	80.69.27.143	200 OK	78 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Scripts/bootstrap.js IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type ASCII text, with CRLF line terminators Size 78 kB (78064 bytes) Hash 342407180c3fd1b27dbd5f0e1c099621 74cecc6c2b438990f7b1d63832526365ffe14227 4f9ef836f25359cf8f6a7f210269d75dcd1e6458aa291a7bc50deccf942214e9 HTTP Headers `GET /Solo/Scripts/bootstrap.js HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: application/javascript Last-Modified: Sun, 22 Jan 2023 06:32:48 GMT Accept-Ranges: bytes ETag: "028f582b2ed91:0" x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 78064 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/solo/uploads/images/hearst_logo.png	80.69.27.143	200 OK	19 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/solo/uploads/images/hearst_logo.png IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type PNG image data, 600 x 280, 8-bit/color RGBA, non-interlaced\012- data Size 19 kB (19421 bytes) Hash 011ddffa6594ca28d5e48e7f5e03a62f 18000c797e20222c739dbcccb4ccd6994bdba3b3 7fca61b4f72c584d9a6f5f7c02dc5631c1bbd74889200fb7c2195b91b7f6ca9d HTTP Headers `GET /solo/uploads/images/hearst_logo.png HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: image/png Last-Modified: Mon, 29 Jun 2020 11:27:28 GMT Accept-Ranges: bytes ETag: "050194584ed61:0" x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:23 GMT Content-Length: 19421 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	az416426.vo.msecnd.net/scripts/a/ai.0.js	152.199.19.161	200 OK	22 kB
URL HTTP/2 az416426.vo.msecnd.net/scripts/a/ai.0.js IP 152.199.19.161:0 ASN #15133 EDGECAST File type ASCII text, with very long lines (65536), with no line terminators Size 22 kB (22495 bytes) Hash affc2b93a9fc23bbba65931b19b1e12c a175097d2aa7ffb4b54193f197f296ab57967308 1c383d5958a56ed0858150b049c83da4d4b31a4ac05314ae9a4f623933a3df25 HTTP Headers `GET /scripts/a/ai.0.js HTTP/1.1 Host: az416426.vo.msecnd.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK content-encoding: gzip access-control-allow-origin: * access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Length,Date,Transfer-Encoding age: 1412 cache-control: public, max-age=1800 content-md5: HdY95yzx9wIyQkVEGES+Ew== content-type: application/x-javascript date: Tue, 24 Jan 2023 16:48:23 GMT etag: 0x8D8E461DA1A5889 expires: Tue, 24 Jan 2023 17:18:23 GMT last-modified: Thu, 11 Mar 2021 07:46:59 GMT server: ECAcc (ska/F773) vary: Accept-Encoding x-cache: HIT x-ms-blob-type: BlockBlob x-ms-lease-status: unlocked x-ms-meta-lastmodified: 2020-10-01 19:31:04 x-ms-request-id: 5729a510-601e-00b0-0f10-30eecf000000 x-ms-version: 2009-09-19 content-length: 22495 X-Firefox-Spdy: h2

	secure.hearstmagazines.co.uk/solo/Uploads/Images/contact.png	80.69.27.143	200 OK	1.5 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/solo/Uploads/Images/contact.png IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data Size 1.5 kB (1451 bytes) Hash e35ce164afc2630d416f22f8c48ae89b fbdd5e7df5bc0cc74ac59442e33928c78f466ed5 d2510870e68b1413f0b43a00dafd6b1ee00f01285a101905c8cc49c2b8d3f345 HTTP Headers `GET /solo/Uploads/Images/contact.png HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/Solo/assets/css/HSTB.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: image/png Last-Modified: Tue, 04 May 2021 10:19:07 GMT Accept-Ranges: bytes ETag: "f8375eace40d71:0" x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:23 GMT Content-Length: 1451 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/Solo/Content/Images/Page.svg	80.69.27.143	200 OK	864 B
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Content/Images/Page.svg IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document, ASCII text, with very long lines (864), with no line terminators Size 864 B (864 bytes) Hash 277c9c2395efa4ff36ca12e538c3436b dcd246b964bf06c507de99bad2d0c9cb57cae68c 09d1af9547504226c6cc57c805edcce170dc3d39a53f4a6c3725e7438425dbb9 HTTP Headers `GET /Solo/Content/Images/Page.svg HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/Solo/Content/site.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: image/svg+xml Last-Modified: Sun, 22 Jan 2023 06:32:46 GMT Accept-Ranges: bytes ETag: "0fbdd562b2ed91:0" x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 864 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	secure.hearstmagazines.co.uk/solo/Uploads/Images/renew.png	80.69.27.143	200 OK	1.2 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/solo/Uploads/Images/renew.png IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced\012- data Size 1.2 kB (1178 bytes) Hash 33f3b22abd7bad51aaa6515f05ce4415 544e70d7200c11791927f8afdb397001ea497eb9 679a3e9cd414693b10942fb0930b2232362663426db7710084895a6f23b8bca4 HTTP Headers `GET /solo/Uploads/Images/renew.png HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/Solo/assets/css/HSTB.css Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: image/png Last-Modified: Tue, 04 May 2021 10:20:17 GMT Accept-Ranges: bytes ETag: "d285a614cf40d71:0" x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:23 GMT Content-Length: 1178 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	ocsp.digicert.com/	93.184.220.29	200 OK	471 B
URL HTTP/1.1 ocsp.digicert.com/ IP 93.184.220.29:0 ASN #15133 EDGECAST File type data Size 471 B (471 bytes) Hash a0016981f79a7a1df58a5c1fbefb7cd5 d3a37f6798941d94312f5d1eb0aa31fe55228cd3 209ecb3765937d0eee4bc85fd639e407f1e68772c9e5bb3dbbab65658d6ebb0c HTTP Headers `POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Accept-Ranges: bytes Age: 5010 Cache-Control: 'max-age=158059' Content-Type: application/ocsp-response Date: Tue, 24 Jan 2023 16:48:23 GMT Last-Modified: Tue, 24 Jan 2023 15:24:53 GMT Server: ECS (ska/F714) X-Cache: HIT Content-Length: 471`

	secure.hearstmagazines.co.uk/favicon.ico	80.69.27.143	404 Not Found	1.2 kB
URL HTTP/1.1 secure.hearstmagazines.co.uk/favicon.ico IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with CRLF line terminators Size 1.2 kB (1245 bytes) Hash 5343c1a8b203c162a3bf3870d9f50fd4 04b5b886c20d88b57eea6d8ff882624a4ac1e51d dc1d54dab6ec8c00f70137927504e4f222c8395f10760b6beecfcfa94e08249f HTTP Headers `GET /favicon.ico HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Cookie: ai_user=N1q12\|2023-01-24T16:48:21.594Z Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 404 Not Found Content-Type: text/html x-cds-node: PRD-N1 Date: Tue, 24 Jan 2023 16:48:23 GMT Content-Length: 1245 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	use.fontawesome.com/c868c5f381.js	172.64.133.15	200 OK	3.5 kB
URL HTTP/2 use.fontawesome.com/c868c5f381.js IP 172.64.133.15:0 ASN #13335 CLOUDFLARENET File type Unicode text, UTF-8 text, with very long lines (9239) Size 3.5 kB (3508 bytes) Hash 0ef578ae14a52c628829944ecd489f45 3d60ad75a0d90d0e8a1c0c682f505afa056ae4e9 98be77c50bb28e6e7786ca8d64882fab8666840d7711e0325a6596fa6b63fe78 HTTP Headers `GET /c868c5f381.js HTTP/1.1 Host: use.fontawesome.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/ Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site` HTTP/2 200 OK date: Tue, 24 Jan 2023 16:48:22 GMT content-type: text/javascript x-amz-id-2: ZYe24NTrxc9LoU1+EYIl5AtbTA4Y4mzZy4eJjq7YrwZoYY4l60pXE/gmwhi8v4dbwjYk7kWIUYU= x-amz-request-id: 0HVFACTKKY5J2AP6 last-modified: Thu, 01 Jul 2021 14:52:22 GMT etag: W/"794b0b1f02f769a718aedb38578f8f80" cache-control: max-age=1800 cf-cache-status: HIT age: 422 report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vejc1AyTCvDSCdbNVVRxXXjw9%2F1eeo%2BLUdZTF50loJ8mSHjd9D1U9xmSvk%2BqBZr2fArDhYOKs8E6yGcv36dfitotYD3oheQHuGGHOSzVvUfnr20UHZKbFvyZVIxvhxUj9gVuzCED"}],"group":"cf-nel","max_age":604800} nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800} vary: Accept-Encoding server: cloudflare cf-ray: 78ea419f9def23c3-LHR content-encoding: br alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400 X-Firefox-Spdy: h2

	secure.hearstmagazines.co.uk/Solo/Uploads/Images/SoloBackground.jpg	80.69.27.143	200 OK	1.3 MB
URL HTTP/1.1 secure.hearstmagazines.co.uk/Solo/Uploads/Images/SoloBackground.jpg IP 80.69.27.143:0 ASN #15830 Telecitygroup International Limited File type JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 1900x838, components 3\012- data Size 1.3 MB (1298472 bytes) Hash 2acc9afcffe0d6481afbfff5293c2df8 edda7658321b8aca5a1ae3a9677ce981ff541248 246dfe12600de8204ba8ee75436a356ee01a2d132b06ccd2df1fb415b8894bba HTTP Headers `GET /Solo/Uploads/Images/SoloBackground.jpg HTTP/1.1 Host: secure.hearstmagazines.co.uk User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/solo/account/confirmemail Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin` `HTTP/1.1 200 OK Content-Type: image/jpeg Last-Modified: Fri, 17 Jul 2020 12:22:17 GMT Accept-Ranges: bytes ETag: "19287be9345cd61:0" x-cds-node: PRD-N2 Date: Tue, 24 Jan 2023 16:48:22 GMT Content-Length: 1298472 X-Frame-Options: SAMEORIGIN X-Content-Type-Options: nosniff X-XSS-Protection: 1; mode=block Strict-Transport-Security: max-age=31536000; includeSubDomains`

	dc.services.visualstudio.com/v2/track	13.69.106.217	200 OK	0 B
URL HTTP/2 dc.services.visualstudio.com/v2/track IP 13.69.106.217:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type Size 0 B (0 bytes) Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 HTTP Headers OPTIONS /v2/track HTTP/1.1 Host: dc.services.visualstudio.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Access-Control-Request-Method: POST Access-Control-Request-Headers: content-type,sdk-context Referer: https://secure.hearstmagazines.co.uk/ Origin: https://secure.hearstmagazines.co.uk Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site `HTTP/2 200 OK access-control-allow-methods: POST access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Sdk-Context access-control-allow-origin: * access-control-max-age: 3600 x-content-type-options: nosniff date: Tue, 24 Jan 2023 16:48:24 GMT content-length: 0 X-Firefox-Spdy: h2`

	dc.services.visualstudio.com/v2/track	13.69.106.217	439 No Reason Phrase	219 B
URL HTTP/2 dc.services.visualstudio.com/v2/track IP 13.69.106.217:0 ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK File type JSON data\012- , ASCII text, with no line terminators Size 219 B (219 bytes) Hash 74b171ed8f68dc6ce9fc11df6b11254f 576e42cc568ecf976d8efa96d219c67acbfc42ae d5ceddbe5595a66a56cfe4d00b0664881ef41685c610fecc1d2086366876379f HTTP Headers `POST /v2/track HTTP/1.1 Host: dc.services.visualstudio.com User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-type: application/json Sdk-Context: appId Content-Length: 1413 Origin: https://secure.hearstmagazines.co.uk Connection: keep-alive Referer: https://secure.hearstmagazines.co.uk/ Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site TE: trailers` `HTTP/2 439 No Reason Phrase content-type: application/json; charset=utf-8 x-ms-session-id: 336EA30E-5BE9-47EB-8E2D-F3A3D63A25B6 strict-transport-security: max-age=31536000 access-control-allow-headers: Origin, X-Requested-With, Content-Name, Content-Type, Accept, Cache-Control, Sdk-Context access-control-allow-origin: * access-control-max-age: 3600 x-content-type-options: nosniff date: Tue, 24 Jan 2023 16:48:24 GMT content-length: 219 X-Firefox-Spdy: h2`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7754 Expires: Tue, 24 Jan 2023 18:57:38 GMT Date: Tue, 24 Jan 2023 16:48:24 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7754 Expires: Tue, 24 Jan 2023 18:57:38 GMT Date: Tue, 24 Jan 2023 16:48:24 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7754 Expires: Tue, 24 Jan 2023 18:57:38 GMT Date: Tue, 24 Jan 2023 16:48:24 GMT Connection: keep-alive`

	r3.o.lencr.org/	23.36.77.32	200 OK	503 B
URL HTTP/1.1 r3.o.lencr.org/ IP 23.36.77.32:0 ASN #20940 Akamai International B.V. File type data Size 503 B (503 bytes) Hash d5528af26e629a9bfbf0c421146b921f 1e4f99245d551384bedfe9b59b5f9905127d87bf 989830d93a90c30051b948a26ce403fb4370587ed3407d8d77ad0ad9cc28eb7a HTTP Headers `POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache` `HTTP/1.1 200 OK Server: nginx Content-Type: application/ocsp-response Content-Length: 503 ETag: "989830D93A90C30051B948A26CE403FB4370587ED3407D8D77AD0AD9CC28EB7A" Last-Modified: Sun, 22 Jan 2023 17:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=7754 Expires: Tue, 24 Jan 2023 18:57:38 GMT Date: Tue, 24 Jan 2023 16:48:24 GMT Connection: keep-alive`

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg	34.120.237.76	200 OK	8.3 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 8.3 kB (8308 bytes) Hash 91b2e12a39dc4f63b9d52e8800cce1f2 42d5b4b4a091778d98c351f0002d8656449d0243 d4dbc79e3383e83f861ccf8cde3e78ba427a66cd3fa99c17e23ec935867de4ad HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67efee66-d227-4c28-89a3-8fd7f382049b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 8308 x-amzn-requestid: 1988d3b3-5e1a-41fd-83f5-092eddb9185f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNys5GDKoAMFdbA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefe52-2349fde60b7db8a34c996717;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:26 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: 5_1j_Z6HZ3DSGFPAACJduM5D9eAqMQT42GgI61x8dHAmPQtUexpEYQ== via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 21:59:05 GMT age: 67759 etag: "42d5b4b4a091778d98c351f0002d8656449d0243" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4185640-fb99-4630-b465-c5251587ba55.jpeg	34.120.237.76	200 OK	5.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4185640-fb99-4630-b465-c5251587ba55.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 5.6 kB (5557 bytes) Hash 538f5b944f86cfc1b68f06187558841b 5b5619ecb739f2605b0c77f3e6608249399cb77c b5e459d4af69cc97c4aaf810654f3d583670e470c82d12a5e8f59c97c97cda11 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4185640-fb99-4630-b465-c5251587ba55.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 5557 x-amzn-requestid: 8573b326-0255-45d0-8e93-eaf4bc0d420f x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNzFUHThIAMFoBw= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefeee-16c3abdd257b834525087045;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:02 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 8BWgeONZO6KHihZoI0pfCbH3HXDC3AAlN--ABwaRm0T9V4HP9ogx0g== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 22:04:30 GMT age: 67434 etag: "5b5619ecb739f2605b0c77f3e6608249399cb77c" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b12041d-fdaa-483d-b290-d584ffb6ea13.jpeg	34.120.237.76	200 OK	7.6 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b12041d-fdaa-483d-b290-d584ffb6ea13.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 7.6 kB (7642 bytes) Hash deb690b8f5503bf4bcf424e58ddb6b8c eb96120190e3a5c286ac5ec51ee8b163540377fd c762b17d3e43d773966490d1186ebc352a78d47781c77a4f048e32fee9732b7d HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8b12041d-fdaa-483d-b290-d584ffb6ea13.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 7642 x-amzn-requestid: 3f4482cf-98a5-420e-abe7-17fd2d214da0 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNyxIF3aIAMFWoQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefe6d-0c1838dc7b4ab4650d54ee56;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:53 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RI2PzIKXk_H09T20cGoqTCC1WdRp3S5N6TOBX_lIcEk8wYaCIfCPJw== via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 22:08:04 GMT age: 67220 etag: "eb96120190e3a5c286ac5ec51ee8b163540377fd" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12758 bytes) Hash 7458f7a9b2070055df6f1d496794e43e 0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9 373097662c419eef9f4a19ce9f3bcead70f6eafbf0acf44806685eece43ce251 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F09ccbe5e-77b1-4d6d-98f5-a477f3861d8c.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12758 x-amzn-requestid: c3540562-8c62-4957-9528-7ae952daebaa x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: e9gf1E87oAMFpsQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63c87acb-49fd3f78275937e24d23fca3;Sampled=0 x-amzn-remapped-date: Wed, 18 Jan 2023 23:03:39 GMT x-amz-cf-pop: SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: c5YOTqrEv9RLv_lKsrC377yost8auxYRPLubBFGjIWtnbueiGMJYGw== via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 324a68a6c25ee50d774953f3e15a611c.cloudfront.net (CloudFront), 1.1 google date: Tue, 24 Jan 2023 04:36:21 GMT age: 43923 etag: "0f5d2a6d846f4f8f85dd7e8089e643cacc57d8a9" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg	34.120.237.76	200 OK	12 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 12 kB (12102 bytes) Hash c29ea116f715297b757c81dab8d1b5f3 6aae9d763dec58740cdfbfe46f6c69986b81414d 09afde8ec60dd1471e0ce33ed11ae4542b6813ad02e2abf037629a8ae5cfe240 HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F987410c8-c934-4399-b586-efb1a5111e3b.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12102 x-amzn-requestid: 54ba881d-c54b-49fa-a5b3-20b8d80f2a35 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNyrNG1AIAMFxTg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefe47-1acbf1c34a4dbfdd506d3383;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:38:15 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: Ies4Oa0AiQaj9sEkpSZ-WZHMiRVYMV6IeLWDWq_G69cwBYi-RuKLGQ== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 fda3b2797d2719576f6b916583a28e52.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 22:08:04 GMT age: 67220 etag: "6aae9d763dec58740cdfbfe46f6c69986b81414d" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

	img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg	34.120.237.76	200 OK	13 kB
URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg IP 34.120.237.76:0 ASN #15169 GOOGLE File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size 13 kB (12907 bytes) Hash 16d9c0855b43a6c2351cb450187948e2 7208e2e4beb739ae9aded4a207d48cb3572fad5f 92b0423b09aa653ec7326d0aa05dbe137ba452ef21f118c7eb6499a8ccecc8fd HTTP Headers GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F67794d4b-c63e-47af-b530-92b195f8e718.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site HTTP/2 200 OK server: nginx content-length: 12907 x-amzn-requestid: c9f9a619-f0e1-4bc4-af2a-796b16aa1250 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: fNzFqF-lIAMFXIg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-63cefef0-625e4bab03baa979605f13f8;Sampled=0 x-amzn-remapped-date: Mon, 23 Jan 2023 21:41:04 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: kPx_xJAOsrYKWFcHe6JlWILe3jbBtqFuOphGjZALwy4xJC3F2vE2Xw== via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 760139201585481b26f947c5f776103a.cloudfront.net (CloudFront), 1.1 google date: Mon, 23 Jan 2023 21:57:33 GMT age: 67851 etag: "7208e2e4beb739ae9aded4a207d48cb3572fad5f" content-type: image/jpeg cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (12)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML