r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b7be8442ec1e518ccc80739495f6d047
7a9d24b9d4046262c7753c49afaf9c19f4840626
b93410a9d62da3f219796d753b61a0f730cc272c13596724aa9d20efba298b44
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "B93410A9D62DA3F219796D753B61A0F730CC272C13596724AA9D20EFBA298B44"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10926
Expires: Sat, 05 Nov 2022 05:45:15 GMT
Date: Sat, 05 Nov 2022 02:43:09 GMT
Connection: keep-alive
fbsl.yolasite.com/
104.16.162.215301 Moved Permanently 166 B IP 104.16.162.215:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
Analyzer Verdict Alert openphish Facebook, Inc.
fortinet Phishing
GET / HTTP/1.1
Host: fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Sat, 05 Nov 2022 02:43:09 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Lookup-Cache-Hit: 1
Location: http://www.fbsl.yolasite.com/
X-Hrouter: hrouter3
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=ioh1Ar8a3Yqc_axE1.pFBw86chkcuKEBL7GIT7v2RaI-1667616189-0-AeRNkgVmq9OMcN4htC3hB02wc7wgImYTro1sY7MkWfu/6carG1e6rgSHEF++9yLcAe+l0Mb3mNG/lQu9aW9jxnQu68Ypb0RACgQt0c4Cn1EU; path=/; expires=Sat, 05-Nov-22 03:13:09 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 76523d7d98550b55-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9f3527f898221f8ba6b5015f6decc100
ead93baa0e9d3a6297be3377dc3a624e5a3f509a
73a068f907cc50dd60af18d545b4264dd44bc4b9f40bf9adfceea157fdc33099
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73A068F907CC50DD60AF18D545B4264DD44BC4B9F40BF9ADFCEEA157FDC33099"
Last-Modified: Thu, 03 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10279
Expires: Sat, 05 Nov 2022 05:34:28 GMT
Date: Sat, 05 Nov 2022 02:43:09 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash cd02b32dbc8416dcb10b468af2166c33
503a9c4cabdb19dfde769f5e2d3ef919c818c364
46ca638514d9d4cf252762fdac37a5e7b1da550fcc9911070b0b26a6aa6150a7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3680
Cache-Control: max-age=114556
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:09 GMT
Etag: "6364dbd9-1d7"
Expires: Sun, 06 Nov 2022 10:32:25 GMT
Last-Modified: Fri, 04 Nov 2022 09:31:05 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: yHfzIugs4lZiiHpnTEz/cUnkQSVoFt7NRU6lftUSE1r89nv5wShYoaaqYTVN2IPlgxz7cR7FjrZBwNxcUPlwcw==
x-amz-request-id: 64DQP66JC79Z3KTW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 05 Nov 2022 01:47:00 GMT
age: 3369
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Sat, 05 Nov 2022 02:43:09 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.fbsl.yolasite.com/
104.16.161.215200 OK 4.6 kB IP 104.16.161.215:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (439)
Hash d6f30c52a2bcf690ec30c7eb7ca20e76
024cac737c21b0c6d0ad08b535722aca15ae9c84
7e1c3b060067ce5b0f207d55e70157b120617368733b7628455d8a82f5c90bba
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:09 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 24 Mar 2014 16:14:05 GMT
Cache-Control: public, max-age=0
X-Hstore: hstore10
Content-Encoding: gzip
X-Hrouter: hrouter4
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=WOxiKPPJERUvuUotf1hAawQW2iDo2YyKjkUs7s1MGAM-1667616189-0-AQEwshAMM+xXx4GRBtGpLEHMFsG9gN/3O9JOTi1OtrMFb5frUluOR23Ld1PrN3WToBOwWGu1pcZVsC5bU9KJDAACLDY/fRL+9xF+VKsSDmXX; path=/; expires=Sat, 05-Nov-22 03:13:09 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 76523d7f7a4cb517-OSL
alt-svc: h2=":443"; ma=60
ajax.googleapis.com/ajax/libs/webfont/1.4.2/webfont.js
142.250.74.10200 OK 6.9 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/webfont/1.4.2/webfont.js
IP 142.250.74.10:0
File type ASCII text, with very long lines (1462)
Hash eb324cf120c6696339a0a080248eab8b
c16407addfbca352d2d7912903f69ca8c44b3052
02576cb592cb65d456aab93f01be9fb4dfd2c6dd9f863fc218a0fbafc754b4ea
GET /ajax/libs/webfont/1.4.2/webfont.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 6918
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Tue, 01 Nov 2022 21:07:45 GMT
Expires: Wed, 01 Nov 2023 21:07:45 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 279324
ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
142.250.74.10200 OK 33 kB URL HTTP/1.1 ajax.googleapis.com/ajax/libs/jquery/1.7.1/jquery.min.js
IP 142.250.74.10:0
File type HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (32769)
Hash 18351732b1849ba758e98884e186b3c8
d735af8661eda41ff4ffbf76e6a284a0e2deb81c
bfac625d304d52e04f2caeb19266354749929c888ca09d3d1e3edcbb8770d0f0
GET /ajax/libs/jquery/1.7.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33333
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Wed, 02 Nov 2022 19:38:36 GMT
Expires: Thu, 02 Nov 2023 19:38:36 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8
Age: 198273
platform.twitter.com/widgets.js
192.229.233.25200 OK 29 kB URL HTTP/1.1 platform.twitter.com/widgets.js
IP 192.229.233.25:0
File type Unicode text, UTF-8 text, with very long lines (33915)
Hash 7899fffaf0046efb7f9be2495d9dc928
d4c60d88e8deea577a50f9d20e1b6b3a20cba2cf
07d50450f22df0588cc1b67f5a124cb91d99a032a229586eb7dc490cce9f7f30
GET /widgets.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 3000
Age: 297
Cache-Control: public, max-age=1800
Content-Type: application/javascript; charset=utf-8
Date: Sat, 05 Nov 2022 02:43:09 GMT
Etag: "6633f9603c759c40d9b200995454f17c+gzip"
Last-Modified: Wed, 02 Nov 2022 19:43:37 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F70B)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
x-amzn-internal-status: 304
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 29221
edge.quantserve.com/quant.js
91.228.74.200200 OK 9.7 kB URL HTTP/1.1 edge.quantserve.com/quant.js
IP 91.228.74.200:0
File type ASCII text, with very long lines (25155)
Hash 115da47c14f8ca460ad94d42e4add32d
f2976dddd2b5a271b4d16848b785014c01068a6f
5c3ae2aea5338e11fb70457d01a5f19a07295bacb09cae4d0a1f763e2897bfdf
GET /quant.js HTTP/1.1
Host: edge.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:09 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: private, max-age=604800
Content-Encoding: gzip
Etag: "OtCg6ZHW+0OUUnygESUOBQ=="
Expires: Sat, 12 Nov 2022 02:43:09 GMT
Vary: Accept-Encoding
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 3f8945e0b967faaa3d66f021b51698b0
d16f00dddcf46a232938d28c249f5b9777db6b2d
72c9c95ec287ed44653e94d79c883e0750abac217e80fb0845fcef9e5278af55
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
apis.google.com/js/plusone.js
142.250.74.174200 OK 21 kB URL HTTP/2 apis.google.com/js/plusone.js
IP 142.250.74.174:0
File type ASCII text, with very long lines (1279)
Hash 557a84e1a4b4a45f586fb72599df1ad0
78eec98dcefee53f24a6684e407c81676e7952b4
a488b14f67aa02c62eb30b758d1eb76155478e3af0b2fd78dc52de4e28ed4014
GET /js/plusone.js HTTP/1.1
Host: apis.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
access-control-allow-origin: *
content-security-policy: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/gapi-team
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="gapi-team"
report-to: {"group":"gapi-team","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/gapi-team"}]}
timing-allow-origin: *
content-length: 20987
date: Sat, 05 Nov 2022 02:43:09 GMT
expires: Sat, 05 Nov 2022 02:43:09 GMT
cache-control: private, max-age=1800, stale-while-revalidate=1800
etag: "c1b020d722de3a38"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4a9066e8faeec7f06d9a7e91bef8ff52
699ce1c29412a4c3f9018f4deceb3db399ddcd29
46461d19bf1ea06f23d89c4179135eaca9d7c8753a91e913b3adaf2615bee36f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:09 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 42a0adacced30df52cf7cad3e200036d
f7b4114defc61f806dbb74fd228bca155d52362a
e4928481739a2a75dce86c03b355c6dff507426e8d851cba5ca8537b1be87c20
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3461
Cache-Control: max-age=109278
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "6364c817-1d7"
Expires: Sun, 06 Nov 2022 09:04:28 GMT
Last-Modified: Fri, 04 Nov 2022 08:06:47 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.fbsl.yolasite.com/classes/components/Form/layouts/Default/Default.css
104.16.161.215200 OK 441 B URL HTTP/1.1 www.fbsl.yolasite.com/classes/components/Form/layouts/Default/Default.css
IP 104.16.161.215:0
Hash ba58b36d73cdaa4d8c260eb5fa5f98a7
3268326ef8f1816022783d32cfd404df92ae9b23
3997ff8b01727c51bf9580748187a45d1f48e63cb23e995102c19fa6364191d2
GET /classes/components/Form/layouts/Default/Default.css HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Wed, 25 Mar 2015 01:16:41 GMT
ETag: W/"55120c79-6c6"
X-Hstore: hstore9
Content-Encoding: gzip
X-Hrouter: hrouter3
CF-Cache-Status: REVALIDATED
Set-Cookie: __cf_bm=2xgwpSIspn8Kj3JZVVHrvgNMclfVXmn5iu8QLBqEsew-1667616190-0-AR7cNrRYvy9k5gMzqp/A4jYdrANhhOZS+Tb9LmCudGPfyn4gV63f8nIAEJ2zdGYNxFexmHPTWk0SRsnopUpxeNgf52sGgHC2T8RbyRZRMtFd; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d819b18b517-OSL
alt-svc: h2=":443"; ma=60
www.fbsl.yolasite.com/classes/commons/resources/flyoutmenu/flyoutmenu.js
104.16.161.215200 OK 845 B URL HTTP/1.1 www.fbsl.yolasite.com/classes/commons/resources/flyoutmenu/flyoutmenu.js
IP 104.16.161.215:0
File type HTML document, ASCII text
Hash 91057812c04dd4700474868cf0de7b05
0e9226c537c758afe67c4b744dfef16e77d6853e
8a22a61ea8c6313340508ad00ddbd56ea989f423b535be29e7a8a102dc2ad934
Analyzer Verdict Alert fortinet Phishing
GET /classes/commons/resources/flyoutmenu/flyoutmenu.js HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Lookup-Cache-Hit: 1
Last-Modified: Fri, 27 Mar 2015 18:52:33 GMT
ETag: W/"5515a6f1-d41"
X-Hstore: hstore9
Content-Encoding: gzip
X-Hrouter: hrouter3
CF-Cache-Status: REVALIDATED
Set-Cookie: __cf_bm=2_wJp9vTSTbkPVLjGpaLZgBCf3km7mvh_d0ADdlpp9I-1667616190-0-Aa5z7thPiilesgLIf4ED/9nNNf6LTDLnIQ66ytNHgULGQA/V2SiGcJFbRNNLslkrqgMPfRjYeOMtzg32pxGUw3HX1aO+B6QduvFvK9J7SvDY; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d81af48b527-OSL
alt-svc: h2=":443"; ma=60
www.fbsl.yolasite.com/classes/commons/resources/flyoutmenu/flyoutmenu.css
104.16.161.215200 OK 617 B URL HTTP/1.1 www.fbsl.yolasite.com/classes/commons/resources/flyoutmenu/flyoutmenu.css
IP 104.16.161.215:0
Hash b0c5958fbebee943f14c32f13d370081
ccbbc3915ec3f55c651f65c59aa50fbb3951199a
4f46490606d72834d2a6fad6d3f28d555d79a47cbf914f7a1d7ce05bbab04cbf
GET /classes/commons/resources/flyoutmenu/flyoutmenu.css HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/css
Transfer-Encoding: chunked
Connection: keep-alive
Lookup-Cache-Hit: 1
Last-Modified: Fri, 27 Mar 2015 18:52:33 GMT
ETag: W/"5515a6f1-8db"
X-Hstore: hstore9
Content-Encoding: gzip
X-Hrouter: hrouter3
CF-Cache-Status: REVALIDATED
Set-Cookie: __cf_bm=_ldzzeGVA8lGpAyFnBq0cetDmQwVYlyW5X7luqIRByI-1667616190-0-AVs+BWsu3Up8osaOa4xu4WCRUEIjSD+GZiUj+7s8AIRD+E8t5dwxWbsujbU+Bt5fpFCvAvbVcSn2KAIpABo6dEuewleZQWowpHtB7u+JgBup; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d81af1db4fd-OSL
alt-svc: h2=":443"; ma=60
analytics.yolacdn.net/tracking.js
104.18.205.95200 OK 5.6 kB URL HTTP/1.1 analytics.yolacdn.net/tracking.js
IP 104.18.205.95:0
File type ASCII text, with very long lines (13330)
Hash 9d6a3a0ed10ab209569144c9172fc0a2
88921e23f736ee7a380074db748ee35636420204
c48c03bb296ef1d5e1c80f01a54bbee1538adbb15b2419cf23f9bd916176e42a
GET /tracking.js HTTP/1.1
Host: analytics.yolacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
Last-Modified: Mon, 11 Jul 2022 11:18:24 GMT
ETag: W/"62cc0700-342e"
Cache-Control: max-age=7200, public
Content-Encoding: gzip
CF-Cache-Status: HIT
Age: 490
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d848cd10afa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
www.facebook.com/plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US
157.240.240.35301 Moved Permanently 0 B URL HTTP/1.1 www.facebook.com/plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://www.facebook.com/plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US
Content-Type: text/plain
Server: proxygen-bolt
Date: Sat, 05 Nov 2022 02:43:10 GMT
Connection: keep-alive
Content-Length: 0
platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.fbsl.yolasite.com
192.229.233.25200 OK 105 kB URL HTTP/1.1 platform.twitter.com/widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.fbsl.yolasite.com
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (56168)
Size 105 kB (105445 bytes)
Hash 2b4968b185495eddda0d85b2351ebb71
c665785ca0f4039f8c71d94631cd50a879d866b5
eb8af089d8082a58a6e90fedc23007f17a9e89ddbc6a29b6e535e4847ba94160
GET /widgets/widget_iframe.644279d1635fd969e87af94a98bd232b.html?origin=http%3A%2F%2Fwww.fbsl.yolasite.com HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 188537
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "50d73c0b4a4c7e4697b9c6ac6f1ecd75+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:59 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F71D)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=VZ,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 105445
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 077022401d8540421bf44becb30813d2
557dd02a253b32d9f8a82fe3f0975f28ee86fb19
e098b711056a5cbf52a167c8e845a373c83e849a8b9f202ced2752aa6c205d96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1042
Cache-Control: max-age=167707
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "6365b5c7-1d7"
Expires: Mon, 07 Nov 2022 01:18:17 GMT
Last-Modified: Sat, 05 Nov 2022 01:00:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
www.facebook.com/plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US
157.240.240.35200 OK 0 B URL HTTP/2 www.facebook.com/plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US
IP 157.240.240.35:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /plugins/like.php?send=false&href=http%3A%2F%2Fwww.fbsl.yolasite.com%2F&layout=button_count&show_faces=false&action=like&width=49&height=20&locale=en_US HTTP/1.1
Host: www.facebook.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.fbsl.yolasite.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html;charset=utf-8
pragma: no-cache
cache-control: private, no-cache, no-store, must-revalidate
expires: Sat, 01 Jan 2000 00:00:00 GMT
content-security-policy-report-only: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;report-uri https://www.facebook.com/csp/reporting/?minimize=0;
content-security-policy: default-src data: blob: 'self' https://*.fbsbx.com 'unsafe-inline' *.facebook.com 'unsafe-eval' *.fbcdn.net;script-src *.facebook.com *.fbcdn.net *.facebook.net *.google-analytics.com *.google.com 127.0.0.1:* 'unsafe-inline' 'unsafe-eval' blob: data: 'self' connect.facebook.net;style-src fonts.googleapis.com *.fbcdn.net data: *.facebook.com 'unsafe-inline';connect-src *.facebook.com facebook.com *.fbcdn.net *.facebook.net wss://*.facebook.com:* wss://*.whatsapp.com:* wss://*.fbcdn.net attachment.fbsbx.com ws://localhost:* blob: *.cdninstagram.com 'self' http://localhost:3103 wss://gateway.facebook.com wss://edge-chat.facebook.com wss://snaptu-d.facebook.com wss://kaios-d.facebook.com/ v.whatsapp.net *.fbsbx.com *.fb.com;font-src data: *.gstatic.com *.facebook.com *.fbcdn.net *.fbsbx.com;img-src *.fbcdn.net *.facebook.com data: https://*.fbsbx.com *.tenor.co media.tenor.com facebook.com *.cdninstagram.com fbsbx.com fbcdn.net *.giphy.com connect.facebook.net *.carriersignal.info blob: android-webview-video-poster: googleads.g.doubleclick.net www.googleadservices.com *.whatsapp.net *.fb.com *.oculuscdn.com;media-src *.cdninstagram.com blob: *.fbcdn.net *.fbsbx.com www.facebook.com *.facebook.com https://*.giphy.com data:;frame-src *.doubleclick.net *.google.com *.facebook.com www.googleadservices.com *.fbsbx.com fbsbx.com data: www.instagram.com *.fbcdn.net https://paywithmybank.com;worker-src blob: *.facebook.com data:;block-all-mixed-content;upgrade-insecure-requests;
report-to: {"max_age":259200,"endpoints":[{"url":"https:\/\/www.facebook.com\/ajax\/browser_error_reports\/?device_level=unknown"}]}
cross-origin-opener-policy: same-origin-allow-popups
x-content-type-options: nosniff
x-xss-protection: 0
x-fb-debug: w6p4EPtp/wEcSbBDXs5AR8EBoJLQX/r2XJHWiIUi16kRk+Iad4uRt9GF/sjQHAjjzqeCAq2pQGl8RJRwaPdqxA==
content-length: 0
date: Sat, 05 Nov 2022 02:43:10 GMT
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 313 B IP 93.184.220.29:0
Hash d59fb730ecd3a859f63173cc9b2fbd54
38c05a45435ac6f1c65b8dac0d71a1931101226e
0600549165886713e88a8f2def7ad1c9efd4c38a81a75634a096b9e5a976f87e
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4233
Cache-Control: max-age=95628
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "63648fc1-139"
Expires: Sun, 06 Nov 2022 05:16:58 GMT
Last-Modified: Fri, 04 Nov 2022 04:06:25 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 077022401d8540421bf44becb30813d2
557dd02a253b32d9f8a82fe3f0975f28ee86fb19
e098b711056a5cbf52a167c8e845a373c83e849a8b9f202ced2752aa6c205d96
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1042
Cache-Control: max-age=167707
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "6365b5c7-1d7"
Expires: Mon, 07 Nov 2022 01:18:17 GMT
Last-Modified: Sat, 05 Nov 2022 01:00:55 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
52.38.146.2101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.38.146.2:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: z0b6rPf66784RD+Mj47yVw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 08CFTu70vy6TGNlSEOuuqGSFVNY=
developers.google.com/
142.250.74.14301 Moved Permanently 0 B IP 142.250.74.14:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fbsl.yolasite.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Location: https://developers.google.com/
X-Cloud-Trace-Context: 0883092bae714d3032d6d96b833d9442
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/html
Server: Google Frontend
Content-Length: 0
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 4a9066e8faeec7f06d9a7e91bef8ff52
699ce1c29412a4c3f9018f4deceb3db399ddcd29
46461d19bf1ea06f23d89c4179135eaca9d7c8753a91e913b3adaf2615bee36f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.yola.com/LoggingAgent/LoggingAgent?url=//www.fbsl.yolasite.com/&pagename=index&siteid=8a4986c93e1754f9013e27d6ff92027a&resolution=1280x1024&colorDepth=24&flash=0&java=0&sitereferer=&visitorId=CA0ACA1D-9F90-0001-7D20-1B6057F05C40&visitId=CA0ACA1D-9FA0-0001-228C-1A3018501CCE&LoggingAgentReturnType=script
104.18.126.89200 OK 32 B URL HTTP/1.1 pixel.yola.com/LoggingAgent/LoggingAgent?url=//www.fbsl.yolasite.com/&pagename=index&siteid=8a4986c93e1754f9013e27d6ff92027a&resolution=1280x1024&colorDepth=24&flash=0&java=0&sitereferer=&visitorId=CA0ACA1D-9F90-0001-7D20-1B6057F05C40&visitId=CA0ACA1D-9FA0-0001-228C-1A3018501CCE&LoggingAgentReturnType=script
IP 104.18.126.89:0
File type ASCII text, with no line terminators
Hash 86e1263663c289810b49396c6145cddd
833a1f970c5ec709a93f52158db74cc72fdf9200
035dc0f996ae40e0b8ce238d5b0f624149424feec7955192bb08833bc4dec77a
GET /LoggingAgent/LoggingAgent?url=//www.fbsl.yolasite.com/&pagename=index&siteid=8a4986c93e1754f9013e27d6ff92027a&resolution=1280x1024&colorDepth=24&flash=0&java=0&sitereferer=&visitorId=CA0ACA1D-9F90-0001-7D20-1B6057F05C40&visitId=CA0ACA1D-9FA0-0001-228C-1A3018501CCE&LoggingAgentReturnType=script HTTP/1.1
Host: pixel.yola.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: application/x-javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 76523d84ec2eb4f4-OSL
Content-Encoding: gzip
Expires: -1
CF-Cache-Status: DYNAMIC
Pragma: no-cache
Set-Cookie: __cf_bm=scaQU1P2szr1bSAjDpYPKyZlxBhN8X3zZJ8v2Y4Tw6w-1667616190-0-AUX2RTays9ntKdRHzaTYeHKCeNuoVZHdgILrLu8Gs3iMRt6Lj2vrBVLiGhtfGlt5m+mYked+YPaPJRXJuJMPCyeDhtEpEg7NCe+G9OIQ4Ow+; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yola.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
www.fbsl.yolasite.com/classes/commons/yola_footer/png/yolaTag.png
104.16.161.215200 OK 755 B URL HTTP/1.1 www.fbsl.yolasite.com/classes/commons/yola_footer/png/yolaTag.png
IP 104.16.161.215:0
File type PNG image data, 400 x 32, 8-bit/color RGBA, non-interlaced\012- data
Hash 1af88fdd935a4754939558c7af4f7730
aaa0913b9f65e21183819d048df518293d8aa00e
0544e488de992ad3ddec92778c9e3984734b5a47462aafb0afedb494d2c7b27b
GET /classes/commons/yola_footer/png/yolaTag.png HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/png
Content-Length: 755
Connection: keep-alive
Lookup-Cache-Hit: 1
Last-Modified: Fri, 27 Mar 2015 18:52:33 GMT
ETag: "5515a6f1-2f3"
X-Hstore: hstore9
X-Hrouter: hrouter3
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Set-Cookie: __cf_bm=hv_WGGdxHurJmoF26FR4AcGIH537CndVdoZJug9ueJk-1667616190-0-AS0s4SBs5cEDGIk6I5rgDylJZyb+eHuI0ssJ+TbzSTfKUXpHRgANfXqDpFiwXIyM9j/l0GwH193ZKuFVWfeqFXRcj7Vlp4w3aV9q/Ja43IdX; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d849f05b4f7-OSL
alt-svc: h2=":443"; ma=60
syndication.twitter.com/settings?session_id=5a111ef4b79394aba399d1dac68393e841a80f1d
104.244.42.200200 OK 375 B URL HTTP/2 syndication.twitter.com/settings?session_id=5a111ef4b79394aba399d1dac68393e841a80f1d
IP 104.244.42.200:0
File type JSON data\012- , ASCII text, with very long lines (914), with no line terminators
Hash 22ba4030aabb3e3f64bbbcb1148617f0
2fc6418de8aeb4439351672d396dc8823b3e9357
db89caae1654117a1d9191db8633b6da5cde5deebf238bbd1800616cfc8f4254
GET /settings?session_id=5a111ef4b79394aba399d1dac68393e841a80f1d HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://platform.twitter.com/
Origin: https://platform.twitter.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site
HTTP/2 200 OK
date: Sat, 05 Nov 2022 02:43:10 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: application/json; charset=utf-8
cache-control: must-revalidate, max-age=600
last-modified: Sat, 05 Nov 2022 02:43:10 GMT
content-length: 375
content-encoding: gzip
x-transaction-id: 8cdb9cc360de6934
strict-transport-security: max-age=631138519
access-control-allow-origin: https://platform.twitter.com
access-control-allow-credentials: true
x-response-time: 108
x-connection-hash: 6531884fec3aa5e50d76ed1120557ed9c7cdba12e1981849262a681bdd8a7072
X-Firefox-Spdy: h2
www.fbsl.yolasite.com/templates/Suarez/resources/canvas.jpg
104.16.161.215200 OK 4.1 kB URL HTTP/1.1 www.fbsl.yolasite.com/templates/Suarez/resources/canvas.jpg
IP 104.16.161.215:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 104x104, components 3\012- data
Hash 58ce33c1aa38d65caea53aae5ad3aa26
7597ce623b1cc88e6b5dbf1624ea753f1649579a
247b9af71379c518d0964d81662e0d55c07c6fe48070f937d98ff6acb41d71c7
GET /templates/Suarez/resources/canvas.jpg HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/jpeg
Content-Length: 4059
Connection: keep-alive
Lookup-Cache-Hit: 1
Last-Modified: Wed, 18 Feb 2015 22:26:34 GMT
ETag: "54e5119a-fdb"
X-Hstore: hstore10
X-Hrouter: hrouter4
CF-Cache-Status: EXPIRED
Accept-Ranges: bytes
Set-Cookie: __cf_bm=H73Y3XCjoYnFEgNt3kLEm8WyRZsWo0.QkcCfNzSWBTE-1667616190-0-ARjz66pdmyxX+fmIKpTSyNE7+lZqa5N2d5m2xA9/qAxkmeRVI5PSgWfzBa39ftI7YA6RxTZL0CCxWSMeA4BmnwjDJsJgb0Y2jdgxNuOalShp; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d845834b527-OSL
alt-svc: h2=":443"; ma=60
www.fbsl.yolasite.com/templates/Suarez/resources/slate.jpg
104.16.161.215200 OK 7.9 kB URL HTTP/1.1 www.fbsl.yolasite.com/templates/Suarez/resources/slate.jpg
IP 104.16.161.215:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 1200x131, components 3\012- data
Hash 59f069664f50c63c6d6b4c4102bc1106
a37132adc6c4a08c1dc2bd97b28f34d5a7c5ebca
b5cebccf3a7acd96a924dce802f7bf020f89715a40a7c712ddf109d5c61164d4
GET /templates/Suarez/resources/slate.jpg HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/jpeg
Content-Length: 7909
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "55120c79-1ee5"
Last-Modified: Wed, 25 Mar 2015 01:16:41 GMT
Lookup-Cache-Hit: 1
X-Hrouter: hrouter3
X-Hstore: hstore9
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Set-Cookie: __cf_bm=964HL1UZLc4baRww0AB8N.neMVv9ny092d4VPuVRKdA-1667616190-0-ATmGb4+pwMncr0XA6pKwzzjtdlTujuk6pywxE8+lgDkPwUeuCZKlmAc6zQO5CPHucJkYhkhCNt+sUR/41GMr9yIkU0XQDllTfLzmjds0CZPE; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d846837b4fd-OSL
alt-svc: h2=":443"; ma=60
analytics.sitewit.com/partner/yola/8a4986c93e1754f9013e27d6ff92027a/sw.js
3.218.224.224200 OK 20 kB URL HTTP/1.1 analytics.sitewit.com/partner/yola/8a4986c93e1754f9013e27d6ff92027a/sw.js
IP 3.218.224.224:0
File type C source, ASCII text, with very long lines (20098), with no line terminators
Hash 8fef626e96a4e2d3a7669431673196ea
d756677a6638ceeb27833fd12ce3801bb1481063
dcf761b32fc1124e0cd6d8327db4c106c0413203db752276a12590ee9fb00400
GET /partner/yola/8a4986c93e1754f9013e27d6ff92027a/sw.js HTTP/1.1
Host: analytics.sitewit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 20098
Connection: keep-alive
Set-Cookie: AWSALB=CHdNLaGVEuAZZ7zFehX1/eyDrnYRFJzNRFVkNbaoN0d3wQDZXikBbI9Khk8ExYPAfIuQ2YHSsXIvmWs3yn3W/pi6sUr/ISOaNyEBC5cc18JYNYEeLOozX6sZJuJg; Expires=Sat, 12 Nov 2022 02:43:10 GMT; Path=/
AWSALBCORS=CHdNLaGVEuAZZ7zFehX1/eyDrnYRFJzNRFVkNbaoN0d3wQDZXikBbI9Khk8ExYPAfIuQ2YHSsXIvmWs3yn3W/pi6sUr/ISOaNyEBC5cc18JYNYEeLOozX6sZJuJg; Expires=Sat, 12 Nov 2022 02:43:10 GMT; Path=/; SameSite=None
ASP.NET_SessionId=d3yrl4qlqx0a2hb5blrdkyu3; path=/; HttpOnly; SameSite=Lax
Cache-Control: private,no-cache
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
P3P: CP="DSP CAO CUR DEVo PSAo PSDo ADMo OUR STP NAV COM INT STA UNI PHY DEM", policyref="/w3c/p3p.xml"
www.fbsl.yolasite.com/templates/Suarez/resources/star.png
104.16.161.215200 OK 510 B URL HTTP/1.1 www.fbsl.yolasite.com/templates/Suarez/resources/star.png
IP 104.16.161.215:0
File type PNG image data, 12 x 11, 8-bit/color RGBA, non-interlaced\012- data
Hash deeffb2521aee3630d01988869bdb9d4
338209ff9bb93a0768d46ba8b131160790ae57e4
3936ae95cdeb1ab9031be1c92b695dd98fabbf3cb1099d792eb3226cb70112d2
GET /templates/Suarez/resources/star.png HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/png
Content-Length: 510
Connection: keep-alive
Lookup-Cache-Hit: 1
Last-Modified: Wed, 25 Mar 2015 01:16:41 GMT
ETag: "55120c79-1fe"
X-Hstore: hstore9
X-Hrouter: hrouter3
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Set-Cookie: __cf_bm=psZwZUNR0hqubf8WFNQKaOOM8e0yvT2YTaOLTf4QZEU-1667616190-0-AW7zQtb2tbnYqIv2TeUk0ezp1KK6aoJMdM6R5XTVdyWSj2PpXN5BbeT0A4ghuE81A8COy6zB0vzM1VtYJZTcy9+8A/kF+nD/C1wAYaCOqrJU; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d846c33b517-OSL
alt-svc: h2=":443"; ma=60
www.fbsl.yolasite.com/templates/Suarez/resources/board.jpg
104.16.161.215200 OK 7.9 kB URL HTTP/1.1 www.fbsl.yolasite.com/templates/Suarez/resources/board.jpg
IP 104.16.161.215:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 100x100, segment length 16, baseline, precision 8, 379x201, components 3\012- data
Hash e03ecfc3050b1e310566203e7b4e575f
a2fae7782d0df3c2347d4568c431d6f7701ff29f
6c04d8133cbea01e3f8eeca9817dd7a2f9c6f3401372489102c0114c032f006e
GET /templates/Suarez/resources/board.jpg HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/jpeg
Content-Length: 7946
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "54e5119a-1f0a"
Last-Modified: Wed, 18 Feb 2015 22:26:34 GMT
Lookup-Cache-Hit: 1
X-Hrouter: hrouter4
X-Hstore: hstore10
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Set-Cookie: __cf_bm=y06ZieAv_pKyTSbGpnfw2WDSJQKJvhQwOlrlxAFC3AU-1667616190-0-AcQLg2qgE8ODUWdnr0p25qo6EQwMvoYn1+k1WLSIJSTKBRDu19K5W1tTcoaZ8djsY5I0mG+0EMKgqFD5spFIUkRwLKJn2GXseeAjFeFOjEhv; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d846a941c12-OSL
alt-svc: h2=":443"; ma=60
www.fbsl.yolasite.com/resources/iPhone-5S-color-FSMdotCOM%5B1%5D.jpg.cropped525x195o2%2C-4s525x199.jpg
104.16.161.215200 OK 13 kB URL HTTP/1.1 www.fbsl.yolasite.com/resources/iPhone-5S-color-FSMdotCOM%5B1%5D.jpg.cropped525x195o2%2C-4s525x199.jpg
IP 104.16.161.215:0
File type JPEG image data, JFIF standard 1.02, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 525x195, components 3\012- data
Hash 59a85ff0ecca453744e7f767f60f851e
bfa59aedaab0dbb49b03ab61ea996cf70e562dfb
fac473c028ecdf48917dfe8be27b458276bed3eeae806abc3be32833f0b5b93f
GET /resources/iPhone-5S-color-FSMdotCOM%5B1%5D.jpg.cropped525x195o2%2C-4s525x199.jpg HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/jpeg
Content-Length: 13002
Connection: keep-alive
Cf-Bgj: h2pri
ETag: "142522ca8635ad8270a307b2861e3dc0"
Last-Modified: Mon, 24 Mar 2014 16:04:40 GMT
CF-Cache-Status: REVALIDATED
Accept-Ranges: bytes
Set-Cookie: __cf_bm=955DrDzGCghjxut75dnpWBYqtTJcsHZrQT_2ZHxzfOQ-1667616190-0-AR90kGfPYenFRwZLE8W0c2AeG6UO2gAj+hep2tEme7naFdS03LTgUi45JVPN/rHDrau73WVmBbIqnINRepsBDFptdbnW7tCbZXzsZVVjt8e0; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d8478451c16-OSL
alt-svc: h2=":443"; ma=60
rules.quantcount.com/rules-p-b8x17GqsQ_656.js
54.230.111.4301 Moved Permanently 167 B URL HTTP/1.1 rules.quantcount.com/rules-p-b8x17GqsQ_656.js
IP 54.230.111.4:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /rules-p-b8x17GqsQ_656.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://rules.quantcount.com/rules-p-b8x17GqsQ_656.js
X-Cache: Redirect from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: ua8n1KfjJYm9lSI4Axw9Wligw3VnhHrsFhmYq225dkQhBxY0fifPBw==
analytics.sitewit.com/images/cq_blank.gif?_sw_yolaid=8A4986C93E1754F9013E27D6FF92027A&_sw_uid=b6a8bbaf-dafb-4d95-b3d4-72d139d8f6c2&_sw_fp=2656fc035ece54302d9302cfa26f2116a05ed862&_sw_pl=0&_sw_pc=0&_sw_dat=MXx3d3cuZmJzbC55b2xhc2l0ZS5jb218aHR0cDovL3d3dy5mYnNsLnlvbGFzaXRlLmNvbS98ZW4tVVN8MTI4MHwxMDI0fDI0fEZpcmVmb3gvMTA1LjB8eDY0fDF8MHwxfDB8LXx8LXwtfC18OTEuOTAuNDIuMTU0fDA=&to=270
3.218.224.224200 OK 35 B URL HTTP/1.1 analytics.sitewit.com/images/cq_blank.gif?_sw_yolaid=8A4986C93E1754F9013E27D6FF92027A&_sw_uid=b6a8bbaf-dafb-4d95-b3d4-72d139d8f6c2&_sw_fp=2656fc035ece54302d9302cfa26f2116a05ed862&_sw_pl=0&_sw_pc=0&_sw_dat=MXx3d3cuZmJzbC55b2xhc2l0ZS5jb218aHR0cDovL3d3dy5mYnNsLnlvbGFzaXRlLmNvbS98ZW4tVVN8MTI4MHwxMDI0fDI0fEZpcmVmb3gvMTA1LjB8eDY0fDF8MHwxfDB8LXx8LXwtfC18OTEuOTAuNDIuMTU0fDA=&to=270
IP 3.218.224.224:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015
GET /images/cq_blank.gif?_sw_yolaid=8A4986C93E1754F9013E27D6FF92027A&_sw_uid=b6a8bbaf-dafb-4d95-b3d4-72d139d8f6c2&_sw_fp=2656fc035ece54302d9302cfa26f2116a05ed862&_sw_pl=0&_sw_pc=0&_sw_dat=MXx3d3cuZmJzbC55b2xhc2l0ZS5jb218aHR0cDovL3d3dy5mYnNsLnlvbGFzaXRlLmNvbS98ZW4tVVN8MTI4MHwxMDI0fDI0fEZpcmVmb3gvMTA1LjB8eDY0fDF8MHwxfDB8LXx8LXwtfC18OTEuOTAuNDIuMTU0fDA=&to=270 HTTP/1.1
Host: analytics.sitewit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: image/gif
Content-Length: 35
Connection: keep-alive
Set-Cookie: AWSALB=xkX+FXBWjZya3+MyfFCtaTvkk4iMIvJ/6xgVr1TiAWsEgUW5VYDwC/DxKToWHLHsxGg6xfNsOyoB66rKIPCjwqOTZmsBSjt74cPMMJDSmv9oY7UPTNTfMEKv6ZVE; Expires=Sat, 12 Nov 2022 02:43:10 GMT; Path=/
AWSALBCORS=xkX+FXBWjZya3+MyfFCtaTvkk4iMIvJ/6xgVr1TiAWsEgUW5VYDwC/DxKToWHLHsxGg6xfNsOyoB66rKIPCjwqOTZmsBSjt74cPMMJDSmv9oY7UPTNTfMEKv6ZVE; Expires=Sat, 12 Nov 2022 02:43:10 GMT; Path=/; SameSite=None
Cache-Control: no-cache
Last-Modified: Thu, 24 Jun 2010 20:21:15 GMT
Accept-Ranges: bytes
ETag: "9f8deacbda13cb1:0"
Server: Microsoft-IIS/10.0
P3P: CP="DSP CAO CUR DEVo PSAo PSDo ADMo OUR STP NAV COM INT STA UNI PHY DEM", policyref="/w3c/p3p.xml"
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash b0b8880417d19c1159f5a4cef3d0aa45
d3609cf6dee19df09ff41fcc5e3a9bc828dc26e2
f0b9186d45786a2aceb2577aabb0c9a0bb70da208c46d8c323a88ced9ca296b3
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
connect.sitewit.com/js/8A4986C93E1754F9013E27D6FF92027A/sw_connect.js?ispartner=yola&ns=sw
3.224.216.74200 OK 32 B URL HTTP/1.1 connect.sitewit.com/js/8A4986C93E1754F9013E27D6FF92027A/sw_connect.js?ispartner=yola&ns=sw
IP 3.224.216.74:0
File type ASCII text, with no line terminators
Hash 0280d23b467b91f9ecd3bfc2aaab89e4
502abf953757ecee3d35b22125f9fee528979b1e
7ba60db4e4c1bf698247d9873e3bf61ebe517f299773270d4d40789be29d0d4e
GET /js/8A4986C93E1754F9013E27D6FF92027A/sw_connect.js?ispartner=yola&ns=sw HTTP/1.1
Host: connect.sitewit.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
HTTP/1.1 200 OK
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/javascript; charset=utf-8
Content-Length: 32
Connection: keep-alive
Set-Cookie: AWSALB=68/kkQca3gPHW4bGDJ2a5y2nZiDI3CbKPMJC4xRMCSnEw3PCY6T3EvGHLE2FrgpaUz8nVHZWcChDO9q77RA5CC+IYmq3cKSDbyMNtvQdRlt4RcP+uR5WNL8jMJuH; Expires=Sat, 12 Nov 2022 02:43:10 GMT; Path=/
AWSALBCORS=68/kkQca3gPHW4bGDJ2a5y2nZiDI3CbKPMJC4xRMCSnEw3PCY6T3EvGHLE2FrgpaUz8nVHZWcChDO9q77RA5CC+IYmq3cKSDbyMNtvQdRlt4RcP+uR5WNL8jMJuH; Expires=Sat, 12 Nov 2022 02:43:10 GMT; Path=/; SameSite=None
ASP.NET_SessionId=sotff2vhpsaef5pbi0rxos3n; path=/; HttpOnly; SameSite=Lax
Cache-Control: private
Server: Microsoft-IIS/10.0
X-AspNet-Version: 4.0.30319
P3P: CP="DSP CAO CUR DEVo PSAo PSDo ADMo OUR STP NAV COM INT STA UNI PHY DEM", policyref="/w3c/p3p.xml"
platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
192.229.233.25200 OK 2.4 kB URL HTTP/1.1 platform.twitter.com/js/button.d2f864f87f544dc0c11d7d712a191c1f.js
IP 192.229.233.25:0
File type ASCII text, with very long lines (7017), with no line terminators
Hash 83616664e4155f8af0efb0576f8920cf
1277b0f4f935bec3ada0f87c45395bb6d9b2efbc
bb19d85932c5e8a952b6fc28c1df42aed6d6920f79ee3f2217d2484294d575d3
GET /js/button.d2f864f87f544dc0c11d7d712a191c1f.js HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 188534
Cache-Control: public, max-age=315360000
Content-Type: application/javascript; charset=utf-8
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "7bb2d17ac20be3bd6ec1079356afecd9+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:52 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 2362
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
142.250.74.99200 OK 4.3 kB URL HTTP/2 ssl.gstatic.com/accounts/o/1832714284-postmessagerelay.js
IP 142.250.74.99:0
File type ASCII text, with very long lines (2267)
Hash 3f7502705229ccec9d066c5cd75e6c31
ede1663155afaa5a5213d075e6295c6d839b05c3
2be5113d3022d1819a19f327235d287a2538a03741fc08ccd9d55cc1d78b6282
GET /accounts/o/1832714284-postmessagerelay.js HTTP/1.1
Host: ssl.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://accounts.google.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/federated-signon-mpm-access
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="federated-signon-mpm-access"
report-to: {"group":"federated-signon-mpm-access","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/federated-signon-mpm-access"}]}
content-length: 4294
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sun, 30 Oct 2022 00:32:06 GMT
expires: Mon, 30 Oct 2023 00:32:06 GMT
cache-control: public, max-age=31536000
last-modified: Fri, 28 Oct 2022 02:07:59 GMT
content-type: text/javascript
age: 526264
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
rules.quantcount.com/rules-p-b8x17GqsQ_656.js
54.230.111.4200 OK 160 B URL HTTP/2 rules.quantcount.com/rules-p-b8x17GqsQ_656.js
IP 54.230.111.4:0
Hash c1c31c78be743444fcdde67a047bd8d0
5627f989bd133d9f1d02bb4b12658492caa48878
47af3d8bf9a6829c236e1941372015d8134c2bf6d52c3438d2819e55a3203ef4
GET /rules-p-b8x17GqsQ_656.js HTTP/1.1
Host: rules.quantcount.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.fbsl.yolasite.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript
content-length: 160
last-modified: Fri, 14 Oct 2022 00:23:33 GMT
x-amz-server-side-encryption: AES256
accept-ranges: bytes
server: AmazonS3
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
access-control-allow-methods: GET
date: Sat, 05 Nov 2022 02:27:06 GMT
cache-control: max-age=3600
etag: "c1c31c78be743444fcdde67a047bd8d0"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 92c4bb210eab82a152000047d3609a02.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: oDkL0AhY6vAFjExcoG13CNSVEbC9gros597R-h4GS0J7xy5q3_0SSg==
age: 965
X-Firefox-Spdy: h2
platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
192.229.233.25200 OK 14 kB URL HTTP/1.1 platform.twitter.com/widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html
IP 192.229.233.25:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32033)
Hash cd8176e04a5a760140a9de9ffe9d8a17
f3b4514c9df71da30eadd2d87fd6131e5c3bf7e3
601089b9e7dcd29e255c391dff1c3da64dd80bb72ee047561592d86dbbc4c472
GET /widgets/tweet_button.644279d1635fd969e87af94a98bd232b.en.html HTTP/1.1
Host: platform.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Encoding: gzip
Access-Control-Allow-Methods: GET
Access-Control-Allow-Origin: *
Age: 188534
Cache-Control: public, max-age=315360000
Content-Type: text/html; charset=utf-8
Date: Sat, 05 Nov 2022 02:43:10 GMT
Etag: "126ffb93f08e989b18a6e1fc082c9e33+gzip"
Last-Modified: Wed, 02 Nov 2022 19:36:56 GMT
P3P: CP="CAO DSP LAW CURa ADMa DEVa TAIa PSAa PSDa IVAa IVDa OUR BUS IND UNI COM NAV INT"
Server: ECS (ska/F709)
Server-Timing: x-cache;desc= HIT,x-tw-cdn;desc=,edge;dur=1
Vary: Accept-Encoding
X-Cache: HIT
x-tw-cdn: VZ
Content-Length: 13753
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 656a355c6cb333c5554fa65748d3d165
15e6dc206e412e258ca49e2eec46e67b831ea4a6
3bdcb16737f73a6985f7cfe3b221882d91b27ab3ec6f940f14477f94a0e40720
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 05 Nov 2022 02:43:10 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
pixel.quantserve.com/pixel;r=1604507157;rf=0;a=p-b8x17GqsQ_656;url=http%3A%2F%2Fwww.fbsl.yolasite.com%2F;uht=2;fpan=1;fpa=P0-170490971-1667616188873;pbc=;ns=0;ce=1;qjs=1;qv=52053f22-20221102120139;cm=;gdpr=0;ref=;d=fbsl.yolasite.com;dst=0;et=1667616189515;tzo=0;ogl=;ses=f3a393c0-e5ca-42ad-b77e-fedf213bcb67
91.228.74.206200 OK 35 B URL HTTP/2 pixel.quantserve.com/pixel;r=1604507157;rf=0;a=p-b8x17GqsQ_656;url=http%3A%2F%2Fwww.fbsl.yolasite.com%2F;uht=2;fpan=1;fpa=P0-170490971-1667616188873;pbc=;ns=0;ce=1;qjs=1;qv=52053f22-20221102120139;cm=;gdpr=0;ref=;d=fbsl.yolasite.com;dst=0;et=1667616189515;tzo=0;ogl=;ses=f3a393c0-e5ca-42ad-b77e-fedf213bcb67
IP 91.228.74.206:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 55d25e9dc950d5db4d53a3b195c046c6
75e91ae3e549dab12ed1c9787ade9131aef1c981
a0d3a0aff7dc3bf32d2176fc3dcda6e7aba2867c4f4d1f7af6355d2cfc6c44f8
GET /pixel;r=1604507157;rf=0;a=p-b8x17GqsQ_656;url=http%3A%2F%2Fwww.fbsl.yolasite.com%2F;uht=2;fpan=1;fpa=P0-170490971-1667616188873;pbc=;ns=0;ce=1;qjs=1;qv=52053f22-20221102120139;cm=;gdpr=0;ref=;d=fbsl.yolasite.com;dst=0;et=1667616189515;tzo=0;ogl=;ses=f3a393c0-e5ca-42ad-b77e-fedf213bcb67 HTTP/1.1
Host: pixel.quantserve.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Sat, 05 Nov 2022 02:43:10 GMT
content-type: image/gif
content-length: 35
cache-control: private, no-cache, no-store, proxy-revalidate
expires: Fri, 04 Aug 1978 12:00:00 GMT
p3p: CP="NOI DSP COR NID CURa ADMa DEVa PSAo PSDo OUR SAMa IND COM NAV"
pragma: no-cache
set-cookie: mc=6365cdbe-dd82a-c6bf1-42349; expires=Wed, 06-Dec-2023 02:43:10 GMT; path=/; domain=.quantserve.com
X-Firefox-Spdy: h2
syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.fbsl.yolasite.com%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1667616189510%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5a111ef4b79394aba399d1dac68393e841a80f1d
104.244.42.200200 OK 43 B URL HTTP/2 syndication.twitter.com/i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.fbsl.yolasite.com%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1667616189510%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5a111ef4b79394aba399d1dac68393e841a80f1d
IP 104.244.42.200:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash 377d257f2d2e294916143c069141c1c5
b7cae69682cf31dd670b65088db8395acda6ed3e
ac8778041fdb7f2e08ceb574c9a766247ea26f1a7d90fa854c4efcf4b361a957
GET /i/jot/embeds?l=%7B%22widget_origin%22%3A%22http%3A%2F%2Fwww.fbsl.yolasite.com%2F%22%2C%22widget_frame%22%3Afalse%2C%22language%22%3A%22en%22%2C%22message%22%3A%22m%3Anocount%3A%22%2C%22context%22%3A%22rufous-eol%22%2C%22_category_%22%3A%22tfw_client_event%22%2C%22triggered_on%22%3A1667616189510%2C%22dnt%22%3Afalse%2C%22client_version%22%3A%22a3525f077c700%3A1667415560940%22%2C%22format_version%22%3A1%2C%22event_namespace%22%3A%7B%22client%22%3A%22tfw%22%2C%22page%22%3A%22button%22%2C%22section%22%3A%22share%22%2C%22action%22%3A%22impression%22%7D%7D&session_id=5a111ef4b79394aba399d1dac68393e841a80f1d HTTP/1.1
Host: syndication.twitter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Sat, 05 Nov 2022 02:43:10 GMT
perf: 7626143928
vary: Origin
server: tsa_o
content-type: image/gif
cache-control: must-revalidate, max-age=600
last-modified: Sat, 05 Nov 2022 02:43:10 GMT
content-length: 43
x-transaction-id: 8f229471184d184b
strict-transport-security: max-age=631138519
x-response-time: 107
x-connection-hash: 6531884fec3aa5e50d76ed1120557ed9c7cdba12e1981849262a681bdd8a7072
X-Firefox-Spdy: h2
www.fbsl.yolasite.com/favicon.ico
104.16.161.215301 Moved Permanently 0 B URL HTTP/1.1 www.fbsl.yolasite.com/favicon.ico
IP 104.16.161.215:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Cookie: synthasiteVisitorId=CA0ACA1D-9F90-0001-7D20-1B6057F05C40; synthasiteVisitId=CA0ACA1D-9FA0-0001-228C-1A3018501CCE
HTTP/1.1 301 Moved Permanently
Date: Sat, 05 Nov 2022 02:43:10 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Lookup-Cache-Hit: 1
Location: http://www.fbsl.yolasite.com/favicon.ico.php
X-Hstore: hstore10
X-Hrouter: hrouter4
CF-Cache-Status: MISS
Set-Cookie: __cf_bm=rabAei5fZHB_tfglxqxhOKwXTDruSNf3E6QYzmkpaZA-1667616190-0-ATOa3P6kZ69l6xdG0WZj5HXSuRxH4mhIWNedJlF43fb+9DlCBb+S3wJp5ill30ZlF9KhAc6SZZAsos00yirDPL4F52ZN5rinVX6TwRbDOwGi; path=/; expires=Sat, 05-Nov-22 03:13:10 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 76523d8708f91c16-OSL
alt-svc: h2=":443"; ma=60
www.fbsl.yolasite.com/favicon.ico.php
104.16.161.215404 Not Found 210 B URL HTTP/1.1 www.fbsl.yolasite.com/favicon.ico.php
IP 104.16.161.215:0
File type HTML document, ASCII text, with no line terminators
Hash 0a78a7fe0ced9f11d8b2e0d82ca61a3d
a6696af4a1634d198559d29adbc6d0c4a4579152
60762c49bc49d5e2b4e02a168a7bdbd338edaa56f94279ec34453c5b3951f39e
Analyzer Verdict Alert fortinet Phishing
GET /favicon.ico.php HTTP/1.1
Host: www.fbsl.yolasite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.fbsl.yolasite.com/
Connection: keep-alive
Cookie: synthasiteVisitorId=CA0ACA1D-9F90-0001-7D20-1B6057F05C40; synthasiteVisitId=CA0ACA1D-9FA0-0001-228C-1A3018501CCE; __qca=P0-170490971-1667616188873
HTTP/1.1 404 Not Found
Date: Sat, 05 Nov 2022 02:43:11 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Lookup-Cache-Hit: 1
Content-Encoding: gzip
CF-Cache-Status: DYNAMIC
Set-Cookie: __cf_bm=EHgkswn7S1PiG38aFF2aMs2RJg_2NVZQ.hpU8dVWRlg-1667616191-0-AeeEXlxKsU9xbtSCmHzgRymrVmuZk1v2NpWQ+zTGILQsRh3RoyTJRvML0/7OobF8aOpJZgDgFcGI4gzjJ8eI/eONX5Ept8jyQYRRc+Zdja8m; path=/; expires=Sat, 05-Nov-22 03:13:11 GMT; domain=.yolasite.com; HttpOnly; SameSite=None
Server: cloudflare
CF-RAY: 76523d89a9b11c16-OSL
alt-svc: h2=":443"; ma=60
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12826
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 02:43:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12826
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 02:43:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12826
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 02:43:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12826
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 02:43:11 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8ee5640e4bbe5e2c0dd4aa0698a3ce62
a175340e4e1a0a2e3d33fa5b113e3990e5a6dfef
938899f21fdf4e477f02c6f7f32cbed05bb1df35e3b221c3a37e8c214b2dc946
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "938899F21FDF4E477F02C6F7F32CBED05BB1DF35E3B221C3A37E8C214B2DC946"
Last-Modified: Thu, 03 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=12826
Expires: Sat, 05 Nov 2022 06:16:57 GMT
Date: Sat, 05 Nov 2022 02:43:11 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ee20d59c5ac266f8eb9c47057271a10
61dc4e78907f114519ff3fdd3c806b36557ab744
2cba117cfe96fa5e1b53981f98d42eb3e5f956083c3435a1d44d1d40784614bf
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd3819323-4f77-4bb2-bbbb-6926d5bc62aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11427
x-amzn-requestid: 0dcc7ef4-d7fa-492e-8ddf-4342b4bc44e9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHxJGJZoAMFWlw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6365866d-7c3de2ed509a640f37c52843;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:38:53 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PQo9pi8wRbpn53LKPnNqSV9sQphLzJr4bGgUOmn6qhIubpQDQ3DqSQ==
via: 1.1 4dde8ec6d6c12741888c2d3a059d4a2e.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 21:57:23 GMT
age: 17148
etag: "61dc4e78907f114519ff3fdd3c806b36557ab744"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 2ae2b8d827fb2c8bef64febcd36f1645
f7705fcd2d91ce90c58e79324cce1e3abba6c1c8
2dc55e97ef3a85fccb104b80161a8bac16b12d37527c336563677432584c7ad5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3494b1e3-ddc8-454c-8b43-e70e2d8f07b8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11421
x-amzn-requestid: 8436166b-f342-44e9-9a31-e25dcaa7b85c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: a2gEOEYRIAMFQ2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-635f46e7-0616a6b95503fffd4f597509;Sampled=0
x-amzn-remapped-date: Mon, 31 Oct 2022 03:54:15 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: g3OtcJnT2JfzIAvUjoLvC8pOzfwGFQ-M0cH4uwNSVcr2T9jYgCihTw==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 2324edbcb8fc72f617442c65f36a40fc.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 23:22:55 GMT
age: 12016
etag: "f7705fcd2d91ce90c58e79324cce1e3abba6c1c8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff202f1f7-a6da-431c-9f04-b00a53780a8c.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff202f1f7-a6da-431c-9f04-b00a53780a8c.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 683264508686ad18ae519baac54d3b05
1897c9fcad301764736ab867491beb18526af153
e8beb5d336ca424e36725ab87b98b4dedcf32a5b01c43b9c06363a7be25522fa
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff202f1f7-a6da-431c-9f04-b00a53780a8c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5754
x-amzn-requestid: df2c5b88-0444-44b1-81ef-04e565d25b36
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bAS--GiUoAMFTjg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636331f9-0ec90f4d5f0c6fcf2d6e4a8b;Sampled=0
x-amzn-remapped-date: Thu, 03 Nov 2022 03:14:01 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: D1Fxwhu3EVm8Rd_6URh3mRUlUK0xSgOuLCWdbnUy1bsmDjyG-K3Jmg==
via: 1.1 3c974a460e97e56c6eb1e6a30797d9d6.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 03:44:52 GMT
age: 82699
etag: "1897c9fcad301764736ab867491beb18526af153"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3ef4c410bf60b7be505437f6bd0741cc
fc8efa7e342e486fc03eba5f4b9a13897e3d6184
c4d4748d9997f417da33dc27c283280fa662f20af21b5f723864b08a98375cb4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F60f419f1-9fac-4d40-ab08-9e4c8d715092.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 13204
x-amzn-requestid: 17c52ec3-3ba2-455b-b191-bc4716a80c3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bGHlcEhLIAMFomg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63658622-4c003bdf6874045753a27045;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 21:37:38 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: xNbNV2HriMoa0a1lhJYPyRzPRchzzPlxoitgxm5M5HNySj_lCLKaOg==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 a847181d425b7fc57e81eb3c800bfdf2.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 22:12:00 GMT
age: 16271
etag: "fc8efa7e342e486fc03eba5f4b9a13897e3d6184"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea73a1e6-5232-416f-82c9-13016ff006e8.jpeg
34.120.237.76200 OK 9.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea73a1e6-5232-416f-82c9-13016ff006e8.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 62c2729bd495d86a4eac5a04ae21408e
84a91429d90d3ef5a31d918cc9477f92ed716531
01eb74a1913886d7f122f7612cbcafcc75b49efd7a4c6248c36a5cd9cafb4518
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fea73a1e6-5232-416f-82c9-13016ff006e8.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9290
x-amzn-requestid: 36b442e5-25d9-4ce8-b102-a2fb5037d640
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bDqm3Gv-IAMFbug=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63648af8-0d41999b3dcbac4a1032f56c;Sampled=0
x-amzn-remapped-date: Fri, 04 Nov 2022 03:46:00 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 4y0OhkF328ODb-dDWH1fw6sFZ21CR_eqprYs4WSR5Q-fROKgC_r7GA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 ee330666adf9f04c8c30094f8ddcd004.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 10:27:08 GMT
age: 58563
etag: "84a91429d90d3ef5a31d918cc9477f92ed716531"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
34.120.237.76200 OK 4.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d12961439cd33c86c7b8041ed9d42321
ddb7b18fae0082ce22d8ffa537c7367e1da404a5
d2cc0f7735f04a07c681eb2eae7c52e9f4c75b6d475b3ad4de587899089850a7
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F52bfe915-baee-403a-9240-12d17207ec94.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4662
x-amzn-requestid: 32199e11-d856-4403-ad55-65076eac83ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: amd5UFJQIAMFf-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6358dd08-1761126e37ed504e46896b4d;Sampled=0
x-amzn-remapped-date: Wed, 26 Oct 2022 07:08:56 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Nu2uC3we8aHv4ERvh7QcmiErm4Ax-NNmdWFovpdU9Or9DguzrIcn5g==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Fri, 04 Nov 2022 07:26:20 GMT
age: 69411
etag: "ddb7b18fae0082ce22d8ffa537c7367e1da404a5"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.fbsl.yolasite.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
216.58.207.237200 OK 0 B URL HTTP/2 accounts.google.com/o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.fbsl.yolasite.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__
IP 216.58.207.237:0
GET /o/oauth2/postmessageRelay?parent=http%3A%2F%2Fwww.fbsl.yolasite.com&jsh=m%3B%2F_%2Fscs%2Fabc-static%2F_%2Fjs%2Fk%3Dgapi.lb.en.P0B2vZm_jJk.O%2Fd%3D1%2Frs%3DAHpOoo_nmCaDbrwZCe_WiNZEgKVKQ-FnSA%2Fm%3D__features__ HTTP/1.1
Host: accounts.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.fbsl.yolasite.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Sat, 05 Nov 2022 02:43:10 GMT
content-security-policy: require-trusted-types-for 'script';report-uri /o/cspreport, script-src 'nonce-K_uCnlkMK9BxY-2AlImhIQ' 'unsafe-inline' 'strict-dynamic' https: http: 'unsafe-eval';object-src 'none';base-uri 'self';report-uri /o/cspreport
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
developers.google.com/
142.250.74.14200 OK 0 B IP 142.250.74.14:0
GET / HTTP/1.1
Host: developers.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.fbsl.yolasite.com/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 04 Nov 2022 18:40:04 GMT
content-type: text/html; charset=utf-8
set-cookie: _ga_devsite=GA1.3.1773632205.1667616192; Expires=Mon, 04 Nov 2024 02:43:12 GMT; Max-Age=63072000; Path=/
content-security-policy: base-uri 'self'; object-src 'none'; script-src 'strict-dynamic' 'unsafe-inline' https: http: 'nonce-4i74j1P+0XsyJkJamP2cajnJaeqrCf' 'unsafe-eval'; report-uri https://csp.withgoogle.com/csp/devsite/v2
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: SAMEORIGIN
x-xss-protection: 0
x-content-type-options: nosniff
cache-control: no-cache, must-revalidate
expires: 0
pragma: no-cache
content-encoding: gzip
x-cloud-trace-context: 284da84cc78ed160b27ff08a4bdc7590
vary: Accept-Encoding
date: Sat, 05 Nov 2022 02:43:12 GMT
server: Google Frontend
content-length: 25277
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2