world-com.site/p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html
104.26.1.138200 OK 2.7 kB URL HTTP/1.1 world-com.site/p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html
IP 104.26.1.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2256), with CR, LF line terminators
Hash 4bf4deed5f1f93a286cb8e738c957b0f
1eb82a6c92a4e5fa49ccc75032be3bb870bdfd90
ab6bef73a665dc3a39e041f60dba3c5c4eadda404b453cbeade9f04496d48bc2
Analyzer Verdict Alert fortinet Phishing
GET /p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html HTTP/1.1
Host: world-com.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 10:45:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
x-amz-expiration: expiry-date="Wed, 12 Oct 2022 00:00:00 GMT", rule-id="DeleteAfter30Days"
x-amz-version-id: qRh2nSSg9xHE6FIBld5rOJoJHm2KW96z
Set-Cookie: requestid=0b3270784a96e4cb277212c80c851af6
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=N3McIKl30Vrup%2BcMmZ0%2BCUT3lP%2F5f7yRes6iH7kcJJQLLKS5v8sV8bTV5bCoJR5f6JBRohWZ%2BGok422r8z1UBGRaw6MbumRhz9j0Pz5CoPvH%2FtINrQwL2EnU8nrWM6h5"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748fd0563d5b0af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 76d5eb597558e3dee0d99719d17e71e0
f3a0f3932fa8059f27dc9422d523b938fa9a7d09
d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED"
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20361
Expires: Sun, 11 Sep 2022 16:24:47 GMT
Date: Sun, 11 Sep 2022 10:45:26 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Sun, 11 Sep 2022 10:07:34 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 76c917e0bb0ba45eb834d25d76ee125e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: tOQCatIPn8Z8UEPfbJffNJUHnueFSQJxN6oLRWXV_-HjKPTr4AZwRQ==
Age: 2272
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.25200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.25:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Sun, 11 Sep 2022 07:17:13 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 3XyW3J0TmUasMT7W6ULcu7v3l5eOJ8w76cUuUdY-394FdzGaJLBhmg==
age: 12494
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
lp.cybeready.net/common/nwp/newstats-lp.js
104.26.8.233301 Moved Permanently 0 B URL HTTP/1.1 lp.cybeready.net/common/nwp/newstats-lp.js
IP 104.26.8.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /common/nwp/newstats-lp.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 10:45:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 11:45:26 GMT
Location: https://lp.cybeready.net/common/nwp/newstats-lp.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=bL8UfvBMKVLuSYV17Xr9N8%2FNfblyNDRvFbmqxzsFu%2Ba6gzVNubTWrzMkq0IhNlnQRstZRYlZs5l3gRozFTFMe1n7Jazt4RGGrlYt6vZhUMsVYIcsS0Rbsgg26CzbBgg4Ykg%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd0587b4e0b41-OSL
alt-svc: h2=":443"; ma=60
lp.cybeready.net/common/recaptchaTokenProd.min.js
104.26.8.233301 Moved Permanently 0 B URL HTTP/1.1 lp.cybeready.net/common/recaptchaTokenProd.min.js
IP 104.26.8.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /common/recaptchaTokenProd.min.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 10:45:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 11:45:26 GMT
Location: https://lp.cybeready.net/common/recaptchaTokenProd.min.js
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=GDMMYQqCAduQ%2FEWU9ZVrSoOmI9hCG2F9o%2BF%2F%2B8wMhFQztmJokL5ZJ%2FofjTuXUR0LsJXc9rCN0Vzh8woC9t7Zq1PmqZ9lRUHmukUhf27Z192ouUeMGPzGRWLzdtkJei47EpQ%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd0587d34b4f4-OSL
alt-svc: h2=":443"; ma=60
ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
216.58.207.234200 OK 34 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js
IP 216.58.207.234:0
File type ASCII text, with very long lines (32077)
Hash fd2b58574f9637ba7ef639267349d848
6eda5ea93f549ceb5693f6f1c038893fa56a510d
75627d4b97e5e6294a8f88f5eeaf9b616696dc8600db9701c47ef05f067880ec
GET /ajax/libs/jquery/1.12.4/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33951
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 09 Sep 2022 12:01:46 GMT
Expires: Sat, 09 Sep 2023 12:01:46 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 168220
lp.cybeready.net/Lv/RamatGanMuni/logo.png
104.26.8.233200 OK 8.1 kB URL HTTP/2 lp.cybeready.net/Lv/RamatGanMuni/logo.png
IP 104.26.8.233:0
File type PNG image data, 224 x 82, 8-bit/color RGB, non-interlaced\012- data
Hash 85b912d5d20110bc801932066c77dc0f
95cb12ebe210fe20a1b022866e9e00c9ed8a7aa2
a4af5c183410946972ab5a4ce9aa56a74f7a2d7f600cc7addfc3c1089779e790
GET /Lv/RamatGanMuni/logo.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: image/png
content-length: 8067
cf-bgj: imgq:100,h2pri
cf-polished: origSize=8383
etag: "c548c2d65765a57e763b9b7db1e11563"
last-modified: Tue, 21 Dec 2021 18:08:28 GMT
x-amz-id-2: efZ7k0Xs8l8LjmTQTP4UUD8P6XmvURJYuBzcDBcWuMfbq2QJv0NqWgcaWx14Ip6wQPZx97O7EBU=
x-amz-meta-s3b-last-modified: 20211221T174441Z
x-amz-meta-sha256: aab5168ca19f7e9b7d34a63617049e906cd2c607b391f250c1bba10577ef3021
x-amz-request-id: 9ASQ0X4HF4WBWQJZ
cache-control: max-age=14400
cf-cache-status: HIT
age: 3085
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=z1PxKx9Ii0Sl9ST9aM9iItOfAmR4B2KA4iwJz8bqe5wuDyDziZuo8%2FKx7xGOUYn0l2e8qu4sivQSM%2B3uMpbyjm0i1OCaquH5QpLmEAyjQp9s0H3jD8hb0BQC%2BxeVF9pNasY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd058bb180b69-OSL
X-Firefox-Spdy: h2
fast.wistia.com/embed/medias/w64cr6ghw7.jsonp
151.101.86.110200 OK 1.5 kB URL HTTP/1.1 fast.wistia.com/embed/medias/w64cr6ghw7.jsonp
IP 151.101.86.110:0
File type ASCII text, with very long lines (3976)
Hash d3a5e2240da333854e581af040da6395
e3b8ba9a8365cb691f72ffce976a422b0bfb8e9f
7eaf4482613e4409c4db23e634df5de2a15997f3b29fc3db8a2f65679dd24377
GET /embed/medias/w64cr6ghw7.jsonp HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: public, no-cache
Content-Encoding: gzip
Content-Type: application/javascript; charset=utf-8
ETag: W/"09c2aea4dd830a8b614df04e3a7ec5b9"
P3P: CP="CURi ADMa DEVa IVAa IVDa CONi OUR IND DSP CAO COR"
Referrer-Policy: strict-origin-when-cross-origin
Timing-Allow-Origin: *
X-Content-Type-Options: nosniff
X-Download-Options: noopen
X-Permitted-Cross-Domain-Policies: none
X-Request-Id: 529dd4dd5e68e5ff4f36d7bd1ade5eab
X-Runtime: 0.062391
Via: 1.1 varnish, 1.1 varnish
Content-Length: 1456
Accept-Ranges: bytes
Date: Sun, 11 Sep 2022 10:45:26 GMT
Age: 4784
Connection: keep-alive
X-Served-By: cache-iad-kjyo7100137-IAD, cache-bma1649-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662893127.529573,VS0,VE1
Vary: Accept-Encoding,Referer,X-Forwarded-Proto,X-Normalized-User-Agent,X-ECMA-Override
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 96
fast.wistia.com/assets/external/E-v1.js
151.101.86.110200 OK 150 kB URL HTTP/1.1 fast.wistia.com/assets/external/E-v1.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 150 kB (149606 bytes)
Hash fd0fff4f043900ebb99c39c16979eff1
45e7f1e9520b3e36a74c536918beda7892f4bf71
822d8f97ea075fb7717a290072222a55a128e8d729d592bbf6e895a2728306fd
GET /assets/external/E-v1.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: application/javascript
ETag: "631b56d7-24866"
Last-Modified: Fri, 09 Sep 2022 15:08:07 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Content-Length: 149606
Accept-Ranges: bytes
Date: Sun, 11 Sep 2022 10:45:26 GMT
Age: 716
Connection: keep-alive
X-Served-By: cache-iad-kiad7000073-IAD, cache-bma1635-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 2
X-Timer: S1662893127.529542,VS0,VE0
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 96
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash da7b1c24eee0db0c23872933557b7521
b8bc1215b4073784c048587e51a40152bd88c8ed
6ba38b5c68971135ed3f1fbe7afa658ce883240142a4244ce7d84fa251a64c3f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?render=6Ld4MnoUAAAAAN4O5IIhUqplftNR8nCfzoL2GZQV
142.250.74.164200 OK 587 B URL HTTP/2 www.google.com/recaptcha/api.js?render=6Ld4MnoUAAAAAN4O5IIhUqplftNR8nCfzoL2GZQV
IP 142.250.74.164:0
File type ASCII text, with very long lines (884), with no line terminators
Hash ce73a7295efd19e28829598a80109560
e970fed96aaae807788200885bb591ebd6c49079
b863ea1fe889fbe0ac0ba55e372f7ba7c68db7fe1aff15bfcd4028b530873a9b
GET /recaptcha/api.js?render=6Ld4MnoUAAAAAN4O5IIhUqplftNR8nCfzoL2GZQV HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
expires: Sun, 11 Sep 2022 10:45:26 GMT
date: Sun, 11 Sep 2022 10:45:26 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 587
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lp.cybeready.net/Lv/Simple1/Black/Icon-Sender.png
104.26.8.233301 Moved Permanently 0 B URL HTTP/1.1 lp.cybeready.net/Lv/Simple1/Black/Icon-Sender.png
IP 104.26.8.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Lv/Simple1/Black/Icon-Sender.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 10:45:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 11:45:26 GMT
Location: https://lp.cybeready.net/Lv/Simple1/Black/Icon-Sender.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=s%2FCV3aHAemnXCnfPZAtA4cCXOeA2Ml8Mnl7Z4TVbawldQEwmac3imyezIZV3Wgk%2FE1w2PuNvUZ6zQXvOtLb%2Bmjpbe5vz6u4wCnT53iOcANPzjCIkkYLm3nBNpHWY9%2FFUVGE%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd0594c1a0b41-OSL
alt-svc: h2=":443"; ma=60
lp.cybeready.net/Lv/Simple1/Black/Icon-Sender-Address.png
104.26.8.233301 Moved Permanently 0 B URL HTTP/1.1 lp.cybeready.net/Lv/Simple1/Black/Icon-Sender-Address.png
IP 104.26.8.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Lv/Simple1/Black/Icon-Sender-Address.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 10:45:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 11:45:26 GMT
Location: https://lp.cybeready.net/Lv/Simple1/Black/Icon-Sender-Address.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U8gF3MpaW8wZgp8s0kfCtsU%2FBcyU%2BlOrKoC7%2FfuwostSzMvAFyQLq3yZX71yHqFsXbWujVy3zXzrInLPdOxdzQ5yAEyMjDWBF5IGPmEsy9B3Cg5reEMVbAlPTDuMkc3Dvvc%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd0594e1bb4f4-OSL
alt-svc: h2=":443"; ma=60
lp.cybeready.net/Lv/Simple1/Black/Icon-Link.png
104.26.8.233301 Moved Permanently 0 B URL HTTP/1.1 lp.cybeready.net/Lv/Simple1/Black/Icon-Link.png
IP 104.26.8.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Lv/Simple1/Black/Icon-Link.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 10:45:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 11:45:26 GMT
Location: https://lp.cybeready.net/Lv/Simple1/Black/Icon-Link.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=%2BzlLEzm1Ylhed4HJ7wovBEfJLQXIQV5aiEcIz99J4tUdPhGxwd0U7gRzX3Wwf8e0UO2jh0yfC57xF6MzuKahbJoYLpHJJHvN6WqM9GiFpdaSlpW1VCcsyB4NGPY0PVYiOno%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd0594e950b31-OSL
alt-svc: h2=":443"; ma=60
lp.cybeready.net/Lv/Simple1/Black/Icon-Signature.png
104.26.8.233301 Moved Permanently 0 B URL HTTP/1.1 lp.cybeready.net/Lv/Simple1/Black/Icon-Signature.png
IP 104.26.8.233:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /Lv/Simple1/Black/Icon-Signature.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 301 Moved Permanently
Date: Sun, 11 Sep 2022 10:45:26 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Sun, 11 Sep 2022 11:45:26 GMT
Location: https://lp.cybeready.net/Lv/Simple1/Black/Icon-Signature.png
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=k8tcuWWdeyoMsbv%2BJeT8FHNGV%2F0rjDzbiN%2F29%2FTjYF8sKmMC%2F3%2BeF52vi988vsCW5suI1jnZZqZw%2BLphrZBXYDDfV4pEGBYpf0gdnX4KBXkAqjtxxhdxHpt6cG%2FWF8bLiYU%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd0594babb512-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 65deebab57142db522e6c874673bdd9f
bfd022181afaec5035f868ccd05fac58113f81dc
7470143c8bd79f00190a3766ebaa9c632d0aa47693fc4c146f097873865da327
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash 6c2fea93ba89de81c2b01aaca1a87835
0a7f50001f709285bc10f6ef044ef39a60535bff
6cae8a5f9949975a3adedc41088196b8c9dd984e4023e54bbe655800a9478349
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
world-com.site/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1662883200
104.26.1.138200 OK 15 kB URL HTTP/1.1 world-com.site/cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1662883200
IP 104.26.1.138:0
File type ASCII text, with very long lines (36006), with no line terminators
Hash 8b6062a37dfaeea00924c40439e8e89c
5a7928064f3c47aab8314c440fed2cc445244ca2
fcb67a5999d32ab136e23c9bd5661a39d8a06085a3819f8e7836169ede4fd51a
Analyzer Verdict Alert fortinet Phishing
GET /cdn-cgi/challenge-platform/h/g/scripts/alpha/invisible.js?ts=1662883200 HTTP/1.1
Host: world-com.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Cookie: requestid=0b3270784a96e4cb277212c80c851af6
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 10:45:26 GMT
Content-Type: application/javascript; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
cache-control: max-age=14400, public
x-control-type-options: nosniff
vary: accept-encoding
content-encoding: gzip
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ic6YObkuR3%2B0gPGZMqEQ5Y5TPCWETE2lElV1k2s2osukcGRNcBdlm4bNAdAIg37pzIL7Pl33vHiFFuEyIBh2ehVYD0Xm4kfOTmDQqDFRZszkp9Hj2YF9gAmkWBHkGxNi"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748fd05a19700af6-OSL
alt-svc: h2=":443"; ma=60
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lp.cybeready.net/Lv/Simple1/Black/Icon-Sender.png
104.26.8.233200 OK 2.9 kB URL HTTP/2 lp.cybeready.net/Lv/Simple1/Black/Icon-Sender.png
IP 104.26.8.233:0
File type PNG image data, 172 x 172, 8-bit gray+alpha, non-interlaced\012- data
Hash 96270a2a08bd5b2148ddcffcfc9d891e
41eb51f4cdb5cfac694bbcd533566484e204a898
d017b25808c4e793da194d432451f647b4bfeffc3211b9f929d15ce33e1182a9
GET /Lv/Simple1/Black/Icon-Sender.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://world-com.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: image/png
content-length: 2919
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4489
etag: "2e76889b3f176d4f33d1f9f586288306"
last-modified: Mon, 21 Sep 2015 18:25:22 GMT
x-amz-id-2: B4X+A1EtAKUe3KXhmvt2QG/VwegQgolUEBczUEQggoujG/LObL0KeTtKFUEK7KnKWpXdYarAVf8=
x-amz-request-id: 354ANCT1CC73998B
cache-control: max-age=14400
cf-cache-status: HIT
age: 3222
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WY7rRZdZ3zFIObEyRxHlihp9UUV6cBVdRiVYrtFLl5aQnMGi9GvQL8kyg4218tj3tDCS6l%2BvXkrhh3xKTIgmWjqHG2ucEdtKF8LmJkYUFyruhvTLr4qPzDr%2BpGqzQJezmgY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd05a2cc40b69-OSL
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
lp.cybeready.net/Lv/Simple1/Black/Icon-Sender-Address.png
104.26.8.233200 OK 2.6 kB URL HTTP/2 lp.cybeready.net/Lv/Simple1/Black/Icon-Sender-Address.png
IP 104.26.8.233:0
File type PNG image data, 172 x 172, 8-bit gray+alpha, non-interlaced\012- data
Hash 4bded20d329ba3ffb96264a46221cf28
2a80c246f96657dd360145449d214c2f16428d60
a222ec29dd9e0ceedaeff66b370220b7634e1d3ae12c64345ff83a292085bbff
GET /Lv/Simple1/Black/Icon-Sender-Address.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://world-com.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: image/png
content-length: 2575
cf-bgj: imgq:100,h2pri
cf-polished: origSize=4011
etag: "048d95adbe78ae2654b97a115cea5ed9"
last-modified: Mon, 21 Sep 2015 18:25:21 GMT
x-amz-id-2: PBQ42a8SvbMlu6x/AiMC6EEvA5jsFevocELLD8aQggtQE2JzeR9cbWq0E+S+wyVHMQBsgLK7Ho4=
x-amz-request-id: 35459RBWMJJQDCEZ
cache-control: max-age=14400
cf-cache-status: HIT
age: 3222
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ik6RbYEsT4by7OGZgI%2Fo%2Bka807FryH2x1eofkK%2F9QQQ%2FkSfLVlFJN09DI3VUj0TcJgF3fkJCBm6uzHl%2BybQ%2BfXq95xxLTt%2BvYC6Y34ovwgsx6HuQxwJ6ieyVlXQQPRrBNS0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd05a2cc80b69-OSL
X-Firefox-Spdy: h2
lp.cybeready.net/Lv/Simple1/Black/Icon-Link.png
104.26.8.233200 OK 4.2 kB URL HTTP/2 lp.cybeready.net/Lv/Simple1/Black/Icon-Link.png
IP 104.26.8.233:0
File type PNG image data, 172 x 172, 8-bit gray+alpha, non-interlaced\012- data
Hash dd48cabd7a88430b4b34c7be599f4dde
bfae2aaebb6804381a67bc0fc9b1f3e3939d7e29
f59ee438f4fbb69cc1bf7367a68bbfc8149931cae4d5271738c0ea569380059d
GET /Lv/Simple1/Black/Icon-Link.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://world-com.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: image/png
content-length: 4177
cf-bgj: imgq:100,h2pri
cf-polished: origSize=6072
etag: "c2a3d9c414ab642f0358b7e8ab999784"
last-modified: Mon, 21 Sep 2015 18:25:22 GMT
x-amz-id-2: Q1YenVxHMjzCGB1XUh6RkUKIrnS2q6yPTyVSUm97pPG1bQOFNP/0U2pVw65ZV2tXwf6NxXfqCJw=
x-amz-request-id: FH8MN2GMEKK7DJ46
cache-control: max-age=14400
cf-cache-status: HIT
age: 3222
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yTGctIpSA4tQu72BoHpONkygUrdSeOin8MCnISxwrDHRM4pp4LHDjeSvnUCMYpEn2Ho0Sm35bXPVJ35173VtVBT858Y4nXl2dr4bLWVSoPFoxC2y3vtLuf%2BWZZ2wYh507Yk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd05a2cca0b69-OSL
X-Firefox-Spdy: h2
lp.cybeready.net/Lv/Simple1/Black/Icon-Signature.png
104.26.8.233200 OK 2.8 kB URL HTTP/2 lp.cybeready.net/Lv/Simple1/Black/Icon-Signature.png
IP 104.26.8.233:0
File type PNG image data, 172 x 172, 8-bit gray+alpha, non-interlaced\012- data
Hash a8f0bea63a3f8eae250e072f6cec8a57
b29fd2db22245149b82c3c1ac51a534adffe45de
a4bcd1d9541d27e382c1fd84835dd67bfb53a8d90b23e7fdab6c31a01032fccf
GET /Lv/Simple1/Black/Icon-Signature.png HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://world-com.site/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: image/png
content-length: 2782
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3966
etag: "e05478501f43bb41b4f0b3cba2a861a5"
last-modified: Mon, 21 Sep 2015 18:25:22 GMT
x-amz-id-2: G/dqZYYTWVQ7gHk+3UsgfodM4Sfx1aGQfabBA9XhkDWx8n1Jw1ggRCBQ6P1iksb5RwO9NPFdjS0=
x-amz-request-id: 55794TPDMCYJ35T4
cache-control: max-age=14400
cf-cache-status: HIT
age: 3085
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DqB0S4dLggBFj3tPOte%2BpCBCFDFKVs74aC%2B%2BPz80KmmLXSn3QNiWlsk5DqqwvUUV6p6P8VV0jmAwfIQdlgBzgZfK5MO2x8Y%2FWfnuPNqU692tURVQ%2FeXpRk3GmvrJ2CdaGxk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd05a2ccb0b69-OSL
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alef/v21/FeVQS0NQpLYglo50H55Q2A.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/alef/v21/FeVQS0NQpLYglo50H55Q2A.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 19576, version 1.0\012- data
Hash bf9eb7aeab7ca13b58f618a8fb9300e8
ade5b7ec5f6cc1adbda7d69cd61fd60b00e52f4d
1baa62c929fe7c727c220d2eda97f8a04ff4b3c6a6a30645bfdf3f23c1210875
GET /s/alef/v21/FeVQS0NQpLYglo50H55Q2A.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://world-com.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19576
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 07 Sep 2022 20:33:44 GMT
expires: Thu, 07 Sep 2023 20:33:44 GMT
cache-control: public, max-age=31536000
age: 310302
last-modified: Tue, 19 Apr 2022 18:36:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.googleapis.com/css?family=Alef:400,700&subset=latin,hebrew
142.250.74.10200 OK 10 kB URL HTTP/2 fonts.googleapis.com/css?family=Alef:400,700&subset=latin,hebrew
IP 142.250.74.10:0
Hash 04b40023e49d2991d1782a2e9bd7d270
eceb5ac91d73fbe81009d2f0cab7b57afb56826d
d667c6f40f2ee05f39481fbd2c2dc0750cd042c274460d0c2fc007007cf71e3a
GET /css?family=Alef:400,700&subset=latin,hebrew HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sun, 11 Sep 2022 10:45:26 GMT
date: Sun, 11 Sep 2022 10:45:26 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/alef/v21/FeVfS0NQpLYgnjVRCg.woff2
142.250.74.163200 OK 20 kB URL HTTP/2 fonts.gstatic.com/s/alef/v21/FeVfS0NQpLYgnjVRCg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 20060, version 1.0\012- data
Hash 3ba51cb2713f4bdc2d4b05a222f78d92
b0e0f63c048ea983a173d55f80fa3b36284433a6
5fae182e54dfce4ad7cfd96cc8c55bd19ca3fb562eaa5fd676b56cc7f7310a7d
GET /s/alef/v21/FeVfS0NQpLYgnjVRCg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://world-com.site
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20060
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 08 Sep 2022 20:39:09 GMT
expires: Fri, 08 Sep 2023 20:39:09 GMT
cache-control: public, max-age=31536000
age: 223577
last-modified: Tue, 19 Apr 2022 18:37:21 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
lp.cybeready.net/common/nwp/newstats-lp.js
104.26.8.233200 OK 12 kB URL HTTP/2 lp.cybeready.net/common/nwp/newstats-lp.js
IP 104.26.8.233:0
File type ASCII text, with very long lines (789)
Hash da84c50f06eb879e808e2df7f6b4eb8e
d229f0e12d9eb15327cc4fdca8e934976633eabb
4bd7b6f9bf86b8cbd199f551064b633eae17594d18a08e7ec365869fe68d8a8f
GET /common/nwp/newstats-lp.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://world-com.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=11195
etag: W/"25bc26c3423ec0d919515b17620a8c6b"
last-modified: Fri, 10 Apr 2020 06:39:39 GMT
x-amz-id-2: +o6wF5RDHy1dxbhdEOATVh3yonxmbUK0MlhnNRHK/WBX9tx8ngb6VygwEFpMGT2f6OmD9SRp8LA=
x-amz-request-id: RB3MHQSW8A3WSGPC
cache-control: max-age=14400
cf-cache-status: HIT
age: 3223
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JrH%2BY8pnC9RnmEolXQistVJR2eKhAQOf%2BNQcwqAviJq4LGPaldEO5UD45ErjWSzGDvjdDkKdyO%2BiAvOQN4VJ9JE1nG9NtXjAaIXaWaS1qPM%2F5LamzO%2FbPpoTTWoHJBmhFqA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd0591b840b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
fast.wistia.com/assets/external/popover.js
151.101.86.110200 OK 31 kB URL HTTP/1.1 fast.wistia.com/assets/external/popover.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash d3aea7c5f4ab627d50d43afe35aa542e
d4c75c0ba63d2445fd0b74dcf6ad393cc02007e3
17e917e6eed1636f8e575c667da31c014ca2ecedba9d4674e11865e7059531f4
GET /assets/external/popover.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: application/javascript
ETag: "631b56d7-799a"
Last-Modified: Fri, 09 Sep 2022 15:08:07 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Content-Length: 31130
Accept-Ranges: bytes
Date: Sun, 11 Sep 2022 10:45:26 GMT
Age: 688
Connection: keep-alive
X-Served-By: cache-iad-kiad7000063-IAD, cache-bma1635-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662893127.846276,VS0,VE1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 96
fast.wistia.com/assets/external/wistia-mux.js
151.101.86.110200 OK 37 kB URL HTTP/1.1 fast.wistia.com/assets/external/wistia-mux.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash 088055ee2e1d957c0747384fd644b01d
a05f4510e6127c5ba4a204a3de92f8e76ef3bc77
1213ca9a4ad31ab9d1bb8cc2c60517a48099dde403112d4251e5c5e94d996b24
GET /assets/external/wistia-mux.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: application/javascript
ETag: "631b56d7-9121"
Last-Modified: Fri, 09 Sep 2022 15:08:07 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Content-Length: 37153
Accept-Ranges: bytes
Date: Sun, 11 Sep 2022 10:45:26 GMT
Age: 713
Connection: keep-alive
X-Served-By: cache-iad-kjyo7100059-IAD, cache-bma1649-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 2
X-Timer: S1662893127.848048,VS0,VE0
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 96
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 43e44f5fe147594a8dd7e263eabca2ae
99a970746a212194f339b3fdc7df516af9f2ffdf
f716e38cbb8632487d1ce62a37e0662ef8611fbe0449a82b9301118b68c7548d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:26 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
142.250.74.163200 OK 157 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js
IP 142.250.74.163:0
File type ASCII text, with very long lines (539)
Size 157 kB (157166 bytes)
Hash 026df0dfed2314af108e700900288961
51c2a55bca7d65c549ef138d1294cac2aa98dd96
24eefc59f5d298ce40bdd33c8157ad14631984159fca8e5980037366c44c2b34
GET /recaptcha/releases/g8G8cw32bNQPGUVoDvt680GA/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://world-com.site
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 157166
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 06 Sep 2022 17:23:20 GMT
expires: Wed, 06 Sep 2023 17:23:20 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 06 Sep 2022 00:04:24 GMT
content-type: text/javascript
age: 408126
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
world-com.site/favicon.ico
104.26.1.138404 Not Found 429 B URL HTTP/1.1 world-com.site/favicon.ico
IP 104.26.1.138:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash c3ee964e6153884afe3ad857e46b69f7
7fff8a584536681540d1336cb1d94781da60641c
fef0427d8af040966e8376687548346b1b196a4e0dc2cac84fe5084ede5bd8ce
GET /favicon.ico HTTP/1.1
Host: world-com.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html
Cookie: requestid=0b3270784a96e4cb277212c80c851af6
HTTP/1.1 404 Not Found
Date: Sun, 11 Sep 2022 10:45:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=14400
CF-Cache-Status: EXPIRED
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Qk%2FGQdQldoQIcpO7ENOb5pQ9G%2FJ%2Fuwv9apwia1HgG9YI9%2BgBhGNxN%2B0VSXKQCGkXmoKAApzQ8xRa3O5nI52zonCMdj1wwavLNmgVqoWFqCBVhqGqj5ZOB%2Bqc5zlWfDhY"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 748fd05afa220af6-OSL
Content-Encoding: gzip
alt-svc: h2=":443"; ma=60
embed-ssl.wistia.com/deliveries/932171381765bab0faebd38bf4da49187dcf6e5c.webp?image_crop_resized=640x360
151.101.86.133200 OK 11 kB URL HTTP/2 embed-ssl.wistia.com/deliveries/932171381765bab0faebd38bf4da49187dcf6e5c.webp?image_crop_resized=640x360
IP 151.101.86.133:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 640x360, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash a96380fec9241fdceb3ae3d8d594a596
1fcc5681720d86f40af985041a54679a5ffe21ff
f3d7179cf25df6a7a3b616a54735e90e534d17827a8d06802e7752552e32446a
GET /deliveries/932171381765bab0faebd38bf4da49187dcf6e5c.webp?image_crop_resized=640x360 HTTP/1.1
Host: embed-ssl.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
access-control-expose-headers: Origin, Content-Type, Accept, Server, x-amz-version-id, X-Cache
cache-control: max-age=31536000
content-disposition: inline
edge-cache-tag: 932171381765bab0faebd38bf4da49187dcf6e5c
last-modified: Sat, 02 Jan 2016 09:42:02 UTC
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sun, 11 Sep 2022 10:45:27 GMT
age: 3442626
access-control-allow-origin: *
access-control-request-method: *
access-control-allow-methods: GET, HEAD, OPTIONS
x-served-by: cache-iad-kjyo7100105-IAD, cache-bma1624-BMA
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1662893127.096129,VS0,VE1
content-length: 11154
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Sun, 11 Sep 2022 09:56:07 GMT
Expires: Sun, 11 Sep 2022 10:23:38 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 1nKWZLY1_tQq9Mzq99gNSiMECuBIODiXaHTtse6jKzAIgRPXxdvT1w==
Age: 2960
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 26e829ba5f754918e20cbd316dc4348e
ba198501da0812dd11ca3b38a51325b5de6cfa60
4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3665
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sun, 11 Sep 2022 10:45:27 GMT
Last-Modified: Sun, 11 Sep 2022 09:44:22 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
fast.wistia.com/assets/external/playPauseLoadingControl.js
151.101.86.110200 OK 18 kB URL HTTP/1.1 fast.wistia.com/assets/external/playPauseLoadingControl.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (59748), with no line terminators
Hash 5ace5f22e80cd593e867b5494ab1db8a
dc3232d86ae6f6d9c81a95aeff2d7da3e74b1b5a
8caefe5996d4051f4f46508718c00d036883284e39abdf3ad55bfbd5211c6d0c
GET /assets/external/playPauseLoadingControl.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: application/javascript
ETag: "631b56d7-4564"
Last-Modified: Fri, 09 Sep 2022 15:08:07 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Content-Length: 17764
Accept-Ranges: bytes
Date: Sun, 11 Sep 2022 10:45:27 GMT
Age: 713
Connection: keep-alive
X-Served-By: cache-iad-kcgs7200141-IAD, cache-bma1635-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 2
X-Timer: S1662893128.527155,VS0,VE0
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 96
world-com.site/p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html
104.26.1.138200 OK 0 B URL HTTP/1.1 world-com.site/p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html
IP 104.26.1.138:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
POST /p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html HTTP/1.1
Host: world-com.site
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 207
Origin: http://world-com.site
Connection: keep-alive
Referer: http://world-com.site/p1f2dfe97i3d514bd6i8e30e97f7e6d5244f.html
Cookie: requestid=0b3270784a96e4cb277212c80c851af6
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 10:45:27 GMT
Content-Type: application/octet-stream
Content-Length: 0
Connection: keep-alive
Set-Cookie: requestid=b4e7ee0c2c2b6c0b11254d0a1735ffc1
requestid=5621ee428028664ec328d3df93568843
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=V%2Bqzx8tTjTqap0cczFctLT9dZDK%2BXMwewZoOT5Czsb6EFo%2BG0oR7SuRcC8Geb%2Fh%2F0VjBQsywRTbWZvkYMi8IuKzPcNihPaGA0EmjZEuf29jpaK87myvvB0qI2Ya8Hy5k"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 748fd05fbeb20af6-OSL
alt-svc: h2=":443"; ma=60
push.services.mozilla.com/
35.161.136.21101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.161.136.21:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: bM/h2xIj3IYHrX/cke5TOQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 5LwbJeYXQi7a/wFime7/8he4fb0=
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash 6e572fa740f2e9ba86bf582f2df35341
2f8644e97458a9d0f7085979ad4e7ba84d9cbada
46cc738389abdc9d14406f0e66db313c34f647235955980818e518190a816acb
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 10:45:27 GMT
Last-Modified: Sun, 11 Sep 2022 09:12:58 GMT
Server: ECS (nyb/1D16)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: u6c-hAuG2WuUjERRV4Ow1osWrM90E6VN8O03b2nur_yYLaYYGFZ9HQ==
Age: 5549
pipedream.wistia.com/mput?topic=metrics
52.44.213.33200 OK 2 B URL HTTP/1.1 pipedream.wistia.com/mput?topic=metrics
IP 52.44.213.33:0
File type ASCII text, with no line terminators
Hash e0aa021e21dddbd6d8cecec71e9cf564
9ce3bd4224c8c1780db56b4125ecf3f24bf748b7
565339bc4d33d72817b583024112eb7f5cdf3e5eef0252d6ec1b9c9a94e12bb3
POST /mput?topic=metrics HTTP/1.1
Host: pipedream.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
content-type: application/x-www-form-urlencoded
Content-Length: 223
Origin: http://world-com.site
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Date: Sun, 11 Sep 2022 10:45:27 GMT
Content-Type: text/plain; charset=utf-8
Content-Length: 2
Connection: keep-alive
Access-Control-Allow-Methods: POST, OPTIONS
Access-Control-Allow-Origin: *
distillery.wistia.com/x
54.225.146.152204 No Content 0 B IP 54.225.146.152:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /x HTTP/1.1
Host: distillery.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: text/plain
Content-Length: 1386
Origin: http://world-com.site
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 204 No Content
date: Sun, 11 Sep 2022 10:45:27 GMT
access-control-allow-origin: *
cache-control: max-age=0, private, must-revalidate
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash da230bb35bf2787932cc9dc51152d0d8
5b691b0251297d863a06ccf3846e23baa657a909
e7358cb3affbff2559995990a2bb40bd59a819827d8aebfdb9e578efadd896ca
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 10:45:28 GMT
Last-Modified: Sun, 11 Sep 2022 10:04:06 GMT
Server: ECS (nyb/1D33)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: UyY0YfHHoFcQn7xdcpQiATcAx-Lf7P1KILEhxYEwxSoePXo_Gs6IJg==
Age: 2482
ocsp.sca1b.amazontrust.com/
143.204.42.158200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP 143.204.42.158:0
Hash da230bb35bf2787932cc9dc51152d0d8
5b691b0251297d863a06ccf3846e23baa657a909
e7358cb3affbff2559995990a2bb40bd59a819827d8aebfdb9e578efadd896ca
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Sun, 11 Sep 2022 10:45:28 GMT
Server: ECS (dcb/7EA2)
X-Cache: Miss from cloudfront
Via: 1.1 e49f22f18c16784c0f42291e768d1daa.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0bt2u7DRabgz8ba9ZocM3KhhdQ084kxyqKiZI8vGIwNe7TGiOOVegg==
59t5an9ny8.execute-api.eu-west-1.amazonaws.com/prod
143.204.55.7200 OK 0 B URL HTTP/2 59t5an9ny8.execute-api.eu-west-1.amazonaws.com/prod
IP 143.204.55.7:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /prod HTTP/1.1
Host: 59t5an9ny8.execute-api.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: http://world-com.site/
Origin: http://world-com.site
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/json
content-length: 0
date: Sun, 11 Sep 2022 10:45:28 GMT
x-amzn-requestid: 25287cda-d3af-4d69-849c-71197be8b6f0
access-control-allow-origin: *
access-control-allow-headers: Content-Type,X-Amz-Date,Authorization,X-Api-Key,X-Amz-Security-Token
x-amz-apigw-id: YSpbTFjvDoEFnHA=
access-control-allow-methods: POST,OPTIONS
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oU3-cEa4NoTHob8C2d9ntHOBbleUD7-YfNWlpvxg4zm2bytJKx9NFA==
X-Firefox-Spdy: h2
59t5an9ny8.execute-api.eu-west-1.amazonaws.com/prod
143.204.55.7200 OK 4 B URL HTTP/2 59t5an9ny8.execute-api.eu-west-1.amazonaws.com/prod
IP 143.204.55.7:0
File type ASCII text, with no line terminators
Hash 5b3abf9c1aa7556c3a36fea4e695c5d2
3fd967d09a748e1f2b26d6fe562e7155aa87e9de
98c4922bb641c65c7a30b7bcafdf230b9b00b6693631c56146ab25b2786ee4a3
POST /prod HTTP/1.1
Host: 59t5an9ny8.execute-api.eu-west-1.amazonaws.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 607
Origin: http://world-com.site
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/json
content-length: 4
date: Sun, 11 Sep 2022 10:45:28 GMT
x-amzn-requestid: 2e68ba33-6338-4d1f-80d3-c4b51a4c5ceb
access-control-allow-origin: *
x-amz-apigw-id: YSpbVGXRDoEFwYQ=
x-amzn-trace-id: Root=1-631dbc48-38cce9ec2d9f2ff379e071df;Sampled=0
x-cache: Miss from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: oNOr3qjp38PRCsbLtlbtGvsGPwn2ZFyjXeium47arwlUPDXRSJBRiA==
X-Firefox-Spdy: h2
fast.wistia.com/assets/external/allIntegrations.js
151.101.86.110200 OK 6.2 kB URL HTTP/1.1 fast.wistia.com/assets/external/allIntegrations.js
IP 151.101.86.110:0
File type ASCII text, with very long lines (21488), with no line terminators
Hash 479c3d43fc32adefbc7b0a21729a27de
03bc95db80884138c4c02e5ee4d0289c02fc3313
9da99cb5d6f56332e08a440bdecef3faf7788190b607e9fe9bb736028289301c
GET /assets/external/allIntegrations.js HTTP/1.1
Host: fast.wistia.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://world-com.site/
HTTP/1.1 200 OK
Access-Control-Allow-Origin: *
Cache-Control: public, max-age=3600
Content-Encoding: gzip
Content-Type: application/javascript
ETag: "631b56d7-1862"
Last-Modified: Fri, 09 Sep 2022 15:08:07 GMT
Timing-Allow-Origin: *
Via: 1.1 varnish, 1.1 varnish
Content-Length: 6242
Accept-Ranges: bytes
Date: Sun, 11 Sep 2022 10:45:28 GMT
Age: 710
Connection: keep-alive
X-Served-By: cache-iad-kjyo7100086-IAD, cache-bma1635-BMA
X-Cache: HIT, HIT
X-Cache-Hits: 1, 1
X-Timer: S1662893129.530273,VS0,VE1
Vary: Accept-Encoding
Strict-Transport-Security: max-age=0
X-ECMA-V: modern
X-Browser: firefox
X-Browser-Version: 96
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7075
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 10:45:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7075
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 10:45:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7075
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 10:45:28 GMT
Connection: keep-alive
r3.o.lencr.org/
95.101.11.115200 OK 503 B IP 95.101.11.115:0
ASN #20940 Akamai International B.V.
Hash 477fd76de0b69553430d504fe527cc06
88fe80a099e610212f27427ae6fd5b4e03b3df16
f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748"
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7075
Expires: Sun, 11 Sep 2022 12:43:23 GMT
Date: Sun, 11 Sep 2022 10:45:28 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6d8445a-180c-442b-bbf8-b1d1c1f11deb.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6d8445a-180c-442b-bbf8-b1d1c1f11deb.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2293bd4f960ea1c141a1c96101c228e4
a58b35b79806c3af981c5cfb219364a6b85ccaf8
1a6c5b918de60160d9b2aa5c7ec8dffc675a08380ef7f391999d6b2af6a08071
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6d8445a-180c-442b-bbf8-b1d1c1f11deb.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7595
x-amzn-requestid: 30d23edb-7ec6-4c70-a0fd-bffa7fe29dba
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0erTHdvIAMFo-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ab14-1e49dd2e1a5928017d542cf9;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:04:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: W6iet4rnG60OsdntFwXVqReNaCwNl8qYQhzN1MC1GVqbUC2dOKDzZA==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 07:31:30 GMT
age: 11638
etag: "a58b35b79806c3af981c5cfb219364a6b85ccaf8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7d1d7d9-dc6d-4841-a150-2f22abc6729a.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7d1d7d9-dc6d-4841-a150-2f22abc6729a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd709702d50113aec782e45bb5ecb2a8
c5fcae1c388ff8f44b9e47734b6b65fd4e0fd856
0ec10618a7f2f77cd339e9d1b4e58d29c1c9ad1575f434c813c1d3014c90bf76
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe7d1d7d9-dc6d-4841-a150-2f22abc6729a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9990
x-amzn-requestid: 852e5710-d962-4b43-ad48-9530797ab548
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YBsisHAioAMFqsQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6316f477-7de59a7d3553767c45e06ed2;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 07:19:19 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: edjwyX-124C71X-bNNnD2tP70Y4XuhX7G5LKmkKjU4IclvCekOOtgQ==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 35575576af8067e30cfb17c6b9fde8e2.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 15:33:37 GMT
age: 69111
etag: "c5fcae1c388ff8f44b9e47734b6b65fd4e0fd856"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
34.120.237.76200 OK 6.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c35b7f5f8e1b0b24570a41b7d18533a
c5b82c9d77851820b8d206573d5c03cd36d27a20
bb2456b31c48e6ebc9595c2bb9972b74531e93dd02ec4571d5af614f2d116ec7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa9ba7347-38d8-40e3-9b29-41a380f99ed5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6109
x-amzn-requestid: 271b006e-9d17-46ba-9eed-22fd638c4e9e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ2AhHZgIAMFlSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d039c-444e7d6b22f2a08f7215a986;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:37:32 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: rnkjEbkwVPPR1stEuMkkuFcQ4WZMDjsuYKA46ZcxejvotwfCG6huhQ==
via: 1.1 9b311162717b41c968f6f00426d88aaa.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:43:03 GMT
age: 46945
etag: "c5b82c9d77851820b8d206573d5c03cd36d27a20"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
34.120.237.76200 OK 8.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash eee5b4d617dab6f10d7053f5c4f4e98e
6c728c56797ba921e8001919df4d36e56dd37e54
76a53e2c81ec8da2bc469760b2c57098d587c6a36fa70e5b7c743a224a47d362
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4d72ce1b-951e-4f1f-97b1-db99c399d5f9.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8171
x-amzn-requestid: 39c8c044-5287-47bb-8731-5706c27a73e3
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0feFFtkIAMF9NA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311ac59-246e1b7e019965f74db95df0;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 07:10:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FVraudPaXgrkcCLGkaxntfC3h4XtbSfnRgzyp72Wgwb-WgWkDwjYPw==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 1a53057db389e96b4ef1bfbc925dde1c.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 11:24:10 GMT
age: 84078
etag: "6c728c56797ba921e8001919df4d36e56dd37e54"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
34.120.237.76200 OK 8.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e407da4d97d497925b1ab523fd416787
166741631fb93d109b18dde6d316b3fa3276aa8f
707460c02438da6114e35e0b6569d42c0f3fb747f8cb51002f4d52bedbcffa61
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fefa6ec5a-4e0b-4c94-b9da-4836fbaa107b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8485
x-amzn-requestid: a56c9282-2786-4ae7-9fc2-0468bcc820a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YQ1k_FM1oAMFZ2Q=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631d02ec-753cc4f121c9b77d22bb82b5;Sampled=0
x-amzn-remapped-date: Sat, 10 Sep 2022 21:34:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Mfmj40aUc8l5RPk56M-pbqTwhde_HzYcmN5MDrfv-WFPhbpoShWYNw==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 ebe4011a81a36e2bf678f69ce1711330.cloudfront.net (CloudFront), 1.1 google
date: Sat, 10 Sep 2022 21:57:28 GMT
age: 46080
etag: "166741631fb93d109b18dde6d316b3fa3276aa8f"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
34.120.237.76200 OK 7.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4ec2646c56c4c522f0744768ad20342b
ad1d9eee90556a359547dc7cbb6758aee2c804cd
0bf9eaa4420bf6290535fd23895c6c723c7de6b849995ba83774532862cfe8b4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F481e7fcb-66df-4e59-8130-9579a79eca9c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7635
x-amzn-requestid: dbd07cc7-d0f6-4500-83c6-b19fa9fa2e3d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xt5xDEfUIAMFYXQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630f09a0-3771b23118f3711e5caca699;Sampled=0
x-amzn-remapped-date: Wed, 31 Aug 2022 07:11:28 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ILut4hEDJbs6jNr3wpPST1HgAYMabIT7cdZebRFETn8lL_QfS92KBA==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 567b44ed19c8caed2570b7bcd8c70034.cloudfront.net (CloudFront), 1.1 google
date: Sun, 11 Sep 2022 00:50:01 GMT
age: 35727
etag: "ad1d9eee90556a359547dc7cbb6758aee2c804cd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
lp.cybeready.net/common/recaptchaTokenProd.min.js
104.26.8.233200 OK 0 B URL HTTP/2 lp.cybeready.net/common/recaptchaTokenProd.min.js
IP 104.26.8.233:0
GET /common/recaptchaTokenProd.min.js HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://world-com.site/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: application/javascript
x-amz-id-2: zBV3t9nyp9kgIf1X5j8vq6+iKE3vxM9iQNknMzytq6nlLTrXMY//EhBWlLKsdHGh6DPveH9Qx9A=
x-amz-request-id: 13Z1HKZDFANE951D
last-modified: Fri, 10 Apr 2020 06:37:41 GMT
etag: W/"e52540b83f9bec58efa10b51618140a4"
cache-control: max-age=14400
cf-cache-status: HIT
age: 3223
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4ByTOEqjiATWKfhoNq3OUoIUwo9M%2BGHo8IFa%2FUERIna1iDu54sdcy8MOysUuM%2B369PIV9mzlgzHRhsZOdkRdqSLWNc0b3NabITz5W%2FakVNih5jpx%2Fmr6KOGe6tFDtZhHZC8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd0591b890b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cybeready.net/common/Standard-WDSPRD/opensans.css
104.26.8.233200 OK 0 B URL HTTP/2 lp.cybeready.net/common/Standard-WDSPRD/opensans.css
IP 104.26.8.233:0
GET /common/Standard-WDSPRD/opensans.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=10629
etag: W/"0c1494c55b7257bfd8619027c8e7a172"
last-modified: Sun, 17 Jun 2018 12:12:28 GMT
x-amz-id-2: Vz9YfbGE+IRp/XmDhjXFkocdxFOqHkcRGd3g5S/l76CZGC+L1nOJaiWoxrMY/qI1TdZLlIhxMZY=
x-amz-meta-s3b-last-modified: 20180617T121207Z
x-amz-request-id: 13ZEKKNRXAEMFH4R
cache-control: max-age=14400
cf-cache-status: HIT
age: 3223
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dFoIxzdqvaD3uvL6wKtOZQNS5KwrZ2NJz5Q0lhGioRvojhB5jMZrdZw2fLNC7tlqvr0%2FPS4uvfkK1ODlHgTw5bPQDcywJu1eOQ%2F9%2F3oFJYk1BG8%2Fe%2B4Ne%2FtgwdVqtFcC0jA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd058bb170b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cybeready.net/Lv/RamatGanMuni/settings.css
104.26.8.233200 OK 0 B URL HTTP/2 lp.cybeready.net/Lv/RamatGanMuni/settings.css
IP 104.26.8.233:0
GET /Lv/RamatGanMuni/settings.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=378
etag: W/"d079ba42a75b17af0fd9bed4c261bc3d"
last-modified: Tue, 21 Dec 2021 18:08:28 GMT
x-amz-id-2: 9KpL+kRBYCz2eYsSF5MqeoT3f1mXDkeVxI1YOgHXjf5Q3+5AaWHsH0WbjRbd/Tf4z8TLDk12zzA=
x-amz-meta-s3b-last-modified: 20211221T174526Z
x-amz-meta-sha256: 00f25f52b0061c6fa23a568f97d371272012a34d6df843f91a1095b9a40e364e
x-amz-request-id: 9ASPZPV2FYMBAMYE
cache-control: max-age=14400
cf-cache-status: HIT
age: 3085
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yHZH%2FmVz6GXID8%2FycvAmFzf8Rg33zZG3oC8WSRpF1%2FDzoZFvGDxERQWHsEbVrUTt9PtkMLDEoW9bU%2BX4Gkiqn8jHXrkJCwbLxJibFpIQ5Wuu1fftFT9Mp82E1eUMYbSIfr4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd058bb1d0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2
lp.cybeready.net/common/Standard-WDSPRD/opentip.css
104.26.8.233200 OK 0 B URL HTTP/2 lp.cybeready.net/common/Standard-WDSPRD/opentip.css
IP 104.26.8.233:0
GET /common/Standard-WDSPRD/opentip.css HTTP/1.1
Host: lp.cybeready.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://world-com.site/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sun, 11 Sep 2022 10:45:26 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=9265
etag: W/"2d98837514ca8f2f809d98a6971c8822"
last-modified: Thu, 30 Mar 2017 07:43:01 GMT
x-amz-id-2: d0VnYnZO/oKRnlR9bXyyFySeoj+1t1B2MI1/ITxY6e92Fwvxlcink9CQZ7OBvQGwVrMaXjcdmOM=
x-amz-meta-s3b-last-modified: 20161222T124714Z
x-amz-request-id: J0N6V5S0875EXBTE
cache-control: max-age=14400
cf-cache-status: HIT
age: 3223
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=4MCTguHHwj9Oe5nWypxfe%2B04MaE0RxO4SwaTcyQ2skcorpEKKz5KCrgSMoAH4vp36wqRO4Q6EayX5qri%2F7VdqBqW61trmvz%2FUw402T7lmcfcgUH3K1FgRcZ%2FUrnEZiFAb08%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 748fd058bb1b0b69-OSL
content-encoding: br
X-Firefox-Spdy: h2