| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hashdfb72f04bd7a4410640c0543bb4bd402 7c63b7e220b337b6a4f39864e11d6aa9e26c38ac b7f7a4d355ed3b847a5e28f16030d5cbc715d47326aea20f292cd76dcaf59794
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B7F7A4D355ED3B847A5E28F16030D5CBC715D47326AEA20F292CD76DCAF59794"
Last-Modified: Mon, 21 Nov 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3985
Expires: Tue, 22 Nov 2022 18:03:17 GMT
Date: Tue, 22 Nov 2022 16:56:52 GMT
Connection: keep-alive
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hashb59d95402dfb464c176610284ba13f65 1a6c62fb0d48654dd204b66161bb03fefe60f71a 40cfd59b890ec5a3570603d28d90bd7e5c506babd52c2ece93e09f1c7b2a6880
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5934
Cache-Control: max-age=155597
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:52 GMT
Etag: "637ca4f3-1d7"
Expires: Thu, 24 Nov 2022 12:10:09 GMT
Last-Modified: Tue, 22 Nov 2022 10:31:15 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash054ff0d1a0a43f7cb1d78dbd34e27f99 3caf54f3de1d6a8c6f6454083f8b8e7dec77db54 fcdcef8306ae31f20c366489e1f88aa40b08f154d25d45f4055c4f8cdef47634
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FCDCEF8306AE31F20C366489E1F88AA40B08F154D25D45F4055C4F8CDEF47634"
Last-Modified: Mon, 21 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18181
Expires: Tue, 22 Nov 2022 21:59:53 GMT
Date: Tue, 22 Nov 2022 16:56:52 GMT
Connection: keep-alive
|
|
| firefox.settings.services.mozilla.com/v1/ | 34.102.187.140 | 200 OK | 939 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/ IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (939), with no line terminators Hash4d7e4eed097b9c4e5d509419f1cfc85a 290bb3d428a7c6330e2e3d73a952b16f820896c8 0dc9ca0f57af15adcd416035e92794711434e3d53a1feff21d8481d6d500986c
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Content-Length, Alert, Backoff, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 22 Nov 2022 16:09:23 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2849
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain | 34.160.144.191 | 200 OK | 5.3 kB |
URL HTTP/2content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain IP34.160.144.191:0
File typePEM certificate\012- , ASCII text Hash9ebddc2b260d081ebbefee47c037cb28 492bad62a7ca6a74738921ef5ae6f0be5edebf39 74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: aH0cn3EbcvxVbR2otNBwsQ791XMHhaPiMqGEvVe1Fy6iyjPe71sp9NzRUkKcvcXx4QdvHp7MVlc=
x-amz-request-id: CBJ27ZGW7TCBBA8X
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 22 Nov 2022 16:42:38 GMT
age: 854
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| contile.services.mozilla.com/v1/tiles | 34.117.237.239 | 200 OK | 12 B |
URL HTTP/2contile.services.mozilla.com/v1/tiles IP34.117.237.239:0
File typeJSON data\012- , ASCII text, with no line terminators Hash23e88fb7b99543fb33315b29b1fad9d6 a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 22 Nov 2022 16:56:52 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US | 34.102.187.140 | 200 OK | 329 B |
URL HTTP/2firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US IP34.102.187.140:0
File typeJSON data\012- , ASCII text, with very long lines (329), with no line terminators Hash0333b0655111aa68de771adfcc4db243 63f295a144ac87a7c8e23417626724eeca68a7eb 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: ETag, Content-Type, Content-Length, Last-Modified, Alert, Backoff, Pragma, Expires, Retry-After, Cache-Control
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 22 Nov 2022 16:11:10 GMT
cache-control: public,max-age=3600
age: 2742
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash8a181d95550cfdf3b1fc4deb71631e40 37866f7293c41fbfb817e321754cae5c5bf59f93 6aa3d2763181cc48d2ad0ce7d227f3cb3324045c3f7858ccdbae675768dcec55
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3737
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:52 GMT
Last-Modified: Tue, 22 Nov 2022 15:54:35 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash42fedb1a86b94c6b3b99fa650fd664e4 d1b2afb56e53a525a0eaeb99aea6338df256db49 1b5d3eb1928da6304b8a8ee0084390c521ad5c35521054c3961dbe316b914aa1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5547
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:52 GMT
Last-Modified: Tue, 22 Nov 2022 15:24:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
|
|
| code.jquery.com/jquery-3.1.1.min.js | 69.16.175.10 | 200 OK | 30 kB |
URL HTTP/2code.jquery.com/jquery-3.1.1.min.js IP69.16.175.10:0
File typeASCII text, with very long lines (32030) Hashf7a4a283c6a5130b43ce8de3b7842078 ef243edbb67f9e50f8589885e4541f6c919ea8d7 aee9e5b2534ced87fe1e02a1a9e661468ba548e02edacbe9b68b3b247607dc4e
GET /jquery-3.1.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:52 GMT
content-encoding: gzip
content-length: 30070
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-152b5"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669136212.dop015.sk1.t,1669136212.cds214.sk1.hn,1669136212.cds010.sk1.c
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.3.1.js | 69.16.175.10 | 200 OK | 80 kB |
URL HTTP/2code.jquery.com/jquery-3.3.1.js IP69.16.175.10:0
Hash9fd458b477c45f28862c10eeee99263f bcfceda34c540b9957758de619b288362188bb0b ef82ed7916ef7c6cb059d150c8b1e102c57e0e174ea6a1dfbcd0c286c465ba0f
GET /jquery-3.3.1.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:52 GMT
content-encoding: gzip
content-length: 80268
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-42587"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669136212.dop216.sk1.t,1669136212.cds214.sk1.hn,1669136212.cds214.sk1.c
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.2.1.slim.min.js | 69.16.175.10 | 200 OK | 24 kB |
URL HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP69.16.175.10:0
File typeASCII text, with very long lines (32012) Hash30f5157a965bc792a83e9bacfe265f03 8330886371fe27f3cbac509e0ac9712207574c66 4d12cab1f84ec2ac780bc8e0d865d9c61025be579c78d6532d76f0574d17fca0
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:52 GMT
content-encoding: gzip
content-length: 23856
content-type: application/javascript; charset=utf-8
last-modified: Fri, 12 Aug 2022 13:47:02 GMT
accept-ranges: bytes
server: nginx
etag: W/"62f659d6-10fdd"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1669136212.dop216.sk1.t,1669136212.cds214.sk1.hn,1669136212.cds235.sk1.c
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 471 B |
IP93.184.220.29:0
Hash48837e190b315f81883286074365e595 57cf0d565bb7bcf16699a1f1ae762e33e8ac6bfa 585293779f2c9036da208b204d53478fd60193903f05c46d6f4c02c2b66a6224
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6549
Cache-Control: max-age=146127
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:52 GMT
Etag: "637c7d8e-1d7"
Expires: Thu, 24 Nov 2022 09:32:19 GMT
Last-Modified: Tue, 22 Nov 2022 07:43:10 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hasheb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe7b253ce455c3557e435962e495342b3 c7955c71b2d7b115a492bf4c4a41651b760cba3e a1575ab2011d3229e13860f98ce9d27d37d3a0a0f0ba5134dec021f0a646bb5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hasheb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js | 142.250.74.106 | 200 OK | 30 kB |
URL HTTP/2ajax.googleapis.com/ajax/libs/jquery/2.2.4/jquery.min.js IP142.250.74.106:0
File typeASCII text, with very long lines (32065) Hash6d973c8b7e2439d958e09c0a1ab9fe50 05ae0830200c20b9a2dfd5a825adc400481a60fb f3c122dc227e829ed96b2a754296809201bd78abbad7ba50ef5079654e1cc894
GET /ajax/libs/jquery/2.2.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 30028
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 22 Nov 2022 14:02:59 GMT
expires: Wed, 22 Nov 2023 14:02:59 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 10434
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.digicert.com/ | 93.184.220.29 | 200 OK | 278 B |
IP93.184.220.29:0
Hash42fedb1a86b94c6b3b99fa650fd664e4 d1b2afb56e53a525a0eaeb99aea6338df256db49 1b5d3eb1928da6304b8a8ee0084390c521ad5c35521054c3961dbe316b914aa1
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5548
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Last-Modified: Tue, 22 Nov 2022 15:24:25 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 278
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hasheb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hasheb526d16fc4a304286cf261dc5d8abea 0aed946d28abc21cb11657e6f864b561a0c68fba 551520b0344d58c1b4ddc9dfb452da2acf43080871a7037f4530eec48fb86362
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| push.services.mozilla.com/ | 52.37.79.227 | 101 Switching Protocols | 0 B |
URL HTTP/1.1push.services.mozilla.com/ IP52.37.79.227:0
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 6a3K7YXjCxiFGZXle563iA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oE6a7sOc0VAnUrLh7t1HBpJVWtw=
|
|
| storage.googleapis.com/gthyjuhtgbvfdcsxaz.appspot.com/hover.css | 216.58.207.208 | 200 OK | 115 kB |
URL HTTP/2storage.googleapis.com/gthyjuhtgbvfdcsxaz.appspot.com/hover.css IP216.58.207.208:0
Size115 kB (114759 bytes) Hashb3f5b2b98f444f3d9b1224d52d917557 5c70ce71427c15b9d8ee7acca3c3d94cdeb1dc14 635a5fb9d32a92006d8c54c70c1f0bc2223349ec8707cd8ad01f773f84136d27
GET /gthyjuhtgbvfdcsxaz.appspot.com/hover.css HTTP/1.1
Host: storage.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdsDCCnezB151T1Lk9K104D5_uCj01ornjjAtO57fSvOdau3ov7Ay3cZAOh8CspZA7yP978zHHI434QfcFLLyQLREyvHRYNc
x-goog-generation: 1642024642368325
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 114759
x-goog-hash: crc32c=YhS9Ug==, md5=s/WyuY9ETz2bEiTVLZF1Vw==
x-goog-storage-class: STANDARD
accept-ranges: bytes
content-length: 114759
server: UploadServer
date: Tue, 22 Nov 2022 16:56:53 GMT
expires: Tue, 22 Nov 2022 17:56:53 GMT
cache-control: public, max-age=3600
last-modified: Wed, 12 Jan 2022 21:57:22 GMT
etag: "b3f5b2b98f444f3d9b1224d52d917557"
content-type: text/css
age: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ocsp.pki.goog/gts1c3 | 142.250.74.35 | 200 OK | 472 B |
IP142.250.74.35:0
Hashe7b253ce455c3557e435962e495342b3 c7955c71b2d7b115a492bf4c4a41651b760cba3e a1575ab2011d3229e13860f98ce9d27d37d3a0a0f0ba5134dec021f0a646bb5f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 22 Nov 2022 16:56:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 | 172.64.202.28 | 200 OK | 22 kB |
URL HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 IP172.64.202.28:0
File typeASCII text, with very long lines (26500) Hash2963a878c82b689790c2e420b2e23479 99be8c489cde10d8961adf98a3147f69c69beefd 727d706de6399708022401e84140ed03609fe0eeb82f332c8694a21ab70612bb
GET /releases/v5.15.4/css/free-v4-shims.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Origin: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"76f34b71fc9fb641507ff6a822cc07f5"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 76cca2ef798b9dc955bb151bf3bff218.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: vFDbFzfxCeqbFyo0JosczyWkT0IB6CN8TXfhC9dOjRUFIb3HO7q5nw==
age: 15779
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=qszz3EfJXFSNMJaQqh6nP7OolEtaFm%2BRi02fVNki1y6FTwCKRtxpXVmZ09cA%2F833rWvM%2BX4tlnQMr9VUYuFBN%2FCZskE%2BK7%2FJkUZoJ96zmQf4Qf4%2F9WMTwYqAEufxyddJzwPvhGv%2Bvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e333755f737713-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17345
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 16:56:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17345
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 16:56:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17345
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 16:56:54 GMT
Connection: keep-alive
|
|
| r3.o.lencr.org/ | 23.36.76.226 | 200 OK | 503 B |
IP23.36.76.226:0 ASN#20940 Akamai International B.V.
Hash804755c7e438531c9ba2e781947e1640 7a93c31638ee89a561bac2174482a5d12aa62d63 aa6f123fed093048bd006bf5a0ea0a7b310d735436af0ca07a06574f2026ba9b
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AA6F123FED093048BD006BF5A0EA0A7B310D735436AF0CA07A06574F2026BA9B"
Last-Modified: Sun, 20 Nov 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17345
Expires: Tue, 22 Nov 2022 21:45:59 GMT
Date: Tue, 22 Nov 2022 16:56:54 GMT
Connection: keep-alive
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp | 34.120.237.76 | 200 OK | 8.7 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash2ed6b76d15fc8d6295acdb6fb47461d3 b8c928f93a8d82b48491448d811a95ad99dc6aef de326836a9de677438b9ae724198e94348b0900c62817ff10de3677ce93fdae0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbe35a8d1-e974-48d4-a8b7-1add4aa5d251.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8685
x-amzn-requestid: 66455cc7-83d7-4570-99f9-5fa838da947f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-IrAHwKoAMFUHQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee46-354d65e9609bc05647556a5a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:50 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: -9tZPsMl7i5hr0N1rwJdQBLiOImuEO12RDL0pcPNjf6t-LkRbPaN2A==
via: 1.1 e291f351a18746d40754b367095a2872.cloudfront.net (CloudFront), 1.1 12a392bc3a7281f8d5d4591bfadc41fc.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:58:29 GMT
age: 68305
etag: "b8c928f93a8d82b48491448d811a95ad99dc6aef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg | 34.120.237.76 | 200 OK | 4.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hashdafd9e17dc0023e71ae513c6025e4b80 12e2654db1f384bb04f5c5042848b25dda86b710 e9c885a102dc811648cec4ac292db63564e81a48d7a3611cb31fba73b37286dd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3c73cec7-245a-480e-8dfe-cc11a12b2656.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4639
x-amzn-requestid: 8a93fa29-158b-4402-aac4-85ad29a74ae1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-I6oELooAMFWFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637beeaa-5a85509b26d9aeef7ae59b4c;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:33:30 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: bmrDryUp_4bvIikGkppa36e9isEfvK0gjunV6xmU5ApJtxlLR_GYkA==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 b2f9564ebf9c745cc2ceae96d434977e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 22:05:18 GMT
age: 67896
etag: "12e2654db1f384bb04f5c5042848b25dda86b710"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg | 34.120.237.76 | 200 OK | 7.6 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash06c6e720bc9900b38e88cd72f739603e 22884cbc78622d6f78c1c3397c9b440946144a99 8675d08e6d8ae5bdedbc7c7ce647f8c6e72cc457917b4ed1856c50b11c2fe88b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F20f7461d-18d1-4343-9ecb-d68d44ce1ee4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7589
x-amzn-requestid: 533d7650-cb21-4090-a50a-e205adad316d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: brr5zH4qoAMF79Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63748d0b-017f7bf4390eb124097af648;Sampled=0
x-amzn-remapped-date: Wed, 16 Nov 2022 07:11:07 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: nwXP5jm9A2Cl3_-Lm194ycXkeClig1L9hwgUgE8i8NF-Vv2gNfj_4Q==
via: 1.1 95b0ac620fa3a80ee590ecf1cda1c698.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 15:03:51 GMT
age: 6783
etag: "22884cbc78622d6f78c1c3397c9b440946144a99"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/%22,%22ReporterNotes%22:%22See | 147.75.33.214 | 200 OK | 160 kB |
URL HTTP/2vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/%22,%22ReporterNotes%22:%22See IP147.75.33.214:0
Size160 kB (159745 bytes) Hashbe3d60fb65ddc011e05e4b8360174247 16cba5ba4976da1feb0ba0f8bca168e8da05d6ac e780a6a9db6d1a3e0b479838b5bdfe56a656fc9786a78c6fa3088fffa0d2d2a8
Analyzer | Verdict | Alert | openphish | Office365 | | fortinet | Phishing | |
GET /%22,%22ReporterNotes%22:%22See HTTP/1.1
Host: vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 22 Nov 2022 16:56:52 GMT
content-type: text/html
x-ic-subnet-id: 5kdm2-62fc6-fwnja-hutkz-ycsnm-4z33i-woh43-4cenu-ev7mi-gii6t-4ae
x-ic-node-id: hkzhp-t6jlw-lcum2-jpf23-vx2v4-qyf6r-lux2n-qoouy-pjoy7-gxe3x-xqe
x-ic-canister-id: 00000000007023500101
ic-certificate: certificate=:2dn3o2R0cmVlgwGDAYMBgwJIY2FuaXN0ZXKDAYIEWCAViCkjLlgulQLpxr+msJL38f+IJl+JiG9BGJNwYQGUcIMBggRYIPwALUlcTs56uEl/cggPlwYKkAwq5Yx5unijrlXHoywUgwGCBFggEDkkD4EcrtNkeptBaSN4lI8zj7gYwb1XP04eC7STb62DAYIEWCBQacqBc15Xz7eXNP0iK0ychuUQxxu0W+MGtU5m3qEp64MBgwGDAYIEWCCsDNTJLf/0PKNTdj3WUgMsCjTkhgaOw97M5RSX6hg0m4MBgwGDAkoAAAAAAHAjUAEBgwGDAYMBgwJOY2VydGlmaWVkX2RhdGGCA1ggTpJ7N+IelYMesuYZWboCfLRT166//w6JqL45Ook3SUiCBFggg8Vr8U3ePSjeZsaStfydl+ndmFtq1ysP5vhOio3z3LKCBFgg8EfmnxWp+PWFGccV7eB8HpifCS2756+gwIXVcnAcKJKCBFggX5bh9SaGNcugUZ0DO3dknV7wcBKJDsP/e+JlsywCGjCCBFggRK5sEmDaR0Hi0u8quN5b43ZiMfrYPyYmODCf8tlR/h6CBFggcOe2Q6R7EC2x4IJqshFE1U6lHNuP6rDz+IP4fmaD18+CBFggOQLmdK1ZW614YkJh79nePu4LlXzT2vH0vS4y5aCQDjqCBFggzt0t13hfix+/S1kiJc6xzda9EN7BWORG9tbExVFxGM+CBFggzxRmeSAVxZs3FDuPbM1Pf4nvZveJppO01I46BDQo5j+CBFggRuKsVlAMLGqMntRNA2i/XuwJqMxMRBnMlZOP2Elsl+mDAYIEWCALLxLPg6ijOWkcDTm+OEMs7hpk2o44mLtpr9tpcII8XoMCRHRpbWWCA0m5/bfFo9H9lBdpc2lnbmF0dXJlWDCsBAcib8t7vXcrTJXtXE9WKO8U9STznsIHYq0N/5q+VAszf53zGP7WrwH8ibi9FqVqZGVsZWdhdGlvbqJpc3VibmV0X2lkWB1FF4tmpAek1ZwKTWczvaLOPzfBEbQlfsQZCPT4AmtjZXJ0aWZpY2F0ZVkCV9nZ96JkdHJlZYMBggRYIMsueZADOFIez5RJ7e3HC6kVt6KdcGnYGuVvFe0d5oYPgwGDAkZzdWJuZXSDAYMBgwGCBFggJn/lURG1bjw5dVMuozc/e3Lp+CBy/o5gftNEhkeKWzmDAYIEWCBGanAobPms6YAcpT4ir27gWaCU/WBJhgbUhLaFQFgwfYMBggRYIL5ypMZtyOflVmphzKP//ptJOs49TABxqsbEkhbHZEKagwGDAlgdRReLZqQHpNWcCk1nM72izj83wRG0JX7EGQj0+AKDAYMCT2NhbmlzdGVyX3Jhbmdlc4IDWBvZ2feBgkoAAAAAAHAAAAEBSgAAAAAAf///AQGDAkpwdWJsaWNfa2V5ggNYhTCBgjAdBg0rBgEEAYLcfAUDAQIBBgwrBgEEAYLcfAUDAgEDYQCVX1L3PC3sWaY3spTlC5NNtdbeKec7vPhOfYakrEG617U5+YF63okWlh2d1r+SVwENWFcVbo/mqvz2/QaHlecL0zmbNBEwDJzMjroNBowQ5M+29OJ9GVserXhdYY6zk7mCBFggAJvm6n+vrOj3wkveJVpH7krnQT1QHjO+2j9ytaHvTjaCBFggSh12wI5kLj22mC5mU76Mc28nWiSsIhCDQwstW0Qc51SCBFggLYVruntsgBcc6OXRIbt+RFCzVlpkTZE16f5YhCgcH7mDAkR0aW1lggNJjrje4tj48ZMXaXNpZ25hdHVyZVgwufGaBmEyHYCSm+MQpE9lF4X9uq+0oyJbuWRsHTJSxDQpKzY6PlPnSjhufIuphOmj:, tree=:2dn3gwJLaHR0cF9hc3NldHODAksvaW5kZXguaHRtbIIDWCCVtgTssrlpUeyXIjpp/vq8K37luKEK3c3kqF21Hz5fHg==:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg | 34.120.237.76 | 200 OK | 6.0 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash4f3fad7453f45dfa617243c8beac64e1 56414a905340e1b1478a0a40a52b25365a724524 7befcfbedac5652eb04bc675b67f7b642631d4e918f7aaee17b0b594e26854d0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9029340f-28c3-4004-9012-9a24977dfd45.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6031
x-amzn-requestid: f59b04c5-4955-4847-9a7f-d9d53b47ca52
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b3cV0GC-oAMF5hA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637940f1-0425b3cf6a4650b60936feba;Sampled=0
x-amzn-remapped-date: Sat, 19 Nov 2022 20:47:45 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: VabInML1mfcQLIp29OWRNsixwfSWt0Wv9l7I-Ak7TdUHlNt2ZEVtPg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 22 Nov 2022 15:21:36 GMT
age: 5718
etag: "56414a905340e1b1478a0a40a52b25365a724524"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg | 34.120.237.76 | 200 OK | 11 kB |
URL HTTP/2img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg IP34.120.237.76:0
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Hash0ab62c5a7c3296600de924eb0b283bc1 bc4a2dc43898e3fb78ba7301d8b09b280991d221 f2a4c0829a4fb9a585113ed358832d16470ec391035a302a8f3c4666172f02bd
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3d50a0d2-05bc-4c0c-8961-2b8cc49ccc8f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10556
x-amzn-requestid: d2426c6d-5e78-496c-8649-0496a872b380
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: b-Iq0GPVoAMF9bg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637bee45-1ee6dc09394731cc4dbfc38a;Sampled=0
x-amzn-remapped-date: Mon, 21 Nov 2022 21:31:49 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: sBNLrVAl4G6pJ-OBZ6aJZC64MrkkGQdsuZKITQwcqgYgP6-GJiblfA==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 e66162aafd55b64ba1478ff7105150fa.cloudfront.net (CloudFront), 1.1 google
date: Mon, 21 Nov 2022 21:59:20 GMT
age: 68254
etag: "bc4a2dc43898e3fb78ba7301d8b09b280991d221"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Archivo+Narrow&display=swap | 142.250.74.10 | 200 OK | 0 B |
URL HTTP/2fonts.googleapis.com/css?family=Archivo+Narrow&display=swap IP142.250.74.10:0
GET /css?family=Archivo+Narrow&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 22 Nov 2022 16:56:53 GMT
date: Tue, 22 Nov 2022 16:56:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
|
|
| ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 | 172.64.202.28 | 200 OK | 0 B |
URL HTTP/2ka-f.fontawesome.com/releases/v5.15.4/css/free.min.css?token=585b051251 IP172.64.202.28:0
GET /releases/v5.15.4/css/free.min.css?token=585b051251 HTTP/1.1
Host: ka-f.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Origin: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: text/css
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
etag: W/"a12ec7ebe75a4d59a5dd6b79e2ba2e16"
cache-control: max-age=31556926
access-control-allow-headers: fa-kit-token
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 7fcc9354bd594831abf31608fb6cde60.cloudfront.net (CloudFront)
x-amz-cf-pop: LHR50-P1
x-amz-cf-id: 8XK0T_MLZ9rbBMgNkMI0zDv6M75aR5BUOT3dVuxGqbw7x7U-xiBvYA==
age: 15779
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xEVhVpP0XYacaamCIXKo4%2FwfKxFfqGv98%2FXJzqnPDwoyLoV%2FBlg96XM0ChwQ5s%2FFNDSaUM1OkRKxVySnANCgEfRrLgWBj2hdTH3AIRIIN4BqUiJQk5WUej3jh3eVPnfFK4jRbMh4cQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76e333753f437713-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.10.207 | 200 OK | 0 B |
URL HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.10.207:0
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 11/18/2022 06:18:34
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 865
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 4934c98c30fad41798fbfef77ea0a388
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 76e3337338d6fac8-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/images/gmail.png | 147.75.33.214 | 200 OK | 0 B |
URL HTTP/2vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/images/gmail.png IP147.75.33.214:0
GET /images/gmail.png HTTP/1.1
Host: vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/%22,%22ReporterNotes%22:%22See
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: text/html
x-ic-subnet-id: 5kdm2-62fc6-fwnja-hutkz-ycsnm-4z33i-woh43-4cenu-ev7mi-gii6t-4ae
x-ic-node-id: tybza-gyple-63wq2-qsgwo-w6fqw-6trwu-awukb-skekh-67bqu-qsoeo-aae
x-ic-canister-id: 00000000007023500101
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAksvaW5kZXguaHRtbIIDWCCVtgTssrlpUeyXIjpp/vq8K37luKEK3c3kqF21Hz5fHg==:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| kit.fontawesome.com/585b051251.js | 104.18.23.52 | 200 OK | 0 B |
URL HTTP/2kit.fontawesome.com/585b051251.js IP104.18.23.52:0
GET /585b051251.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: Fynf9QMqVwyWys4Ti47j
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 76e333734f61b4fa-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/images/gmail.png | 147.75.33.214 | 200 OK | 0 B |
URL HTTP/2vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/images/gmail.png IP147.75.33.214:0
GET /images/gmail.png HTTP/1.1
Host: vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/%22,%22ReporterNotes%22:%22See
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: text/html
x-ic-subnet-id: 5kdm2-62fc6-fwnja-hutkz-ycsnm-4z33i-woh43-4cenu-ev7mi-gii6t-4ae
x-ic-node-id: kywkz-eopg4-nn6md-cjb24-5ri6y-aq6au-vt57i-kg7gk-ch5pw-7er3w-7qe
x-ic-canister-id: 00000000007023500101
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAksvaW5kZXguaHRtbIIDWCCVtgTssrlpUeyXIjpp/vq8K37luKEK3c3kqF21Hz5fHg==:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/favicon.ico | 147.75.33.214 | 200 OK | 0 B |
URL HTTP/2vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/favicon.ico IP147.75.33.214:0
GET /favicon.ico HTTP/1.1
Host: vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://vj72o-dqaaa-aaaad-qenia-cai.raw.ic0.app/%22,%22ReporterNotes%22:%22See
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: nginx/1.21.3
date: Tue, 22 Nov 2022 16:56:53 GMT
content-type: text/html
x-ic-subnet-id: 5kdm2-62fc6-fwnja-hutkz-ycsnm-4z33i-woh43-4cenu-ev7mi-gii6t-4ae
x-ic-node-id: iibos-j7mxr-q6d4w-fufdp-jo2se-vpzty-u7fxa-agw2u-i3ubn-cm7zm-oqe
x-ic-canister-id: 00000000007023500101
ic-certificate: certificate=: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:, tree=:2dn3gwJLaHR0cF9hc3NldHODAksvaW5kZXguaHRtbIIDWCCVtgTssrlpUeyXIjpp/vq8K37luKEK3c3kqF21Hz5fHg==:
access-control-allow-origin: *
access-control-allow-methods: HEAD, GET, POST, OPTIONS
access-control-allow-credentials: true
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-None-Match,If-Modified-Since,Cache-Control,Content-Type,Range,Cookie
access-control-expose-headers: Accept-Ranges,Content-Length,Content-Range
access-control-max-age: 600
content-encoding: gzip
X-Firefox-Spdy: h2
|
|