urlquery - report: fair.fairfaxfamilyhealthcare.com/ga/click/2-49380111-161-800-1552-1044-a9cab3b59a-g78fb51e0e

Fully Qualifying Domain Name	Rank	First Seen	Last Seen	IP	Comment
img-getpocket.cdn.mozilla.net (6)	1631	2017-09-01 03:40:57 UTC	2022-09-12 04:05:50 UTC	34.120.237.76
fair.fairfaxfamilyhealthcare.com (1)	0	2022-09-09 16:01:28 UTC	2022-09-12 04:36:04 UTC	95.111.245.92	Unknown ranking
r3.o.lencr.org (6)	344	2020-12-02 08:52:13 UTC	2022-09-12 04:51:47 UTC	95.101.11.115
content-signature-2.cdn.mozilla.net (1)	1152	2020-11-03 12:26:46 UTC	2022-09-12 05:38:13 UTC	143.204.55.25
ocsp.sca1b.amazontrust.com (1)	1015	2017-03-03 15:20:51 UTC	2019-03-27 04:05:54 UTC	143.204.42.88
ocsp.digicert.com (1)	86	2012-05-21 07:02:23 UTC	2022-09-12 05:49:40 UTC	93.184.220.29
fonts.gstatic.com (2)	0	2014-08-29 13:43:22 UTC	2022-09-11 04:58:03 UTC	142.250.74.163	Domain (gstatic.com) ranked at: 540
push.services.mozilla.com (1)	2140	2015-09-03 10:29:36 UTC	2022-09-12 06:04:57 UTC	34.213.140.56
fonts.googleapis.com (3)	8877	2014-07-21 13:19:55 UTC	2022-09-12 05:54:37 UTC	142.250.74.10
firefox.settings.services.mozilla.com (2)	867	2020-06-04 20:08:41 UTC	2022-09-12 05:23:45 UTC	143.204.55.27
contile.services.mozilla.com (1)	1114	2021-05-27 18:32:35 UTC	2022-09-12 04:53:23 UTC	34.117.237.239
ocsp.pki.goog (7)	175	2017-06-14 07:23:31 UTC	2022-09-12 04:51:36 UTC	142.250.74.3
unsub-gc.com (19)	0	2018-02-19 17:45:17 UTC	2022-09-10 10:44:26 UTC	54.88.51.28	Unknown ranking

Scan Date	Severity	Indicator	Comment
2022-09-12	2	fair.fairfaxfamilyhealthcare.com/ga/click/2-49380111-161-800-1552-1044-a9ca (...)	Phishing

Date	UQ / IDS / BL	URL	IP
2022-10-01 05:03:32 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-28 16:36:21 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-28 16:13:20 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-27 23:39:17 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-27 18:39:16 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92

Date	UQ / IDS / BL	URL	IP
2023-03-29 18:38:16 +0000	14 - 3 - 28	sksfishtrading.com/public/yjyK2eRT5UxvJGgiuuL (...)	185.216.75.128
2023-03-29 18:37:16 +0000	12 - 3 - 25	sksfishtrading.com/public/aksqFOCCsIvysSXn5Sn (...)	185.216.75.128
2023-03-29 18:36:50 +0000	16 - 3 - 27	sksfishtrading.com/public/PWw8gNvckKlzL1k4uAj (...)	185.216.75.128
2023-03-29 18:36:39 +0000	16 - 3 - 27	sksfishtrading.com/public/3v7outOThAulIU8ESpN (...)	185.216.75.128
2023-03-29 18:36:38 +0000	14 - 3 - 25	sksfishtrading.com/public/4Y5BoCl2SzqfdU94SbH (...)	185.216.75.128

Date	UQ / IDS / BL	URL	IP
2022-10-01 05:03:32 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-28 16:36:21 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-28 16:13:20 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-27 23:39:17 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92
2022-09-27 18:39:16 +0000	0 - 0 - 1	fair.fairfaxfamilyhealthcare.com/ga/click/2-4 (...)	95.111.245.92

Date	UQ / IDS / BL	URL	IP
2023-03-21 01:53:47 +0000	0 - 0 - 10	unsub-zqm.com/unsubscribe/934/25522/2/e51bdb7 (...)	34.225.231.161
2023-02-27 20:40:50 +0000	0 - 0 - 10	unsub-zqm.com/unsubscribe/1732/23657/2/d9a4d0 (...)	34.225.231.161
2023-02-10 15:41:55 +0000	0 - 0 - 10	unsub-zqm.com/unsubscribe/1604/27945/2/88fc8a (...)	54.159.228.173
2023-01-30 07:50:10 +0000	0 - 0 - 9	unsub-ns.net/unsubscribe/55/9999/1/48c7dc483b (...)	34.235.193.132
2023-01-29 01:18:25 +0000	0 - 0 - 9	unsub-ns.net/unsubscribe/55/9999/1/48c7dc483b (...)	34.225.231.161

Request	Response
GET /v1/ HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/ FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.27 HASH: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04 143.204.55.27 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 939 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Date: Mon, 12 Sep 2022 08:08:10 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff X-Cache: Hit from cloudfront Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: FnlCva1NMFg8LbxoXPSeB5F1wgPNrnRU5vgupbD6YLOUvFK_rnlZOQ== Age: 2991 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (939), with no line terminators Size: 939 Md5: b593eb39329cfe060d55be5e4a5405e2 Sha1: 78e46c1028e9f94f8569303ad2d90d7df13a059a Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /ga/click/2-49380111-161-800-1552-1044-a9cab3b59a-g78fb51e0e HTTP/1.1 Host: fair.fairfaxfamilyhealthcare.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Connection: keep-alive Upgrade-Insecure-Requests: 1	URL: fair.fairfaxfamilyhealthcare.com/ga/click/2-49380111-16 (...) FQDN: fair.fairfaxfamilyhealthcare.com IP: 95.111.245.92 HASH: 47dbdcf97090daec22966a053cb84fbe519ba9cbeb80f3d8411d8efe4f6d261f 95.111.245.92 HTTP/1.1 302 Found Content-Type: text/html; charset=utf-8 Date: Mon, 12 Sep 2022 08:58:01 GMT Server: Apache/2.4.52 (Unix) OpenSSL/1.0.2k-fips PHP/7.3.33 Status: 302 Found X-Rack-Cache: miss Cache-Control: no-cache, no-store, max-age=0, must-revalidate Pragma: no-cache X-Request-Id: 6e43b657b9f5262025ffea2cbcb8c09e Location: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= X-UA-Compatible: IE=Edge,chrome=1 X-Runtime: 0.028755 Expires: Mon, 01 Jan 1990 00:00:00 GMT X-Powered-By: Phusion Passenger(R) 6.0.12 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Transfer-Encoding: chunked --- Additional Info --- Magic: HTML document text\012- HTML document, ASCII text, with no line terminators Size: 146 Md5: c825b9f66eafadc92bac72223d6eac58 Sha1: ca1a7d42726f5dde31835b61d9dea0623c332696 Sha256: 47dbdcf97090daec22966a053cb84fbe519ba9cbeb80f3d8411d8efe4f6d261f Alerts: Blocklists: - fortinet: Phishing
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED" Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=5038 Expires: Mon, 12 Sep 2022 10:21:59 GMT Date: Mon, 12 Sep 2022 08:58:01 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 76d5eb597558e3dee0d99719d17e71e0 Sha1: f3a0f3932fa8059f27dc9422d523b938fa9a7d09 Sha256: d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 Host: content-signature-2.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: content-signature-2.cdn.mozilla.net/chains/remote-setti (...) FQDN: content-signature-2.cdn.mozilla.net IP: 143.204.55.25 HASH: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345 143.204.55.25 HTTP/2 200 OK content-type: binary/octet-stream content-length: 5348 last-modified: Sat, 20 Aug 2022 23:18:05 GMT content-disposition: attachment accept-ranges: bytes server: AmazonS3 date: Mon, 12 Sep 2022 07:17:13 GMT etag: "742edb4038f38bc533514982f3d2e861" x-cache: Hit from cloudfront via: 1.1 bb1da7862c4968b28920b91b324095c0.cloudfront.net (CloudFront) x-amz-cf-pop: OSL50-C1 x-amz-cf-id: mMa-2BU4rGLk-C4XskcltEfjLXQs329QjfoiOtwW5VAy01pAUa0Vkw== age: 6049 X-Firefox-Spdy: h2 --- Additional Info --- Magic: PEM certificate\012- , ASCII text Size: 5348 Md5: 742edb4038f38bc533514982f3d2e861 Sha1: cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1 Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /v1/tiles HTTP/1.1 Host: contile.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: contile.services.mozilla.com/v1/tiles FQDN: contile.services.mozilla.com IP: 34.117.237.239 HASH: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3 34.117.237.239 HTTP/2 200 OK content-type: application/json server: nginx date: Mon, 12 Sep 2022 08:58:01 GMT content-length: 12 strict-transport-security: max-age=31536000 via: 1.1 google alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JSON data\012- , ASCII text, with no line terminators Size: 12 Md5: 23e88fb7b99543fb33315b29b1fad9d6 Sha1: a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
POST / HTTP/1.1 Host: ocsp.sca1b.amazontrust.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.sca1b.amazontrust.com/ FQDN: ocsp.sca1b.amazontrust.com IP: 143.204.42.88 HASH: 98744e62bc61cdae6d90effcfcc016b4323e3657535438f156d222bde37ae62c 143.204.42.88 HTTP/1.1 200 OK Content-Type: application/ocsp-response Content-Length: 471 Connection: keep-alive Cache-Control: 'max-age=158059' Date: Mon, 12 Sep 2022 08:58:01 GMT Server: ECS (dcb/7F3B) X-Cache: Miss from cloudfront Via: 1.1 80d21802b1b80c40e55ccf83433b8eac.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: dqrNlDpQRYIoxOqiQfT_ic9ztaLbFCnn6gW-eFI8f2kB9hdYD2nE9A== --- Additional Info --- Magic: data Size: 471 Md5: 218071697c0e73dc7b73974490d20eeb Sha1: e5244ba9661069627f49c98caf3ad01c67396691 Sha256: 98744e62bc61cdae6d90effcfcc016b4323e3657535438f156d222bde37ae62c
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 Host: firefox.settings.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/json Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Content-Type: application/json Connection: keep-alive Sec-Fetch-Dest: empty Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: firefox.settings.services.mozilla.com/v1/buckets/main/c (...) FQDN: firefox.settings.services.mozilla.com IP: 143.204.55.27 HASH: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300 143.204.55.27 HTTP/1.1 200 OK Content-Type: application/json Content-Length: 329 Connection: keep-alive Access-Control-Allow-Origin: * Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT Strict-Transport-Security: max-age=31536000 X-Content-Type-Options: nosniff Date: Mon, 12 Sep 2022 08:56:07 GMT Cache-Control: max-age=3600 Expires: Mon, 12 Sep 2022 09:45:30 GMT ETag: "1648230346554" X-Cache: Hit from cloudfront Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) X-Amz-Cf-Pop: OSL50-C1 X-Amz-Cf-Id: zsc0zPISAlIpOQwTXZ6YmYwUGmbaPFfvHLlcGhSvk-R7RWfWPV9uHQ== Age: 115 --- Additional Info --- Magic: JSON data\012- , ASCII text, with very long lines (329), with no line terminators Size: 329 Md5: 0333b0655111aa68de771adfcc4db243 Sha1: 63f295a144ac87a7c8e23417626724eeca68a7eb Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: bff3a3f3f4f889b08163e7d307438790 Sha1: c430c7c151973fa0e63ddf52e5624e1ce2282161 Sha256: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: bff3a3f3f4f889b08163e7d307438790 Sha1: c430c7c151973fa0e63ddf52e5624e1ce2282161 Sha256: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: bff3a3f3f4f889b08163e7d307438790 Sha1: c430c7c151973fa0e63ddf52e5624e1ce2282161 Sha256: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST / HTTP/1.1 Host: ocsp.digicert.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.digicert.com/ FQDN: ocsp.digicert.com IP: 93.184.220.29 HASH: 4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0 93.184.220.29 HTTP/1.1 200 OK Content-Type: application/ocsp-response Accept-Ranges: bytes Age: 4401 Cache-Control: 'max-age=158059' Date: Mon, 12 Sep 2022 08:58:02 GMT Last-Modified: Mon, 12 Sep 2022 07:44:41 GMT Server: ECS (ska/F6FC) X-Cache: HIT Content-Length: 471 --- Additional Info --- Magic: data Size: 471 Md5: 26e829ba5f754918e20cbd316dc4348e Sha1: ba198501da0812dd11ca3b38a51325b5de6cfa60 Sha256: 4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 84 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 472 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 472 Md5: bff3a3f3f4f889b08163e7d307438790 Sha1: c430c7c151973fa0e63ddf52e5624e1ce2282161 Sha256: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 4894843dd17150368f9e81305262c361 Sha1: 09c1036ec45f4da92b1749c5b0a76062d32ee681 Sha256: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 4894843dd17150368f9e81305262c361 Sha1: 09c1036ec45f4da92b1749c5b0a76062d32ee681 Sha256: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
GET /assets/img/bg.jpg HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/assets/css/style.css Cookie: AWSALB=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; AWSALBCORS=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/img/bg.jpg FQDN: unsub-gc.com IP: 54.88.51.28 HASH: 2068c4c11d8be6c922b92f0155dc55c2dae61783a99ddce6e7294b8ec0103439 54.88.51.28 HTTP/2 200 OK content-type: image/jpeg date: Mon, 12 Sep 2022 08:58:02 GMT content-length: 15857 set-cookie: AWSALB=K1JxF/J0il7n3zaXqGjG7e7+3gZ8y4jDeS8RTZHm9fUXlimymDhOcHTCWRReqoH95K0bxlpKnxDYoD9K6fax3dJmqoxcVxbZSEWdQvDhEC1wSiL27j2OFqoZ+Oy2; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=K1JxF/J0il7n3zaXqGjG7e7+3gZ8y4jDeS8RTZHm9fUXlimymDhOcHTCWRReqoH95K0bxlpKnxDYoD9K6fax3dJmqoxcVxbZSEWdQvDhEC1wSiL27j2OFqoZ+Oy2; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT etag: "57f8046c-3df1" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2013:12:03 18:18:05], baseline, precision 8, 100x100, components 3\012- data Size: 15857 Md5: 1cf882e7c46bdaac867c8536e1030e95 Sha1: 00c681cf49d000e731fae1e369e1fe94a024d0c0 Sha256: 2068c4c11d8be6c922b92f0155dc55c2dae61783a99ddce6e7294b8ec0103439
GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://unsub-gc.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 46524 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Mon, 05 Sep 2022 21:13:12 GMT expires: Tue, 05 Sep 2023 21:13:12 GMT cache-control: public, max-age=31536000 age: 560690 last-modified: Mon, 18 Jul 2022 19:58:01 GMT alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data Size: 46524 Md5: c1fd378f54921c75e4ae1821e7b8fff6 Sha1: 2ce96e97783b2f154d07f4464ca6f8eb2469f2c1 Sha256: 405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 Host: fonts.gstatic.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Origin: https://unsub-gc.com Connection: keep-alive Referer: https://fonts.googleapis.com/ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWb (...) FQDN: fonts.gstatic.com IP: 142.250.74.163 HASH: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db 142.250.74.163 HTTP/2 200 OK content-type: font/woff2 accept-ranges: bytes access-control-allow-origin: * content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin; report-to="apps-themes" report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} timing-allow-origin: * content-length: 44856 x-content-type-options: nosniff server: sffe x-xss-protection: 0 date: Tue, 06 Sep 2022 08:31:01 GMT expires: Wed, 06 Sep 2023 08:31:01 GMT cache-control: public, max-age=31536000 last-modified: Mon, 15 Aug 2022 18:20:18 GMT age: 520021 alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data Size: 44856 Md5: 565ce506190ad3af920b40baf1794cec Sha1: ad3cba5d06100e09449a864d3b5e58403b478b3d Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET / HTTP/1.1 Host: push.services.mozilla.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Sec-WebSocket-Version: 13 Origin: wss://push.services.mozilla.com/ Sec-WebSocket-Protocol: push-notification Sec-WebSocket-Extensions: permessage-deflate Sec-WebSocket-Key: E5gWtPTEyLvZhNnaJcXZyw== Connection: keep-alive, Upgrade Sec-Fetch-Dest: websocket Sec-Fetch-Mode: websocket Sec-Fetch-Site: cross-site Pragma: no-cache Cache-Control: no-cache Upgrade: websocket	URL: push.services.mozilla.com/ FQDN: push.services.mozilla.com IP: 34.213.140.56 HASH: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 34.213.140.56 HTTP/1.1 101 Switching Protocols Connection: Upgrade Upgrade: websocket Sec-WebSocket-Accept: fnm/6dvAoGWrA9y//GQrvtbEPcY= --- Additional Info --- Magic: Size: 0 Md5: d41d8cd98f00b204e9800998ecf8427e Sha1: da39a3ee5e6b4b0d3255bfef95601890afd80709 Sha256: e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: identity Connection: keep-alive Referer: https://unsub-gc.com/assets/lib/font-awesome/css/font-awesome.min.css Cookie: AWSALB=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; AWSALBCORS=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ Sec-Fetch-Dest: font Sec-Fetch-Mode: cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/font-awesome/fonts/fontawesome- (...) FQDN: unsub-gc.com IP: 54.88.51.28 HASH: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73 54.88.51.28 HTTP/2 200 OK content-type: application/octet-stream date: Mon, 12 Sep 2022 08:58:02 GMT content-length: 71896 set-cookie: AWSALB=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT etag: "57f8046c-118d8" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data Size: 71896 Md5: e6cf7c6ec7c2d6f670ae9d762604cb0b Sha1: 97e438cc545714309882fbceadbf344fcaddcec5 Sha256: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73
POST /gts1c3 HTTP/1.1 Host: ocsp.pki.goog User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 83 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: ocsp.pki.goog/gts1c3 FQDN: ocsp.pki.goog IP: 142.250.74.3 HASH: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e 142.250.74.3 HTTP/1.1 200 OK Content-Type: application/ocsp-response Date: Mon, 12 Sep 2022 08:58:02 GMT Cache-Control: public, max-age=14400 Server: ocsp_responder Content-Length: 471 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN --- Additional Info --- Magic: data Size: 471 Md5: 4894843dd17150368f9e81305262c361 Sha1: 09c1036ec45f4da92b1749c5b0a76062d32ee681 Sha256: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e
GET /assets/img/icons/android-icon-192x192.png HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; AWSALBCORS=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/img/icons/android-icon-192x192.png FQDN: unsub-gc.com IP: 54.88.51.28 HASH: 49760623e1aee32bbbb5fa91c442372a660973d77ea1f05f0ad99c454b37ae09 54.88.51.28 HTTP/2 200 OK content-type: image/png date: Mon, 12 Sep 2022 08:58:02 GMT content-length: 5153 set-cookie: AWSALB=jCLmP9N98JQg5qGbv6Zw05G4Ddvh6o0EK5gnD1ocrLVFiq1Ylz29QsoVoemcsPloVUrTVXLElJ9NrW8tsQa9R1pfR1tjDA3Gp1DAU0zht3bWEXQ+ozzaKKi/SVMX; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=jCLmP9N98JQg5qGbv6Zw05G4Ddvh6o0EK5gnD1ocrLVFiq1Ylz29QsoVoemcsPloVUrTVXLElJ9NrW8tsQa9R1pfR1tjDA3Gp1DAU0zht3bWEXQ+ozzaKKi/SVMX; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT etag: "57f8046c-1421" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data Size: 5153 Md5: db1479e98116167628891ae382c5d00c Sha1: a082962858542227c701757f17a074d63da96341 Sha256: 49760623e1aee32bbbb5fa91c442372a660973d77ea1f05f0ad99c454b37ae09
GET /assets/img/icons/favicon-16x16.png HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; AWSALBCORS=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb Sec-Fetch-Dest: image Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/img/icons/favicon-16x16.png FQDN: unsub-gc.com IP: 54.88.51.28 HASH: ed19eeeab949536150a34d096459f35190767eba21eff22435a7f4ccd6a1cd03 54.88.51.28 HTTP/2 200 OK content-type: image/png date: Mon, 12 Sep 2022 08:58:02 GMT content-length: 1223 set-cookie: AWSALB=HA8FsQTlKTB07f8jYiqvAkOt2gwQxTMMqujMtcc7jnbsVTqgxCTqgWhsHSvrsgcYnAXZSo30N29+qWBIitbArXnn6R1N7S3+5g7xQ4q+QdvBVKsUYiZdZL6VF9Ki; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=HA8FsQTlKTB07f8jYiqvAkOt2gwQxTMMqujMtcc7jnbsVTqgxCTqgWhsHSvrsgcYnAXZSo30N29+qWBIitbArXnn6R1N7S3+5g7xQ4q+QdvBVKsUYiZdZL6VF9Ki; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT etag: "57f8046c-4c7" accept-ranges: bytes X-Firefox-Spdy: h2 --- Additional Info --- Magic: PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data Size: 1223 Md5: a9c3a6853804c0719309579c9afaf24c Sha1: dd2dbcee60fb2228c392cc23cb09245a9ce84654 Sha256: ed19eeeab949536150a34d096459f35190767eba21eff22435a7f4ccd6a1cd03
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19343 Expires: Mon, 12 Sep 2022 14:20:26 GMT Date: Mon, 12 Sep 2022 08:58:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 477fd76de0b69553430d504fe527cc06 Sha1: 88fe80a099e610212f27427ae6fd5b4e03b3df16 Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19343 Expires: Mon, 12 Sep 2022 14:20:26 GMT Date: Mon, 12 Sep 2022 08:58:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 477fd76de0b69553430d504fe527cc06 Sha1: 88fe80a099e610212f27427ae6fd5b4e03b3df16 Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19343 Expires: Mon, 12 Sep 2022 14:20:26 GMT Date: Mon, 12 Sep 2022 08:58:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 477fd76de0b69553430d504fe527cc06 Sha1: 88fe80a099e610212f27427ae6fd5b4e03b3df16 Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19343 Expires: Mon, 12 Sep 2022 14:20:26 GMT Date: Mon, 12 Sep 2022 08:58:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 477fd76de0b69553430d504fe527cc06 Sha1: 88fe80a099e610212f27427ae6fd5b4e03b3df16 Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
POST / HTTP/1.1 Host: r3.o.lencr.org User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate Content-Type: application/ocsp-request Content-Length: 85 Connection: keep-alive Pragma: no-cache Cache-Control: no-cache	URL: r3.o.lencr.org/ FQDN: r3.o.lencr.org IP: 95.101.11.115 HASH: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748 95.101.11.115 HTTP/1.1 200 OK Content-Type: application/ocsp-response Server: nginx Content-Length: 503 ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC Cache-Control: public, no-transform, must-revalidate, max-age=19343 Expires: Mon, 12 Sep 2022 14:20:26 GMT Date: Mon, 12 Sep 2022 08:58:03 GMT Connection: keep-alive --- Additional Info --- Magic: data Size: 503 Md5: 477fd76de0b69553430d504fe527cc06 Sha1: 88fe80a099e610212f27427ae6fd5b4e03b3df16 Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5ba8d12f-23ff-4cd1-837d-b0b922013960.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 664eeeed30d4d3dc5793c8af69f8bda92d1ad7e4f35e339e4d1e694d5d904fa2 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 10622 x-amzn-requestid: c7f857e3-7402-4d2e-8435-c8af6340aecc x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YUIxLHCiIAMFqqQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631e54d4-5693b82c5a794bb10dbfdd45;Sampled=0 x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: RWJLFebh-Tsnj-3rTlGLq3gI7kK4_hXwJ7qqG7RZkJyi74UaWtIK-A== via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 36810aa1793ee589dc8c194860296078.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Sep 2022 21:45:14 GMT age: 40369 etag: "5cb1d1b24f8fd8ed9367952df70cead8912b8451" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 10622 Md5: 1854d4caadc989a97ef1fe048c97e16e Sha1: 5cb1d1b24f8fd8ed9367952df70cead8912b8451 Sha256: 664eeeed30d4d3dc5793c8af69f8bda92d1ad7e4f35e339e4d1e694d5d904fa2
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 13568 x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: X3yN1F2BIAMFoqg= x-content-type-options: nosniff x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0 x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT x-amz-cf-pop: SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Sep 2022 21:40:11 GMT age: 40672 etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 13568 Md5: 8625e0707046e7a3715a8dbb40b1cae2 Sha1: 0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78 Sha256: abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fce25d3c5-b755-430d-b6d0-23fad3078dbd.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 7b31c12dad70a30defa8924061b635410d8b2a59e90819c8707ee6d0b5acc98e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 7029 x-amzn-requestid: 188bfede-89d9-42f9-914b-13a330675370 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YUIxLHkBIAMFrrQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631e54d4-44c167dd64d1756c0280a759;Sampled=0 x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:20 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: qbhdBjUA4GNK7U8VQYUPDynJ58slL5aG1bZMDdXc8IKeg0KwZeqn2Q== via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Sep 2022 21:48:11 GMT age: 40192 etag: "d09f2d5acd5945620a2a51d72411c3c464a5166e" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 7029 Md5: ca76593aa217eb69a58ed89610d9d59d Sha1: d09f2d5acd5945620a2a51d72411c3c464a5166e Sha256: 7b31c12dad70a30defa8924061b635410d8b2a59e90819c8707ee6d0b5acc98e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8c9e77-e1e7-4dac-8b40-0f1dc36c1c90.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 4020cd554d8c1bdf5432d359a2079451a6bc328bd2f51fbb738f6a1d52ca7f21 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 11309 x-amzn-requestid: 9c63b64e-0464-419a-9c9a-006107a7d79a x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YUIx8HNaoAMFxkQ= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631e54d9-127311335960fcd84c8e8a01;Sampled=0 x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:25 GMT x-amz-cf-pop: HIO50-C1, SEA73-P1 x-cache: Hit from cloudfront x-amz-cf-id: dyEuDaPFeAnDSk_f-rjIhrtm6n6jauPE11kriaIhOkFipi39-tpdIA== via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Sep 2022 21:51:38 GMT age: 39985 etag: "f3179f2d233c0422b31d723aea47d26ca851d946" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 11309 Md5: a8ac7af52a032c012cd38652bb90be99 Sha1: f3179f2d233c0422b31d723aea47d26ca851d946 Sha256: 4020cd554d8c1bdf5432d359a2079451a6bc328bd2f51fbb738f6a1d52ca7f21
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f6d3098-68f1-4ed7-baff-aed0e0b792ed.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: c0795e0b7535a3f25564b52b2e70a7447baa79378c95153ceb51f8bd3620d89e 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8658 x-amzn-requestid: 37529bed-8f0c-43dc-926b-32ef4a7adbac x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YNkSfHkDIAMFV9w= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631bb40f-45988cf4677a87b521ac15b8;Sampled=0 x-amzn-remapped-date: Fri, 09 Sep 2022 21:45:51 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Hit from cloudfront x-amz-cf-id: 8uWWE8aZpq7Fav6RD5pgwfxutdDtXgNdHxo6Jgwe7x3Mkg_DO8twrw== via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 591683988172c7980c4ebb318cbf18a8.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Sep 2022 22:11:10 GMT age: 38813 etag: "02807770b43d375393e1efef0ba432b664a05be0" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8658 Md5: da890c42b21daa080ec1bdd023800393 Sha1: 02807770b43d375393e1efef0ba432b664a05be0 Sha256: c0795e0b7535a3f25564b52b2e70a7447baa79378c95153ceb51f8bd3620d89e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1 Host: img-getpocket.cdn.mozilla.net User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: image/avif,image/webp,/ Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Origin: null Connection: keep-alive Sec-Fetch-Dest: image Sec-Fetch-Mode: cors Sec-Fetch-Site: cross-site	URL: img-getpocket.cdn.mozilla.net/296x148/filters:format(jp (...) FQDN: img-getpocket.cdn.mozilla.net IP: 34.120.237.76 HASH: 2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9 34.120.237.76 HTTP/2 200 OK content-type: image/jpeg server: nginx content-length: 8799 x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23 x-xss-protection: 1; mode=block access-control-allow-origin: * strict-transport-security: max-age=63072000; includeSubdomains; preload x-frame-options: DENY content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' x-amz-apigw-id: YUI-0G6vIAMFgbA= x-content-type-options: nosniff x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0 x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT x-amz-cf-pop: HIO50-C1, SEA19-C2 x-cache: Miss from cloudfront x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ== via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google date: Sun, 11 Sep 2022 21:41:51 GMT age: 40572 etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a" cache-control: max-age=3600,public,public alt-svc: clear X-Firefox-Spdy: h2 --- Additional Info --- Magic: JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data Size: 8799 Md5: c14088c4ca0d576e087feed41b7f1565 Sha1: 172b23f2ef39b6c3fdebb5441b10a95712206d0a Sha256: 2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9
GET /unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,/;q=0.8 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Upgrade-Insecure-Requests: 1 Sec-Fetch-Dest: document Sec-Fetch-Mode: navigate Sec-Fetch-Site: none Sec-Fetch-User: ?1	URL: unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bff (...) FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: text/html; charset=UTF-8 date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 cache-control: max-age=0, must-revalidate content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery.nanoscroller/javascripts/jquery.nanoscroller.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery.nanoscroller/javascripts (...) FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=+HxfLPyi11BFaBTOggHuE64ytBonmsMjO0rY5BR9NqscSjZmCCYIb8/YlNhIZN5/gGcZ4LJNyhmfGi/+RoHFjv7RVd2lFZozGAS2bO0PAwqj3VPCi+aREs/I4J9n; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=+HxfLPyi11BFaBTOggHuE64ytBonmsMjO0rY5BR9NqscSjZmCCYIb8/YlNhIZN5/gGcZ4LJNyhmfGi/+RoHFjv7RVd2lFZozGAS2bO0PAwqj3VPCi+aREs/I4J9n; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery/jquery.min.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery/jquery.min.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=xjZY5YAujttkQ94pe/o4MHYDcJHh/Zo4GkVaRjy4+i6fXOs5gemxL1dKAX0tPlaSUveDSrKJ8lbiAij64DQmNf9AV3EYchGVNrIRluHL6WkXsqrlDuT5C5p1UBgA; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=xjZY5YAujttkQ94pe/o4MHYDcJHh/Zo4GkVaRjy4+i6fXOs5gemxL1dKAX0tPlaSUveDSrKJ8lbiAij64DQmNf9AV3EYchGVNrIRluHL6WkXsqrlDuT5C5p1UBgA; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Raleway:300,200,100 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Raleway:300,200,100 FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 12 Sep 2022 08:58:02 GMT date: Mon, 12 Sep 2022 08:58:02 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Open+Sans+Condensed:300,700 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans+Condensed:300,700 FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 12 Sep 2022 08:58:02 GMT date: Mon, 12 Sep 2022 08:58:02 GMT cache-control: private, max-age=86400 cross-origin-opener-policy: same-origin-allow-popups cross-origin-resource-policy: cross-origin content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/css/style.css HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/css/style.css FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: text/css date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=xtord6nKw5sJMbbf3mj8+ym+O3oAbNRtYSIqfUCB1yrDgnSH4xVDVavPncB/9IjJBD/ggsykZT1kqIwlV7pguNIBttapLSdb/3vuCERD3Y/1g493ohOeeY5W3Xsz; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=xtord6nKw5sJMbbf3mj8+ym+O3oAbNRtYSIqfUCB1yrDgnSH4xVDVavPncB/9IjJBD/ggsykZT1kqIwlV7pguNIBttapLSdb/3vuCERD3Y/1g493ohOeeY5W3Xsz; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Tue, 10 Jul 2018 20:20:49 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery.niftymodals/css/component.css HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery.niftymodals/css/component.css FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: text/css date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=dJS3DWNfK6rdGbbvzOMQttb4LUKqj6n0aNMqaLtBARUsfZPhlePElUHEQ1/6UrYABeU/ktDbDIxsQF6hFtNw1EdvdcK85Wtpf9dlLz5wPDzXQFUJDFtJZjjexUdt; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=dJS3DWNfK6rdGbbvzOMQttb4LUKqj6n0aNMqaLtBARUsfZPhlePElUHEQ1/6UrYABeU/ktDbDIxsQF6hFtNw1EdvdcK85Wtpf9dlLz5wPDzXQFUJDFtJZjjexUdt; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Tue, 29 Nov 2016 20:43:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery.niftymodals/js/jquery.modalEffects.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery.niftymodals/js/jquery.mo (...) FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Tue, 25 Jul 2017 02:31:20 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery.parsley/dist/parsley.min.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery.parsley/dist/parsley.min.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=a1wNG1q/V/BIm0F5Kpa0UmKjO9zhkmph+111zhEoxFoJmxH/gnhCPCEsVwtmO5XPNc6eQrAvKMrScc2ohCFTtw28VAjWnMy5DfOnnfrHyyuA3wK5fYX6QRJT3hXG; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=a1wNG1q/V/BIm0F5Kpa0UmKjO9zhkmph+111zhEoxFoJmxH/gnhCPCEsVwtmO5XPNc6eQrAvKMrScc2ohCFTtw28VAjWnMy5DfOnnfrHyyuA3wK5fYX6QRJT3hXG; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery.parsley/custom/validation.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery.parsley/custom/validation.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=PoKHHw4J9Vyp6xpmDPGxgEeRlpPpMEIOYZ7RPOjOMQ9pxIsSfq/5vkSRRKb+gApdrD3MgEiHw7B4q40+4On+R9Wimo1DdBgd2Vll0jXBzkF6MJIHBE8zL6kEAsvA; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=PoKHHw4J9Vyp6xpmDPGxgEeRlpPpMEIOYZ7RPOjOMQ9pxIsSfq/5vkSRRKb+gApdrD3MgEiHw7B4q40+4On+R9Wimo1DdBgd2Vll0jXBzkF6MJIHBE8zL6kEAsvA; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/clippy/clipboard.min.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/clippy/clipboard.min.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=ByKLTkznf+QFxZvf5ZRApPUDlvaeZzKfFlxgSrq5PoVDDjbpneGcdF8Pn16WfHtymDBMbEFuO3Ybrkn+R1u4QqP9mrVVkvCUOJX32qyZy3jPJS/D6I8kMIAmmjoL; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=ByKLTkznf+QFxZvf5ZRApPUDlvaeZzKfFlxgSrq5PoVDDjbpneGcdF8Pn16WfHtymDBMbEFuO3Ybrkn+R1u4QqP9mrVVkvCUOJX32qyZy3jPJS/D6I8kMIAmmjoL; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /css?family=Open+Sans:400,300,600,400italic,700,800 HTTP/1.1 Host: fonts.googleapis.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/ Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: cross-site	URL: fonts.googleapis.com/css?family=Open+Sans:400,300,600,4 (...) FQDN: fonts.googleapis.com IP: 142.250.74.10 142.250.74.10 HTTP/2 200 OK content-type: text/css; charset=utf-8 access-control-allow-origin: * timing-allow-origin: * link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin strict-transport-security: max-age=31536000 expires: Mon, 12 Sep 2022 08:58:02 GMT date: Mon, 12 Sep 2022 08:58:02 GMT cache-control: private, max-age=86400 cross-origin-resource-policy: cross-origin cross-origin-opener-policy: same-origin-allow-popups content-encoding: gzip server: ESF x-xss-protection: 0 x-frame-options: SAMEORIGIN x-content-type-options: nosniff alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/bootstrap/dist/css/bootstrap.min.css HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/bootstrap/dist/css/bootstrap.min.css FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: text/css date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=slagf9saV1/6QgjoY2oQqgZqJd5eYsNntYMCRMwG8eIrqi3n+hjWq4bnhx6M+vY7YtrQjiu/KfWGbvEvggQT/Og4DPRKFlvKxyEboTx69tCZOfyfwAKgmIwPvfwL; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=slagf9saV1/6QgjoY2oQqgZqJd5eYsNntYMCRMwG8eIrqi3n+hjWq4bnhx6M+vY7YtrQjiu/KfWGbvEvggQT/Og4DPRKFlvKxyEboTx69tCZOfyfwAKgmIwPvfwL; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/jquery.nanoscroller/css/nanoscroller.css HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/jquery.nanoscroller/css/nanoscr (...) FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: text/css date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=4nl8DnjQEYgNfhRW9I3fXbaC2tjEVAmKnfqlQOOFH25fXVVROx8d+xBlQUeseuQRYTwK6Y4HtYIvlluqquunMuyF8AqSZiXKuecn4IL2Rrnlr4CDd/zi6YNpKslM; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=4nl8DnjQEYgNfhRW9I3fXbaC2tjEVAmKnfqlQOOFH25fXVVROx8d+xBlQUeseuQRYTwK6Y4HtYIvlluqquunMuyF8AqSZiXKuecn4IL2Rrnlr4CDd/zi6YNpKslM; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /unsubscribe/functions.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/unsubscribe/functions.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=V9ILfb+7VuADwtcDnTkiJl03WkRCgQDKhCtDn4y48rdFLGNNz1aufKjkERhUn8kC7lSQjPkEz0hHUxVH8VB0y4cO9ca/A+w7wBw0dGfcOpbcL6TP8MIuEbH9thAu; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=V9ILfb+7VuADwtcDnTkiJl03WkRCgQDKhCtDn4y48rdFLGNNz1aufKjkERhUn8kC7lSQjPkEz0hHUxVH8VB0y4cO9ca/A+w7wBw0dGfcOpbcL6TP8MIuEbH9thAu; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Thu, 17 Aug 2017 03:03:25 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/font-awesome/css/font-awesome.min.css HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: text/css,/;q=0.1 Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: style Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/font-awesome/css/font-awesome.m (...) FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: text/css date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=yGKxIb91jLoUPizKrQdr7siyXzNBD/aiS636Mpqi2Bo9L22DchDDB+k1gdlUbFWvnfRk9hCLDZMS01gXcd48gePD3gLE6xJv3u4HbOg7HDiPSW8EiISxNbJlzJ+T; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=yGKxIb91jLoUPizKrQdr7siyXzNBD/aiS636Mpqi2Bo9L22DchDDB+k1gdlUbFWvnfRk9hCLDZMS01gXcd48gePD3gLE6xJv3u4HbOg7HDiPSW8EiISxNbJlzJ+T; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/lib/bootstrap/dist/js/bootstrap.min.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/lib/bootstrap/dist/js/bootstrap.min.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=Do3URpzHuYQMdiIpFwKg8xSuBLap3BRlxJfNNWkADfbB/L3YMBjGeWTV6vFPdGLUt5qrbX1in38nyMzeoqALMiIPhjZKu+YUd6s+x1qGsdKCLLog5oWN2BI7cFL7; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=Do3URpzHuYQMdiIpFwKg8xSuBLap3BRlxJfNNWkADfbB/L3YMBjGeWTV6vFPdGLUt5qrbX1in38nyMzeoqALMiIPhjZKu+YUd6s+x1qGsdKCLLog5oWN2BI7cFL7; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---
GET /assets/js/cleanzone.js HTTP/1.1 Host: unsub-gc.com User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 Accept: / Accept-Language: en-US,en;q=0.5 Accept-Encoding: gzip, deflate, br Connection: keep-alive Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF Sec-Fetch-Dest: script Sec-Fetch-Mode: no-cors Sec-Fetch-Site: same-origin TE: trailers	URL: unsub-gc.com/assets/js/cleanzone.js FQDN: unsub-gc.com IP: 54.88.51.28 54.88.51.28 HTTP/2 200 OK content-type: application/javascript date: Mon, 12 Sep 2022 08:58:02 GMT set-cookie: AWSALB=1yZpJEWya6/Y5wxedLuAHT121p0yFm7H0pWa9i2cTkT4YXgMaxoegTkJbtQenQRFz8EiBsMGskjRzW7YJFVN/8KhdjSuqW2OR79+qOz53z6E7UwzLxdlqpibl5Zm; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/ AWSALBCORS=1yZpJEWya6/Y5wxedLuAHT121p0yFm7H0pWa9i2cTkT4YXgMaxoegTkJbtQenQRFz8EiBsMGskjRzW7YJFVN/8KhdjSuqW2OR79+qOz53z6E7UwzLxdlqpibl5Zm; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure server: nginx/1.6.2 last-modified: Fri, 07 Oct 2016 20:24:12 GMT content-encoding: gzip X-Firefox-Spdy: h2 --- Additional Info ---

                                        
                                            GET /v1/ HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.55.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json

                                        

                                        
                                            
Content-Length: 939 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Date: Mon, 12 Sep 2022 08:08:10 GMT 

                                        
                                            
Strict-Transport-Security: max-age=31536000 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 4f01f770085624552bc30a98954f963a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: FnlCva1NMFg8LbxoXPSeB5F1wgPNrnRU5vgupbD6YLOUvFK_rnlZOQ== 

                                        
                                            
Age: 2991 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators

                                                Size:   939

                                                Md5:    b593eb39329cfe060d55be5e4a5405e2

                                                Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a

                                                Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "D16DE6CC9EB0E1297F53DC1137BB764BF5C21A7727BE32AD05AFEBD1FE9501ED" 

                                        
                                            
Last-Modified: Sat, 10 Sep 2022 18:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=5038 

                                        
                                            
Expires: Mon, 12 Sep 2022 10:21:59 GMT 

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:01 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    76d5eb597558e3dee0d99719d17e71e0

                                                Sha1:   f3a0f3932fa8059f27dc9422d523b938fa9a7d09

                                                Sha256: d16de6cc9eb0e1297f53dc1137bb764bf5c21a7727be32ad05afebd1fe9501ed

                                        
                                            GET /v1/tiles HTTP/1.1 

                                        
                                            
Host: contile.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.117.237.239

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/json

                                        

                                        
                                            
server: nginx 

                                        
                                            
date: Mon, 12 Sep 2022 08:58:01 GMT 

                                        
                                            
content-length: 12 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
via: 1.1 google 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with no line terminators

                                                Size:   12

                                                Md5:    23e88fb7b99543fb33315b29b1fad9d6

                                                Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce

                                                Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 

                                        
                                            
Host: firefox.settings.services.mozilla.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/json 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Content-Type: application/json 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: empty 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         143.204.55.27

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/json

                                        

                                        
                                            
Content-Length: 329 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Access-Control-Allow-Origin: * 

                                        
                                            
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After 

                                        
                                            
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none'; 

                                        
                                            
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT 

                                        
                                            
Strict-Transport-Security: max-age=31536000 

                                        
                                            
X-Content-Type-Options: nosniff 

                                        
                                            
Date: Mon, 12 Sep 2022 08:56:07 GMT 

                                        
                                            
Cache-Control: max-age=3600 

                                        
                                            
Expires: Mon, 12 Sep 2022 09:45:30 GMT 

                                        
                                            
ETag: "1648230346554" 

                                        
                                            
X-Cache: Hit from cloudfront 

                                        
                                            
Via: 1.1 185768229530368be94556dcab1c486a.cloudfront.net (CloudFront) 

                                        
                                            
X-Amz-Cf-Pop: OSL50-C1 

                                        
                                            
X-Amz-Cf-Id: zsc0zPISAlIpOQwTXZ6YmYwUGmbaPFfvHLlcGhSvk-R7RWfWPV9uHQ== 

                                        
                                            
Age: 115 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators

                                                Size:   329

                                                Md5:    0333b0655111aa68de771adfcc4db243

                                                Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb

                                                Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 84 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 472 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   472

                                                Md5:    bff3a3f3f4f889b08163e7d307438790

                                                Sha1:   c430c7c151973fa0e63ddf52e5624e1ce2282161

                                                Sha256: bce7d12a2343d8e43fbd05522fe82807ed48933a984aa113c284267364981750

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: ocsp.digicert.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         93.184.220.29

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Accept-Ranges: bytes 

                                        
                                            
Age: 4401 

                                        
                                            
Cache-Control: 'max-age=158059' 

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
Last-Modified: Mon, 12 Sep 2022 07:44:41 GMT 

                                        
                                            
Server: ECS (ska/F6FC) 

                                        
                                            
X-Cache: HIT 

                                        
                                            
Content-Length: 471 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    26e829ba5f754918e20cbd316dc4348e

                                                Sha1:   ba198501da0812dd11ca3b38a51325b5de6cfa60

                                                Sha256: 4352c25d4af7637a8435b0df6d042fc606d37a348e966b99fecce8a853b8ebc0

                                        
                                            POST /gts1c3 HTTP/1.1 

                                        
                                            
Host: ocsp.pki.goog

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 83 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         142.250.74.3

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
Cache-Control: public, max-age=14400 

                                        
                                            
Server: ocsp_responder 

                                        
                                            
Content-Length: 471 

                                        
                                            
X-XSS-Protection: 0 

                                        
                                            
X-Frame-Options: SAMEORIGIN 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   471

                                                Md5:    4894843dd17150368f9e81305262c361

                                                Sha1:   09c1036ec45f4da92b1749c5b0a76062d32ee681

                                                Sha256: 5242d2bcde6e9f49b38e0749771de0388b9687af78be7b13a27e147b3e38684e

                                        
                                            GET /assets/img/bg.jpg HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/assets/css/style.css 

                                        
                                            
Cookie: AWSALB=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; AWSALBCORS=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
content-length: 15857 

                                        
                                            
set-cookie: AWSALB=K1JxF/J0il7n3zaXqGjG7e7+3gZ8y4jDeS8RTZHm9fUXlimymDhOcHTCWRReqoH95K0bxlpKnxDYoD9K6fax3dJmqoxcVxbZSEWdQvDhEC1wSiL27j2OFqoZ+Oy2; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=K1JxF/J0il7n3zaXqGjG7e7+3gZ8y4jDeS8RTZHm9fUXlimymDhOcHTCWRReqoH95K0bxlpKnxDYoD9K6fax3dJmqoxcVxbZSEWdQvDhEC1wSiL27j2OFqoZ+Oy2; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
etag: "57f8046c-3df1" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.02, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS3 Windows, datetime=2013:12:03 18:18:05], baseline, precision 8, 100x100, components 3\012- data

                                                Size:   15857

                                                Md5:    1cf882e7c46bdaac867c8536e1030e95

                                                Sha1:   00c681cf49d000e731fae1e369e1fe94a024d0c0

                                                Sha256: 2068c4c11d8be6c922b92f0155dc55c2dae61783a99ddce6e7294b8ec0103439

                                        
                                            GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1 

                                        
                                            
Host: fonts.gstatic.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Origin: https://unsub-gc.com 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://fonts.googleapis.com/ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.163

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: font/woff2

                                        

                                        
                                            
accept-ranges: bytes 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin; report-to="apps-themes" 

                                        
                                            
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]} 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
content-length: 44856 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
server: sffe 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
date: Tue, 06 Sep 2022 08:31:01 GMT 

                                        
                                            
expires: Wed, 06 Sep 2023 08:31:01 GMT 

                                        
                                            
cache-control: public, max-age=31536000 

                                        
                                            
last-modified: Mon, 15 Aug 2022 18:20:18 GMT 

                                        
                                            
age: 520021 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data

                                                Size:   44856

                                                Md5:    565ce506190ad3af920b40baf1794cec

                                                Sha1:   ad3cba5d06100e09449a864d3b5e58403b478b3d

                                                Sha256: 8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

                                        
                                            GET /assets/lib/font-awesome/fonts/fontawesome-webfont.woff2?v=4.6.3 HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: identity 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/assets/lib/font-awesome/css/font-awesome.min.css 

                                        
                                            
Cookie: AWSALB=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; AWSALBCORS=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ 

                                        
                                            
Sec-Fetch-Dest: font 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/octet-stream

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
content-length: 71896 

                                        
                                            
set-cookie: AWSALB=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
etag: "57f8046c-118d8" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  Web Open Font Format (Version 2), TrueType, length 71896, version 4.393\012- data

                                                Size:   71896

                                                Md5:    e6cf7c6ec7c2d6f670ae9d762604cb0b

                                                Sha1:   97e438cc545714309882fbceadbf344fcaddcec5

                                                Sha256: 7dacf83f51179de8d7980a513e67ab3a08f2c6272bb5946df8fd77c0d1763b73

                                        
                                            GET /assets/img/icons/android-icon-192x192.png HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb; AWSALBCORS=9nP3ua8IK7Y39Ip/TaHjDRluQGY38jYw0ET1XJjrJMuoQx5P3vrTeuk4z0MLDIxILnK/7tfhiLdmy2RVWSgDKNU2IChvSjg9xvBgKikMfMF6Nl/E/JWjE80w9SMb 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/png

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
content-length: 5153 

                                        
                                            
set-cookie: AWSALB=jCLmP9N98JQg5qGbv6Zw05G4Ddvh6o0EK5gnD1ocrLVFiq1Ylz29QsoVoemcsPloVUrTVXLElJ9NrW8tsQa9R1pfR1tjDA3Gp1DAU0zht3bWEXQ+ozzaKKi/SVMX; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=jCLmP9N98JQg5qGbv6Zw05G4Ddvh6o0EK5gnD1ocrLVFiq1Ylz29QsoVoemcsPloVUrTVXLElJ9NrW8tsQa9R1pfR1tjDA3Gp1DAU0zht3bWEXQ+ozzaKKi/SVMX; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
etag: "57f8046c-1421" 

                                        
                                            
accept-ranges: bytes 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  PNG image data, 192 x 192, 8-bit colormap, non-interlaced\012- data

                                                Size:   5153

                                                Md5:    db1479e98116167628891ae382c5d00c

                                                Sha1:   a082962858542227c701757f17a074d63da96341

                                                Sha256: 49760623e1aee32bbbb5fa91c442372a660973d77ea1f05f0ad99c454b37ae09

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" 

                                        
                                            
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=19343 

                                        
                                            
Expires: Mon, 12 Sep 2022 14:20:26 GMT 

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:03 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    477fd76de0b69553430d504fe527cc06

                                                Sha1:   88fe80a099e610212f27427ae6fd5b4e03b3df16

                                                Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" 

                                        
                                            
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=19343 

                                        
                                            
Expires: Mon, 12 Sep 2022 14:20:26 GMT 

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:03 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    477fd76de0b69553430d504fe527cc06

                                                Sha1:   88fe80a099e610212f27427ae6fd5b4e03b3df16

                                                Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

                                        
                                            POST / HTTP/1.1 

                                        
                                            
Host: r3.o.lencr.org

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate 

                                        
                                            
Content-Type: application/ocsp-request 

                                        
                                            
Content-Length: 85 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Pragma: no-cache 

                                        
                                            
Cache-Control: no-cache

                                         95.101.11.115

                                        
                                            HTTP/1.1 200 OK 

                                        
                                            
Content-Type: application/ocsp-response

                                        

                                        
                                            
Server: nginx 

                                        
                                            
Content-Length: 503 

                                        
                                            
ETag: "F27BC8051A23FBE811318B8D49F5D27E3E992962A0E72F5D30A4790FE4F42748" 

                                        
                                            
Last-Modified: Sat, 10 Sep 2022 08:00:00 UTC 

                                        
                                            
Cache-Control: public, no-transform, must-revalidate, max-age=19343 

                                        
                                            
Expires: Mon, 12 Sep 2022 14:20:26 GMT 

                                        
                                            
Date: Mon, 12 Sep 2022 08:58:03 GMT 

                                        
                                            
Connection: keep-alive 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  data

                                                Size:   503

                                                Md5:    477fd76de0b69553430d504fe527cc06

                                                Sha1:   88fe80a099e610212f27427ae6fd5b4e03b3df16

                                                Sha256: f27bc8051a23fbe811318b8d49f5d27e3e992962a0e72f5d30a4790fe4f42748

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe6c05fb6-7f49-4d2f-96eb-0b6c468353f5.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 13568 

                                        
                                            
x-amzn-requestid: ad06f499-3e04-414a-8a3f-6daa9e0124ba 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: X3yN1F2BIAMFoqg= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-6312fd8b-3a17f11440d2f37b23ac7f6a;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sat, 03 Sep 2022 07:08:59 GMT 

                                        
                                            
x-amz-cf-pop: SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: iNRnq8nMhoTo9oY379Ynb6uPW0vNyf3dNufU_HpXNfzxvhrAEKEzJQ== 

                                        
                                            
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 11 Sep 2022 21:40:11 GMT 

                                        
                                            
age: 40672 

                                        
                                            
etag: "0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   13568

                                                Md5:    8625e0707046e7a3715a8dbb40b1cae2

                                                Sha1:   0f44ee871ad9d0a0ddd07d0c87d54f7e72b56f78

                                                Sha256: abc4c12561be08897341d9c8104c30a289357c0907e55c46895f7fb6afb2f75d

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5c8c9e77-e1e7-4dac-8b40-0f1dc36c1c90.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 11309 

                                        
                                            
x-amzn-requestid: 9c63b64e-0464-419a-9c9a-006107a7d79a 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: YUIx8HNaoAMFxkQ= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-631e54d9-127311335960fcd84c8e8a01;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 11 Sep 2022 21:36:25 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA73-P1 

                                        
                                            
x-cache: Hit from cloudfront 

                                        
                                            
x-amz-cf-id: dyEuDaPFeAnDSk_f-rjIhrtm6n6jauPE11kriaIhOkFipi39-tpdIA== 

                                        
                                            
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 11 Sep 2022 21:51:38 GMT 

                                        
                                            
age: 39985 

                                        
                                            
etag: "f3179f2d233c0422b31d723aea47d26ca851d946" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   11309

                                                Md5:    a8ac7af52a032c012cd38652bb90be99

                                                Sha1:   f3179f2d233c0422b31d723aea47d26ca851d946

                                                Sha256: 4020cd554d8c1bdf5432d359a2079451a6bc328bd2f51fbb738f6a1d52ca7f21

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F75931920-737e-40b5-8dd6-d2070639ea2d.jpeg HTTP/1.1 

                                        
                                            
Host: img-getpocket.cdn.mozilla.net

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: image/avif,image/webp,*/* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Origin: null 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Sec-Fetch-Dest: image 

                                        
                                            
Sec-Fetch-Mode: cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         34.120.237.76

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: image/jpeg

                                        

                                        
                                            
server: nginx 

                                        
                                            
content-length: 8799 

                                        
                                            
x-amzn-requestid: 1bcdf387-9ad2-449a-861e-3352b1744d23 

                                        
                                            
x-xss-protection: 1; mode=block 

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
strict-transport-security: max-age=63072000; includeSubdomains; preload 

                                        
                                            
x-frame-options: DENY 

                                        
                                            
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none' 

                                        
                                            
x-amz-apigw-id: YUI-0G6vIAMFgbA= 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
x-amzn-trace-id: Root=1-631e552b-42aa46af6315148106c4fdee;Sampled=0 

                                        
                                            
x-amzn-remapped-date: Sun, 11 Sep 2022 21:37:47 GMT 

                                        
                                            
x-amz-cf-pop: HIO50-C1, SEA19-C2 

                                        
                                            
x-cache: Miss from cloudfront 

                                        
                                            
x-amz-cf-id: g2mxKK8L5T4YkeD8JqNUuV_KfsIq8ypRMvxhsyzSZSEIP4gDl4zLVQ== 

                                        
                                            
via: 1.1 d83ae0e1ba84e92e58bc1efc23a0c652.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google 

                                        
                                            
date: Sun, 11 Sep 2022 21:41:51 GMT 

                                        
                                            
age: 40572 

                                        
                                            
etag: "172b23f2ef39b6c3fdebb5441b10a95712206d0a" 

                                        
                                            
cache-control: max-age=3600,public,public 

                                        
                                            
alt-svc: clear 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                            
                                                Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data

                                                Size:   8799

                                                Md5:    c14088c4ca0d576e087feed41b7f1565

                                                Sha1:   172b23f2ef39b6c3fdebb5441b10a95712206d0a

                                                Sha256: 2699efa811ceac5420f5bd26c35a6f48b51854e29cbce7cbb62efb613db7d6b9

                                        
                                            GET /assets/lib/jquery.nanoscroller/javascripts/jquery.nanoscroller.js HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=+HxfLPyi11BFaBTOggHuE64ytBonmsMjO0rY5BR9NqscSjZmCCYIb8/YlNhIZN5/gGcZ4LJNyhmfGi/+RoHFjv7RVd2lFZozGAS2bO0PAwqj3VPCi+aREs/I4J9n; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=+HxfLPyi11BFaBTOggHuE64ytBonmsMjO0rY5BR9NqscSjZmCCYIb8/YlNhIZN5/gGcZ4LJNyhmfGi/+RoHFjv7RVd2lFZozGAS2bO0PAwqj3VPCi+aREs/I4J9n; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /css?family=Raleway:300,200,100 HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/css/style.css HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=xtord6nKw5sJMbbf3mj8+ym+O3oAbNRtYSIqfUCB1yrDgnSH4xVDVavPncB/9IjJBD/ggsykZT1kqIwlV7pguNIBttapLSdb/3vuCERD3Y/1g493ohOeeY5W3Xsz; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=xtord6nKw5sJMbbf3mj8+ym+O3oAbNRtYSIqfUCB1yrDgnSH4xVDVavPncB/9IjJBD/ggsykZT1kqIwlV7pguNIBttapLSdb/3vuCERD3Y/1g493ohOeeY5W3Xsz; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Tue, 10 Jul 2018 20:20:49 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/lib/jquery.niftymodals/js/jquery.modalEffects.js HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=DyThXh3Th/b1hXjESobOYUBNQyn1D0g3iwS/SJHNBOwSW8gHVn/MU+QrTO00zl/jsMfbJ0Azbc75JX8gRON0Q2wbCNJM8YSl7yxy+1vNEJu5AnxWlfmn2QMf+BlJ; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Tue, 25 Jul 2017 02:31:20 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/lib/jquery.parsley/custom/validation.js HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=PoKHHw4J9Vyp6xpmDPGxgEeRlpPpMEIOYZ7RPOjOMQ9pxIsSfq/5vkSRRKb+gApdrD3MgEiHw7B4q40+4On+R9Wimo1DdBgd2Vll0jXBzkF6MJIHBE8zL6kEAsvA; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=PoKHHw4J9Vyp6xpmDPGxgEeRlpPpMEIOYZ7RPOjOMQ9pxIsSfq/5vkSRRKb+gApdrD3MgEiHw7B4q40+4On+R9Wimo1DdBgd2Vll0jXBzkF6MJIHBE8zL6kEAsvA; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /css?family=Open+Sans:400,300,600,400italic,700,800 HTTP/1.1 

                                        
                                            
Host: fonts.googleapis.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/ 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: cross-site

                                         142.250.74.10

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css; charset=utf-8

                                        

                                        
                                            
access-control-allow-origin: * 

                                        
                                            
timing-allow-origin: * 

                                        
                                            
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin 

                                        
                                            
strict-transport-security: max-age=31536000 

                                        
                                            
expires: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
cache-control: private, max-age=86400 

                                        
                                            
cross-origin-resource-policy: cross-origin 

                                        
                                            
cross-origin-opener-policy: same-origin-allow-popups 

                                        
                                            
content-encoding: gzip 

                                        
                                            
server: ESF 

                                        
                                            
x-xss-protection: 0 

                                        
                                            
x-frame-options: SAMEORIGIN 

                                        
                                            
x-content-type-options: nosniff 

                                        
                                            
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43" 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/lib/jquery.nanoscroller/css/nanoscroller.css HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=4nl8DnjQEYgNfhRW9I3fXbaC2tjEVAmKnfqlQOOFH25fXVVROx8d+xBlQUeseuQRYTwK6Y4HtYIvlluqquunMuyF8AqSZiXKuecn4IL2Rrnlr4CDd/zi6YNpKslM; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=4nl8DnjQEYgNfhRW9I3fXbaC2tjEVAmKnfqlQOOFH25fXVVROx8d+xBlQUeseuQRYTwK6Y4HtYIvlluqquunMuyF8AqSZiXKuecn4IL2Rrnlr4CDd/zi6YNpKslM; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/lib/font-awesome/css/font-awesome.min.css HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: text/css,*/*;q=0.1 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: style 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: text/css

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=yGKxIb91jLoUPizKrQdr7siyXzNBD/aiS636Mpqi2Bo9L22DchDDB+k1gdlUbFWvnfRk9hCLDZMS01gXcd48gePD3gLE6xJv3u4HbOg7HDiPSW8EiISxNbJlzJ+T; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=yGKxIb91jLoUPizKrQdr7siyXzNBD/aiS636Mpqi2Bo9L22DchDDB+k1gdlUbFWvnfRk9hCLDZMS01gXcd48gePD3gLE6xJv3u4HbOg7HDiPSW8EiISxNbJlzJ+T; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

                                        
                                            GET /assets/js/cleanzone.js HTTP/1.1 

                                        
                                            
Host: unsub-gc.com

                                        

                                        
                                            
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0 

                                        
                                            
Accept: */* 

                                        
                                            
Accept-Language: en-US,en;q=0.5 

                                        
                                            
Accept-Encoding: gzip, deflate, br 

                                        
                                            
Connection: keep-alive 

                                        
                                            
Referer: https://unsub-gc.com/unsubscribe/1017/84/2/bc26b46904239f9a9bffdcaa9c7b7708/?s1= 

                                        
                                            
Cookie: AWSALB=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF; AWSALBCORS=hfuo3j4Dm7yg0OnUUzOk8zfgvDFXyQvtXGOfF07jhF1OKflSHnPX3DNw73pf/rlZ5rwbBF69kTohbrVj4WDr6UhqtLIB5Q4gLtO/oSN2gmR9/sBnsOkDTHTaCIoF 

                                        
                                            
Sec-Fetch-Dest: script 

                                        
                                            
Sec-Fetch-Mode: no-cors 

                                        
                                            
Sec-Fetch-Site: same-origin 

                                        
                                            
TE: trailers

                                         54.88.51.28

                                        
                                            HTTP/2 200 OK 

                                        
                                            
content-type: application/javascript

                                        

                                        
                                            
date: Mon, 12 Sep 2022 08:58:02 GMT 

                                        
                                            
set-cookie: AWSALB=1yZpJEWya6/Y5wxedLuAHT121p0yFm7H0pWa9i2cTkT4YXgMaxoegTkJbtQenQRFz8EiBsMGskjRzW7YJFVN/8KhdjSuqW2OR79+qOz53z6E7UwzLxdlqpibl5Zm; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/
AWSALBCORS=1yZpJEWya6/Y5wxedLuAHT121p0yFm7H0pWa9i2cTkT4YXgMaxoegTkJbtQenQRFz8EiBsMGskjRzW7YJFVN/8KhdjSuqW2OR79+qOz53z6E7UwzLxdlqpibl5Zm; Expires=Mon, 19 Sep 2022 08:58:02 GMT; Path=/; SameSite=None; Secure 

                                        
                                            
server: nginx/1.6.2 

                                        
                                            
last-modified: Fri, 07 Oct 2016 20:24:12 GMT 

                                        
                                            
content-encoding: gzip 

                                        
                                            
X-Firefox-Spdy: h2 

                                        
                                            
 

                                        
                                        
                                            

                                            --- Additional Info ---

URL	fair.fairfaxfamilyhealthcare.com/ga/click/2-49380111-161-800-1552-1044-a9cab3b59a-g78fb51e0e
IP	95.111.245.92 (Germany)
ASN	#51167 Contabo GmbH
UserAgent	Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer
Report completed	2022-09-12 08:58:12 UTC
Status	Loading report..
IDS alerts	0
Blocklist alert	1
urlquery alerts	No alerts detected
Tags	None

Overview

Domain Summary (13)

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 95.111.245.92

Last 5 reports on ASN: Contabo GmbH

Last 5 reports on domain: fairfaxfamilyhealthcare.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (10)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (51)

Overview

Domain Summary (13)

Network Intrusion Detection Systemsinfo

Suricata /w Emerging Threats Pro

Blocklists

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files

No files detected

Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 95.111.245.92

Last 5 reports on ASN: Contabo GmbH

Last 5 reports on domain: fairfaxfamilyhealthcare.com

Last 5 reports with similar screenshot

JavaScript

Executed Scripts (10)

Executed Evals (0)

Executed Writes (0)

HTTP Transactions (51)

Network Intrusion Detection Systems