firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-stale=0
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 15:06:44 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: n-YXrKf_4i3nY5wl2EV6lVKaQmNV59UNQjyiVYLRU0K1RnTItabvOw==
Age: 2766
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash 9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4371
Expires: Tue, 04 Oct 2022 17:05:41 GMT
Date: Tue, 04 Oct 2022 15:52:50 GMT
Connection: keep-alive
expotb.com/suu/ivliamoiodntprlte
35.204.112.174200 OK 43 kB URL HTTP/2 expotb.com/suu/ivliamoiodntprlte
IP 35.204.112.174:0
ASN #396982 GOOGLE-CLOUD-PLATFORM
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 1a308105e21d982a22cc9b27717c6e7f
4899543fcabc545cecd5d8a810ff47d6d212e1a3
e06e5ce00d9e7cf012dc41afe4e9d6b22c8c226e8488bd3cb96a24af240ca002
Analyzer Verdict Alert fortinet Malware
quad9 Sinkholed
GET /suu/ivliamoiodntprlte HTTP/1.1
Host: expotb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
content-type: text/html; charset=utf-8
date: Tue, 04 Oct 2022 15:52:50 GMT
server: Caddy
content-length: 42617
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 1d8cf7c8865ed1078c19a98771ad34ca.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: K6MBdqJmFv8IbQoizCPhUKlYbU9Jryv3wgMmKM-4yUlzgXBgRT9OSA==
age: 37463
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
104.17.25.14200 OK 6.6 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/popper.js/1.14.7/umd/popper.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (20831)
Hash 368c425fc94c424e1688caadefbed981
13d24c22c199ef6668d758434819f44307a65094
ed9c7a83e1c1300a93ecd08807a736ebe7b87ab8262a40bc7e3859d00a46a102
GET /ajax/libs/popper.js/1.14.7/umd/popper.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://expotb.com
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 6646
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03fa9-520c"
last-modified: Mon, 04 May 2020 16:15:37 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 519843
expires: Sun, 24 Sep 2023 15:52:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IJrbPVDv%2FQ4JKrB7W9lmQrdZctb%2FaqCvlDvDjACwCiTe7XK6Pr%2Fx4jehW0suE6cGQOdTMbddFsRbPSStG4rS2RxwHHmzjLhugziifhRytoJ0C%2B5W7Zb%2BolF7m1mmftq0T06ZnKZX"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 754f16457e030b3d-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.mailerlite.com/images/icons/default/round/white/linkedin.png
104.18.34.106200 OK 1.2 kB URL HTTP/2 cdn.mailerlite.com/images/icons/default/round/white/linkedin.png
IP 104.18.34.106:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 08cbd6c8927715e23b22dbf752b49c2a
c9c59ba4df06ec7c82e25abeed4437adc3a085a9
8af17f5388241c1ee1c16a3430a623bac66ff36731c4c5e3a4f720a7682782f4
GET /images/icons/default/round/white/linkedin.png HTTP/1.1
Host: cdn.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: image/webp
content-length: 1244
access-control-allow-methods: GET
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=2370
content-disposition: inline; filename="linkedin.webp"
etag: "6245ae9f-942"
last-modified: Thu, 31 Mar 2022 13:37:35 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept
cf-cache-status: HIT
age: 3488
expires: Sun, 09 Oct 2022 15:52:50 GMT
cache-control: public, max-age=432000
accept-ranges: bytes
server: cloudflare
cf-ray: 754f1645da07b4ed-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.11.0/baguetteBox.min.css
104.17.25.14200 OK 805 B URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.11.0/baguetteBox.min.css
IP 104.17.25.14:0
File type ASCII text, with very long lines (3498)
Hash c68fb8e0baf1c6ee1948027237d2e857
c70d708f17dd753de89fc1860daf8fdf5b737577
fd18e7d46a9204c220d558e6504fe98ed70789acca7016fe95e5d07abd363e1c
GET /ajax/libs/baguettebox.js/1.11.0/baguetteBox.min.css HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: text/css; charset=utf-8
content-length: 805
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d72-e19"
last-modified: Mon, 04 May 2020 16:06:10 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 551870
expires: Sun, 24 Sep 2023 15:52:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FjK3%2Fbbul4QuYsPMOC%2FSfeF6%2Bv7RSDfq4ZPwZIs%2BxUhgu%2FBBBsz6E8kgi5apkaivp50IbsLvndz9QzN9khMDX9r%2B5sT343NF3u0C%2Bkpwozc1nm5qnuAy9tpvls7flLEKBULC8hKe"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 754f1645eba50b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.mailerlite.com/images/icons/default/round/white/facebook.png
104.18.34.106200 OK 1.0 kB URL HTTP/2 cdn.mailerlite.com/images/icons/default/round/white/facebook.png
IP 104.18.34.106:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 81174ed724f0d165495a1fffb6f174b1
a0b369fffdddbb3523a90490f14261cbe1182481
89ef076daf37adb20ceb3457b58a46b914775cb8cd18e33a7443da926cc1e280
GET /images/icons/default/round/white/facebook.png HTTP/1.1
Host: cdn.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: image/webp
content-length: 1022
access-control-allow-methods: GET
access-control-allow-origin: *
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=1976
content-disposition: inline; filename="facebook.webp"
etag: "6245ae9f-7b8"
last-modified: Thu, 31 Mar 2022 13:37:35 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept
cf-cache-status: HIT
age: 2760
expires: Sun, 09 Oct 2022 15:52:50 GMT
cache-control: public, max-age=432000
accept-ranges: bytes
server: cloudflare
cf-ray: 754f1645da08b4ed-OSL
X-Firefox-Spdy: h2
cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.11.0/baguetteBox.min.js
104.17.25.14200 OK 3.0 kB URL HTTP/2 cdnjs.cloudflare.com/ajax/libs/baguettebox.js/1.11.0/baguetteBox.min.js
IP 104.17.25.14:0
File type ASCII text, with very long lines (9392)
Hash 401f89e67e2be08a5911a382fd881325
3c4dc6a93cb88e405b40448acbece3a0fa6a4038
36705c1bf494b763943c9e5b6f67c2265dd18a0d359293718f18f47abf9e61aa
GET /ajax/libs/baguettebox.js/1.11.0/baguetteBox.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript; charset=utf-8
content-length: 3047
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03d72-2523"
last-modified: Mon, 04 May 2020 16:06:10 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2241585
expires: Sun, 24 Sep 2023 15:52:50 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=62bixD1i6S2ELzO5zyOHmCoXMikVpWYA1oGfBJe6fAlqcY7wtAJOgMjvYao2Nsc8Co9NOQaEDzID8FeVRTs5oqHwmhGw1SzM8zsXmBNkJEIqLkXp5qS1I6A65ewTLRLCfARoVo%2Bd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 754f1645eba90b45-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:52:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/s/gts1d4/XtIg8EYpgzo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/XtIg8EYpgzo
IP 142.250.74.3:0
Hash 8b53a2a28170b49893b1ee0bcf11b186
8f8a8e516d83c58dd166e27ac08df7c72b3b280d
e8746001c7f4593e63213eda7e10c78f67c00ee2e50f7f877278bf7729b7caba
POST /s/gts1d4/XtIg8EYpgzo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:52:50 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=G-Z7EC9NVYV3
142.250.74.168200 OK 76 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-Z7EC9NVYV3
IP 142.250.74.168:0
File type ASCII text, with very long lines (21348)
Hash 6f3f7f3f85ef1b71c71d6c8ff1cb510c
9a0841f0230508a3badc1f679332f769abe70120
994f025bd80ee485db0e037baf03da05add06905405f21322829fcc0dec28f2a
GET /gtag/js?id=G-Z7EC9NVYV3 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 15:52:50 GMT
expires: Tue, 04 Oct 2022 15:52:50 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 75765
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=0f54bd8811
104.18.23.52200 OK 2.6 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-font-face.min.css?token=0f54bd8811
IP 104.18.23.52:0
File type ASCII text, with very long lines (27832)
Hash eaaabd3f60063923cd5333eb1d7a20a1
0da69706105e28896a1f6eeaa91d5bec1b82f7f1
f863309ec0ac675409167610ff9776fa9c7620d6ee3592cc0c19d0b883ff2f70
GET /releases/v5.15.4/css/pro-v4-font-face.min.css?token=0f54bd8811 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://expotb.com/
Origin: https://expotb.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/css
content-length: 2603
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-a2b"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: HIT
age: 108224
accept-ranges: bytes
server: cloudflare
cf-ray: 754f1646cf48b527-OSL
X-Firefox-Spdy: h2
assets.mailerlite.com/js/universal.js
104.18.34.106200 OK 9.6 kB URL HTTP/2 assets.mailerlite.com/js/universal.js
IP 104.18.34.106:0
File type ASCII text, with very long lines (38782)
Hash aba10970f28f5d8b7143de0a635dfb02
7854e8f2bd2472b73946a06287b5644fa43e9aaa
625e4e1732ad1c91e3ebae348545fbd650e230f50a0d497cff429cf64fd7daac
GET /js/universal.js HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript; charset=utf-8
last-modified: Mon, 03 Oct 2022 14:31:03 GMT
etag: W/"633af227-97a4"
cache-control: public, max-age=432000
age: 337
x-cache: HIT
x-cache-hits: 44
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 09 Oct 2022 15:52:50 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f1645de34b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
104.18.34.106200 OK 45 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 104.18.34.106:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /fonts/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://expotb.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: font/woff2
content-length: 44856
cf-ray: 754f1646fb6cb4ed-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 894957
cache-control: public, max-age=31536000
expires: Wed, 04 Oct 2023 15:52:51 GMT
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
104.18.34.106200 OK 16 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP 104.18.34.106:0
File type Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Hash 15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /fonts/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://expotb.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: font/woff2
content-length: 15744
cf-ray: 754f1646fb6fb4ed-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 894957
cache-control: public, max-age=31536000
expires: Wed, 04 Oct 2023 15:52:51 GMT
last-modified: Wed, 11 May 2022 19:24:48 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
104.18.34.106200 OK 46 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP 104.18.34.106:0
File type Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Hash c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /fonts/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://expotb.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: font/woff2
content-length: 46524
cf-ray: 754f16470b7db4ed-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 415078
cache-control: public, max-age=31536000
expires: Wed, 04 Oct 2023 15:52:51 GMT
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=0f54bd8811
104.18.23.52200 OK 4.2 kB URL HTTP/2 ka-p.fontawesome.com/releases/v5.15.4/css/pro-v4-shims.min.css?token=0f54bd8811
IP 104.18.23.52:0
File type ASCII text, with very long lines (26366)
Hash 7fd743485fa194e25e2a207bff6c258a
97c999d752b95ee1ed6271a29aa58109dc17281e
dd939d69a23f003d49287291f0bcb59df58119d60bc5f14a81cbfd957894f6dc
GET /releases/v5.15.4/css/pro-v4-shims.min.css?token=0f54bd8811 HTTP/1.1
Host: ka-p.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://expotb.com/
Origin: https://expotb.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/css
content-length: 4194
access-control-allow-origin: *
cache-control: max-age=31556926
content-encoding: gzip
etag: "610ae215-1062"
last-modified: Wed, 04 Aug 2021 18:53:09 GMT
vary: Origin, Accept-Encoding, Access-Control-Request-Headers, Access-Control-Request-Method
cf-cache-status: MISS
accept-ranges: bytes
server: cloudflare
cf-ray: 754f1646cf4fb527-OSL
X-Firefox-Spdy: h2
fonts.mailerlite.com/css?family=Roboto:400,400i,700,700i|Merriweather:400,900i,900,700i,700,300,300i,400i|Lato:400,400i,700,700i|Montserrat:400,400i,700,700i|Montserrat+Alternates:400,400i,700,700i|Open+Sans:400,400i,700,700i|PT+Sans:400,400i,700,700i|Source+Sans+Pro:400,400i,700,700i|Roboto+Slab:400,700|Ubuntu:400,400i,700,700i|Titillium+Web:400,400i,700,700i|Nunito:400,400i,700,700i|Cabin:400,400i,700,700i|Oswald:400,700|Work+Sans:400,700|Exo:400,400i,700,700i|Comfortaa:400,700|Raleway:400,400i,700,700i|Oxygen:400,700|Poppins:400,400i,700,700i|Playfair+Display:400,400i,700,700i|Shadows+Into+Light+Two|PT+Serif:400,400italic,700,700italic|Josefin+Slab:400,400italic,700,700italic|Arvo:400,700,700italic,400italic|Vollkorn:400,400italic,700,700italic|Karla:400,400italic,700,700italic|Noto+Sans:400,400italic,700,700italic|Barlow+Condensed:400,400italic,700,700italic|Anton|Inter:400,700|Abril+Fatface|Yeseva+One|Poiret+One|Marck+Script|Pacifico|Fira+Sans|Rubik&subset=cyrillic,cyrillic-ext,latin-ext
104.18.34.106200 OK 61 kB URL HTTP/2 fonts.mailerlite.com/css?family=Roboto:400,400i,700,700i|Merriweather:400,900i,900,700i,700,300,300i,400i|Lato:400,400i,700,700i|Montserrat:400,400i,700,700i|Montserrat+Alternates:400,400i,700,700i|Open+Sans:400,400i,700,700i|PT+Sans:400,400i,700,700i|Source+Sans+Pro:400,400i,700,700i|Roboto+Slab:400,700|Ubuntu:400,400i,700,700i|Titillium+Web:400,400i,700,700i|Nunito:400,400i,700,700i|Cabin:400,400i,700,700i|Oswald:400,700|Work+Sans:400,700|Exo:400,400i,700,700i|Comfortaa:400,700|Raleway:400,400i,700,700i|Oxygen:400,700|Poppins:400,400i,700,700i|Playfair+Display:400,400i,700,700i|Shadows+Into+Light+Two|PT+Serif:400,400italic,700,700italic|Josefin+Slab:400,400italic,700,700italic|Arvo:400,700,700italic,400italic|Vollkorn:400,400italic,700,700italic|Karla:400,400italic,700,700italic|Noto+Sans:400,400italic,700,700italic|Barlow+Condensed:400,400italic,700,700italic|Anton|Inter:400,700|Abril+Fatface|Yeseva+One|Poiret+One|Marck+Script|Pacifico|Fira+Sans|Rubik&subset=cyrillic,cyrillic-ext,latin-ext
IP 104.18.34.106:0
Hash d227c6079441ae71fbcf40f4a8b34746
52505914a06d402c0fd206fb316f21802bc47daf
be9f70570d61b2014f479a53b3bc1905f1cbd5ed7c24069f2ee0c57b9bd964fd
GET /css?family=Roboto:400,400i,700,700i|Merriweather:400,900i,900,700i,700,300,300i,400i|Lato:400,400i,700,700i|Montserrat:400,400i,700,700i|Montserrat+Alternates:400,400i,700,700i|Open+Sans:400,400i,700,700i|PT+Sans:400,400i,700,700i|Source+Sans+Pro:400,400i,700,700i|Roboto+Slab:400,700|Ubuntu:400,400i,700,700i|Titillium+Web:400,400i,700,700i|Nunito:400,400i,700,700i|Cabin:400,400i,700,700i|Oswald:400,700|Work+Sans:400,700|Exo:400,400i,700,700i|Comfortaa:400,700|Raleway:400,400i,700,700i|Oxygen:400,700|Poppins:400,400i,700,700i|Playfair+Display:400,400i,700,700i|Shadows+Into+Light+Two|PT+Serif:400,400italic,700,700italic|Josefin+Slab:400,400italic,700,700italic|Arvo:400,700,700italic,400italic|Vollkorn:400,400italic,700,700italic|Karla:400,400italic,700,700italic|Noto+Sans:400,400italic,700,700italic|Barlow+Condensed:400,400italic,700,700italic|Anton|Inter:400,700|Abril+Fatface|Yeseva+One|Poiret+One|Marck+Script|Pacifico|Fira+Sans|Rubik&subset=cyrillic,cyrillic-ext,latin-ext HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.mlcdn.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: text/css; charset=utf-8
access-control-allow-origin: *
cache-control: private, max-age=86400, stale-while-revalidate=604800
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f16460a4eb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
storage.mlcdn.com/account_image/54768/RQPVUSxCDFjc0XicqAJr2XpvLCjLsQbkxzaGYxYo.png
34.120.241.29200 OK 5.9 kB URL HTTP/2 storage.mlcdn.com/account_image/54768/RQPVUSxCDFjc0XicqAJr2XpvLCjLsQbkxzaGYxYo.png
IP 34.120.241.29:0
File type PNG image data, 292 x 291, 8-bit colormap, non-interlaced\012- data
Hash 429def42456d64dcf8486d7862e95b3b
5799fbdc97d29c91179a2b70b9883cbc2e71d378
b89814fb6b4963bd851cb5f54c10de458250e7a42bf625da2c77fbd0dfc9d373
GET /account_image/54768/RQPVUSxCDFjc0XicqAJr2XpvLCjLsQbkxzaGYxYo.png HTTP/1.1
Host: storage.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-guploader-uploadid: ADPycdtBgn7Hmc2FxSBakldBlJm4rIbubrdgHL2RIOTs7pP5EeJLrQGIVa-w_SWFGOSyWf2U7H-1xLjc-S0GV7VVo54amtz26sL9
expires: Tue, 04 Oct 2022 16:52:50 GMT
date: Tue, 04 Oct 2022 15:52:50 GMT
cache-control: public, max-age=3600
last-modified: Thu, 28 Jul 2022 20:42:46 GMT
etag: "429def42456d64dcf8486d7862e95b3b"
x-goog-generation: 1659040966494509
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 5859
content-type: image/png
x-goog-hash: crc32c=Qp37/w==, md5=Qp3vQkVtZNz4SG14YulbOw==
x-goog-storage-class: REGIONAL
accept-ranges: bytes
content-length: 5859
server: UploadServer
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/s/gts1d4/XtIg8EYpgzo
142.250.74.3200 OK 471 B URL HTTP/1.1 ocsp.pki.goog/s/gts1d4/XtIg8EYpgzo
IP 142.250.74.3:0
Hash 8b53a2a28170b49893b1ee0bcf11b186
8f8a8e516d83c58dd166e27ac08df7c72b3b280d
e8746001c7f4593e63213eda7e10c78f67c00ee2e50f7f877278bf7729b7caba
POST /s/gts1d4/XtIg8EYpgzo HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:52:51 GMT
Cache-Control: public, max-age=14400
Server: scaffolding on HTTPServer2
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
assets.mailerlite.com/images/favicon-32x32.png
104.18.34.106200 OK 98 B URL HTTP/2 assets.mailerlite.com/images/favicon-32x32.png
IP 104.18.34.106:0
File type RIFF (little-endian) data, Web/P image\012- data
Hash 6e16a6177bc8f4fe28836618f4865ee7
9cd6ce49ecc770395d072ac493ab3b55ae75d514
93c4221e2e67dc6075531998d814d2a1ede443276c835d2ca1c70b2a0b83e49d
GET /images/favicon-32x32.png HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: image/webp
content-length: 98
age: 182
cache-control: public, max-age=432000
cf-bgj: imgq:85,h2pri
cf-polished: origFmt=png, origSize=274
content-disposition: inline; filename="favicon-32x32.webp"
etag: "633af227-112"
last-modified: Mon, 03 Oct 2022 14:31:03 GMT
strict-transport-security: max-age=15724800; includeSubDomains
vary: Accept
x-cache: HIT
x-cache-hits: 3
cf-cache-status: HIT
expires: Sun, 09 Oct 2022 15:52:51 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 754f1648db08b50b-OSL
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 15:29:33 GMT
Expires: Tue, 04 Oct 2022 16:18:32 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 dac7cf040932e0c072eeed10afdd7b3e.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: zyTlS0K0i5AezQmuU1z9pGlCsoXI5eXYQcg4sDxsHeo9rghAJfIJOA==
Age: 1398
assets.mailerlite.com/jsonp/54768/pages/66873842558043193/pageview?session_id=1664898770499/6397&cache=1664898770499314555038462281
104.18.34.106200 OK 2 B URL HTTP/2 assets.mailerlite.com/jsonp/54768/pages/66873842558043193/pageview?session_id=1664898770499/6397&cache=1664898770499314555038462281
IP 104.18.34.106:0
File type JSON data\012- , ASCII text, with no line terminators
Hash d751713988987e9331980363e24189ce
97d170e1550eee4afc0af065b78cda302a97674c
4f53cda18c2baa0c0354bb5f9a3ecbe5ed12ab4d8e11ba873c2f11161202b945
GET /jsonp/54768/pages/66873842558043193/pageview?session_id=1664898770499/6397&cache=1664898770499314555038462281 HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: application/json
content-length: 2
cache-control: immutable, max-age=60, no-cache, public
access-control-allow-origin: *
x-cache: MISS
x-cache-hits: 0
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: MISS
last-modified: Tue, 04 Oct 2022 15:52:51 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f1647284fb50b-OSL
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 16ebfb2aa621547ecf581e26fc828a7d
f78993331f6f5b8af6409a9ad2fc50b77070f68a
0f81fd1d6be9ccc04b74f0348aafe642c7b9ab7dffb7e8a679b5d67cc2e5fac3
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2642
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 15:52:51 GMT
Last-Modified: Tue, 04 Oct 2022 15:08:49 GMT
Server: ECS (ska/F71A)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.155.157.101101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.155.157.101:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 4ETOw/Gn7OeyXBuaJydhkw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: PTYM2VtbluFhc2CYLY4dEEZrQNE=
region1.google-analytics.com/g/collect?v=2&tid=G-Z7EC9NVYV3>m=2oe9s0&_p=459708397&cid=1016438383.1664898771&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664898770&sct=1&seg=0&dl=https%3A%2F%2Fexpotb.com%2Fsuu%2Fivliamoiodntprlte&dt=Expo%20Travel%20Bureau%20-%20Home&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-Z7EC9NVYV3>m=2oe9s0&_p=459708397&cid=1016438383.1664898771&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664898770&sct=1&seg=0&dl=https%3A%2F%2Fexpotb.com%2Fsuu%2Fivliamoiodntprlte&dt=Expo%20Travel%20Bureau%20-%20Home&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-Z7EC9NVYV3>m=2oe9s0&_p=459708397&cid=1016438383.1664898771&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664898770&sct=1&seg=0&dl=https%3A%2F%2Fexpotb.com%2Fsuu%2Fivliamoiodntprlte&dt=Expo%20Travel%20Bureau%20-%20Home&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://expotb.com
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://expotb.com
date: Tue, 04 Oct 2022 15:52:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4835
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:52:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4835
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:52:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4835
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:52:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4835
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:52:52 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4835
Expires: Tue, 04 Oct 2022 17:13:27 GMT
Date: Tue, 04 Oct 2022 15:52:52 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
34.120.237.76200 OK 6.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 206fb65e75dbadf119512f71e0b78402
58ff0bf8ce7528b303d28bab01a80ad721705569
56c8d5f3b3060ee54bf81995269b86c070855d8c33bf437161339a45b309703f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 40199
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
34.120.237.76200 OK 9.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d8c08f8066cc732de8befd6ccd629a95
22aab05208a01ae5def4d63dc145085630f57bcb
f8a560a0563518d992d0bd2655d2b5c406435a18e874ca00b51374d2ff901770
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 64618
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
34.120.237.76200 OK 4.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6779181f9c06975f2a662da743893939
585e7146fd24cdc2496b05baafea04091dc541e2
8e9a9f92fd89b7cdce77884ccd76b83ab82d28f125ebfc1cb0d371d4046b7985
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 64566
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
34.120.237.76200 OK 5.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6c6882c60d7ca6f918c77104e3ad1d52
20ef861be49c652a938e0145e4ca3a60159367e2
861f5870990fbd2939d151ae18384cf311e87067ca9a50818efe0c2d51b83088
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 62613
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f62719b24a32198c6f462a0a0412ac98
d893d8035379e06e53e365b9f47f5da40bff932b
ca863affca1559e92e415a4de2e78e4b4c1ec4cf8e8549693499c6f79bd27975
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6bf68975-a099-4d4b-9abd-6e684653439d.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10878
x-amzn-requestid: a849d918-ec40-47d4-93cb-e938b010bd50
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpJKGAPIAMFSiw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556d-242a8d2208b6574c34063c1f;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:37 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 40cLnZvUr45pWmnT6qZgZu13Y1pyeycMEK-m9ALI1LVo2Wpysjt7Vw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 32d624dbeb2a8b7f24dbe49007e37c90.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:45:04 GMT
age: 65268
etag: "d893d8035379e06e53e365b9f47f5da40bff932b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
34.120.237.76200 OK 12 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 54b3ef7aa50273b78b59c24511b0c1f9
e2ea2ef6805e391c497e62e101e76a0bdecfce64
296e8954022d5160137b3e02ab5085a15cee7c23cd6d4ca61b36880706062457
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fec31ab6c-46f2-4d77-a807-9f14bb5073bc.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11955
x-amzn-requestid: ce6bbe93-95b0-4b6e-a8bc-012796485e67
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Zcqb9FUtoAMF0WQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b577f-59dc0a18523f900a059aa5df;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:43:27 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: tJwzKfs7HnQ7dVcINwnlzxTChXiEi4JPj8jrS8p5KhurRx_o3ZVOZQ==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 9c675215120a4ade8754c4357ef2f3ea.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
etag: "e2ea2ef6805e391c497e62e101e76a0bdecfce64"
content-type: image/jpeg
age: 63713
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
bucket.mlcdn.com/a/0/152/images/90fb616446a69ac68af18b177a748bab85d307cd.jpeg
104.22.7.203200 OK 124 kB URL HTTP/2 bucket.mlcdn.com/a/0/152/images/90fb616446a69ac68af18b177a748bab85d307cd.jpeg
IP 104.22.7.203:0
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1369x1050, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Size 124 kB (124124 bytes)
Hash e7bcc096bc669dfb93c7af7f9eab195b
8564edb37aa5bac3285a3506a31334fbce7f9c93
2bcee45371ba35abbc58aef24b6faef3dd2bcc40f4a31a5c6aecd462d2f8db93
GET /a/0/152/images/90fb616446a69ac68af18b177a748bab85d307cd.jpeg HTTP/1.1
Host: bucket.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.mailerlite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:56 GMT
content-type: image/webp
content-length: 124124
cf-bgj: imgq:85,h2pri
cf-polished: qual=85, origFmt=jpeg, origSize=437210
content-disposition: inline; filename="90fb616446a69ac68af18b177a748bab85d307cd.webp"
etag: "54c7c09380306cf746374866ea035d22"
last-modified: Thu, 20 Aug 2020 07:14:59 GMT
vary: Accept
x-amz-id-2: plMg18wBfMzl96fHMSb7WkqX6CGdbsJxeQlhi2ldIyiKpn5HMWb6OCuCKW+3L4QMxxfw38oxhMo=
x-amz-request-id: MY9X6AYB4HMQ30P0
x-amz-version-id: null
cache-control: max-age=691200
cf-cache-status: HIT
age: 789
accept-ranges: bytes
server: cloudflare
cf-ray: 754f1667a973b4ff-OSL
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
104.18.34.106200 OK 16 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP 104.18.34.106:0
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /fonts/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://assets.mailerlite.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:56 GMT
content-type: font/woff2
content-length: 15860
cf-ray: 754f1667bb9fb4ed-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 514751
cache-control: public, max-age=31536000
expires: Wed, 04 Oct 2023 15:52:56 GMT
last-modified: Wed, 11 May 2022 19:24:42 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
104.18.34.106200 OK 7.9 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2
IP 104.18.34.106:0
File type Web Open Font Format (Version 2), TrueType, length 7884, version 1.0\012- data
Hash 9212f6f9860f9fc6c69b02fedf6db8c3
ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b
7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f
GET /fonts/s/poppins/v20/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://assets.mailerlite.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:56 GMT
content-type: font/woff2
content-length: 7884
cf-ray: 754f1667bb9bb4ed-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 3560823
cache-control: public, max-age=31536000
expires: Wed, 04 Oct 2023 15:52:56 GMT
last-modified: Wed, 27 Apr 2022 17:03:52 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
fonts.mailerlite.com/fonts/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
104.18.34.106200 OK 7.8 kB URL HTTP/2 fonts.mailerlite.com/fonts/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2
IP 104.18.34.106:0
File type Web Open Font Format (Version 2), TrueType, length 7816, version 1.0\012- data
Hash 25b0e113ca7cce3770d542736db26368
cb726212d5d525021752a1d8470a0fb593e0c49e
9338e65fc077355c7a87ae0d64cc101e23b9bf8ad78ae65f0f319c857311b526
GET /fonts/s/poppins/v20/pxiByp8kv8JHgFVrLCz7Z1xlFQ.woff2 HTTP/1.1
Host: fonts.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://assets.mailerlite.com
Connection: keep-alive
Referer: https://fonts.mailerlite.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:56 GMT
content-type: font/woff2
content-length: 7816
cf-ray: 754f1667ab8fb4ed-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 3560823
cache-control: public, max-age=31536000
expires: Wed, 04 Oct 2023 15:52:56 GMT
last-modified: Wed, 27 Apr 2022 16:11:40 GMT
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
x-content-type-options: nosniff
server: cloudflare
X-Firefox-Spdy: h2
assets.mailerlite.com/jsonp/54768/forms/67054648254531345/track-view?cache=1664898775996185700668447074
104.18.34.106204 No Content 0 B URL HTTP/2 assets.mailerlite.com/jsonp/54768/forms/67054648254531345/track-view?cache=1664898775996185700668447074
IP 104.18.34.106:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /jsonp/54768/forms/67054648254531345/track-view?cache=1664898775996185700668447074 HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 204 No Content
date: Tue, 04 Oct 2022 15:52:56 GMT
cache-control: no-cache, private
access-control-allow-origin: *
x-cache: MISS
x-cache-hits: 0
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f16697fefb50b-OSL
X-Firefox-Spdy: h2
assets.mlcdn.com/ml/jquery/jquery-3.3.1.slim.min.js
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/ml/jquery/jquery-3.3.1.slim.min.js
IP 104.22.7.203:0
GET /ml/jquery/jquery-3.3.1.slim.min.js HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.mailerlite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/javascript
cf-ray: 754f164a6e48b4ff-OSL
access-control-allow-origin: *
age: 4835
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 14:32:16 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
assets.mlcdn.com/ml/bootstrap/js/bootstrap-4.3.1.min.js
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/ml/bootstrap/js/bootstrap-4.3.1.min.js
IP 104.22.7.203:0
GET /ml/bootstrap/js/bootstrap-4.3.1.min.js HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: text/javascript
cf-ray: 754f1645bff6b4ff-OSL
access-control-allow-origin: *
age: 4484
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 14:38:06 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
assets.mlcdn.com/ml/jquery/jquery-3.4.1.min.js
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/ml/jquery/jquery-3.4.1.min.js
IP 104.22.7.203:0
GET /ml/jquery/jquery-3.4.1.min.js HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript
cf-ray: 754f1645bffbb4ff-OSL
access-control-allow-origin: *
age: 4213
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 14:42:37 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
groot.mailerlite.com/js/w/webforms.min.js?v491724307ca3b85c1c754857e93994e5
104.18.34.106200 OK 0 B URL HTTP/2 groot.mailerlite.com/js/w/webforms.min.js?v491724307ca3b85c1c754857e93994e5
IP 104.18.34.106:0
GET /js/w/webforms.min.js?v491724307ca3b85c1c754857e93994e5 HTTP/1.1
Host: groot.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 28 Sep 2022 15:10:42 GMT
etag: W/"633463f2-2a7a"
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization,X-MailerLite-Account,X-MailerLite-Token
strict-transport-security: max-age=15724800; includeSubDomains
access-control-max-age: 1728000
cf-cache-status: HIT
age: 1926
expires: Sun, 09 Oct 2022 15:52:50 GMT
cache-control: public, max-age=432000
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f1645eaaeb4f7-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.mailerlite.com/jsonp/54768/forms?callback=ml.fn.renderPopupsAndPromotions
104.18.34.106200 OK 0 B URL HTTP/2 assets.mailerlite.com/jsonp/54768/forms?callback=ml.fn.renderPopupsAndPromotions
IP 104.18.34.106:0
GET /jsonp/54768/forms?callback=ml.fn.renderPopupsAndPromotions HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/javascript; charset=UTF-8
cache-control: immutable, max-age=60, public, s-maxage=60
x-cacheable: 1
access-control-allow-origin: *
x-cache: HIT
x-cache-hits: 1
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: EXPIRED
last-modified: Mon, 03 Oct 2022 09:49:07 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f16472859b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.mlcdn.com/ml/bootstrap/css/bootstrap-4.3.1.min.css
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/ml/bootstrap/css/bootstrap-4.3.1.min.css
IP 104.22.7.203:0
GET /ml/bootstrap/css/bootstrap-4.3.1.min.css HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: text/css
cf-ray: 754f16457f7cb4ff-OSL
access-control-allow-origin: *
age: 787
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 15:39:43 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
assets.mlcdn.com/fonts.css?version=1664377
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/fonts.css?version=1664377
IP 104.22.7.203:0
GET /fonts.css?version=1664377 HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: text/css
cf-ray: 754f16459fa0b4ff-OSL
access-control-allow-origin: *
age: 8198
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 13:36:12 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
kit.fontawesome.com/0f54bd8811.js
104.18.23.52200 OK 0 B URL HTTP/2 kit.fontawesome.com/0f54bd8811.js
IP 104.18.23.52:0
GET /0f54bd8811.js HTTP/1.1
Host: kit.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: text/javascript
access-control-allow-headers: accept, accept-langauge, content-language, content-type, fa-kit-token
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
access-control-max-age: 3000
cache-control: max-age=60, public, must-revalidate
strict-transport-security: max-age=31536000; preload
vary: origin, accept-encoding, access-control-request-headers, access-control-request-method
x-request-id: FrpI7OkQsCZzbM4AWq-C
cf-cache-status: HIT
age: 41
server: cloudflare
cf-ray: 754f1645bfa40b02-OSL
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.mailerlite.com/moment/moment.min.js
104.18.34.106200 OK 0 B URL HTTP/2 cdn.mailerlite.com/moment/moment.min.js
IP 104.18.34.106:0
GET /moment/moment.min.js HTTP/1.1
Host: cdn.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 13:37:35 GMT
etag: W/"6245ae9f-d04c"
access-control-allow-origin: *
access-control-allow-methods: GET
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 4993
expires: Sun, 09 Oct 2022 15:52:50 GMT
cache-control: public, max-age=432000
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f1645da05b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.mlcdn.com/gr/js/w/ml_jQuery.inputmask.bundle.min.js?v3.3.1
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/gr/js/w/ml_jQuery.inputmask.bundle.min.js?v3.3.1
IP 104.22.7.203:0
GET /gr/js/w/ml_jQuery.inputmask.bundle.min.js?v3.3.1 HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: application/javascript
cf-ray: 754f164729ccb4ff-OSL
access-control-allow-origin: *
age: 1695
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 15:24:36 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.mailerlite.com/moment-timezone/moment-timezone-with-data.min.js
104.18.34.106200 OK 0 B URL HTTP/2 cdn.mailerlite.com/moment-timezone/moment-timezone-with-data.min.js
IP 104.18.34.106:0
GET /moment-timezone/moment-timezone-with-data.min.js HTTP/1.1
Host: cdn.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:50 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 13:37:35 GMT
etag: W/"6245ae9f-2d417"
access-control-allow-origin: *
access-control-allow-methods: GET
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 3992
expires: Sun, 09 Oct 2022 15:52:50 GMT
cache-control: public, max-age=432000
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f1645da0ab4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.mlcdn.com/fonts.css?version=1662721
104.22.7.203200 OK 0 B URL HTTP/2 assets.mlcdn.com/fonts.css?version=1662721
IP 104.22.7.203:0
GET /fonts.css?version=1662721 HTTP/1.1
Host: assets.mlcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.mailerlite.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/css
cf-ray: 754f164a6e5ab4ff-OSL
access-control-allow-origin: *
age: 1024
cache-control: public, max-age=691200
last-modified: Tue, 04 Oct 2022 15:35:47 GMT
vary: Origin, Accept-Encoding
cf-cache-status: HIT
access-control-allow-methods: HEAD,GET,OPTIONS
server: cloudflare
content-encoding: gzip
X-Firefox-Spdy: h2
cdn.mailerlite.com/ajax/libs/jquery/1.8.3/jquery.min.js
104.18.34.106200 OK 0 B URL HTTP/2 cdn.mailerlite.com/ajax/libs/jquery/1.8.3/jquery.min.js
IP 104.18.34.106:0
GET /ajax/libs/jquery/1.8.3/jquery.min.js HTTP/1.1
Host: cdn.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://assets.mailerlite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: application/javascript
last-modified: Thu, 31 Mar 2022 13:37:35 GMT
etag: W/"6245ae9f-16dc4"
access-control-allow-origin: *
access-control-allow-methods: GET
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1140
expires: Sun, 09 Oct 2022 15:52:51 GMT
cache-control: public, max-age=432000
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f164ad8e4b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.mailerlite.com/css/universal.css
104.18.34.106200 OK 0 B URL HTTP/2 assets.mailerlite.com/css/universal.css
IP 104.18.34.106:0
GET /css/universal.css HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/css
last-modified: Mon, 03 Oct 2022 14:31:04 GMT
etag: W/"633af228-3a3"
cache-control: public, max-age=432000
age: 338
x-cache: HIT
x-cache-hits: 42
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 09 Oct 2022 15:52:51 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f16472856b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2
assets.mailerlite.com/jsonp/54768/forms/DQaMky/content?v=1664885164
104.18.34.106200 OK 0 B URL HTTP/2 assets.mailerlite.com/jsonp/54768/forms/DQaMky/content?v=1664885164
IP 104.18.34.106:0
GET /jsonp/54768/forms/DQaMky/content?v=1664885164 HTTP/1.1
Host: assets.mailerlite.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://expotb.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 04 Oct 2022 15:52:51 GMT
content-type: text/html; charset=UTF-8
cache-control: immutable, max-age=60, public, s-maxage=600
x-cacheable: 1
access-control-allow-origin: *
x-cache: MISS
x-cache-hits: 0
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: MISS
last-modified: Tue, 04 Oct 2022 15:52:51 GMT
vary: Accept-Encoding
server: cloudflare
cf-ray: 754f16488a86b50b-OSL
content-encoding: br
X-Firefox-Spdy: h2